Report - www.alfabetizacaodiaria.com/dcu/php/otp.html

Report Overview

Submitted URL
www.alfabetizacaodiaria.com/dcu/php/otp.html
IP
162.241.203.130
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-09-02 11:34:48
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
42

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
dcu.demdex.net	167443	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	481 B	3.5 kB	34.241.100.149
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	58 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	978 B	3.4 kB	23.36.76.225
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	5.0 kB	93.184.220.29
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	430 B	5.0 kB	216.58.211.10
dpm.demdex.net	204	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.0 kB	34.241.100.149
usassets.cobrowse.pega.com	93477	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	829 B	266 kB	23.23.131.85
assets.adobedtm.com	512	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	90 kB	23.38.200.237
mpsnare.iesnare.com	5723	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	20 kB	54.228.71.178
ocsp.godaddy.com	698	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	984 B	6.9 kB	192.124.249.36
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.2 kB	142.250.74.3
us.cobrowse.pega.com	49768	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	1.5 kB	23.23.131.85
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.163.196.193
digitalfederalcredit.tt.omtrdc.net	202275	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	535 B	54.76.106.219
digitalfederalcreditunion.sc.omtrdc.net	158858	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	982 B	15.236.176.210
cdn.plaid.com	17458	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	795 B	34 kB	54.230.111.89
frame.gleap.io	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	124 kB	34.159.137.246
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
www.alfabetizacaodiaria.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.0 kB	127 kB	162.241.203.130
alfabetizacaodiaria.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.5 kB	40 kB	162.241.203.130
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	54 kB	142.250.74.163
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	941 B	143.204.42.156
cm.everesttech.net	996	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	425 B	475 B	34.248.32.199

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-09-01	medium	www.alfabetizacaodiaria.com/dcu/php/otp.html	Digital Federal Credit Union

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-02	medium	www.alfabetizacaodiaria.com/dcu/php/otp.html	Phishing
2022-09-02	medium	www.alfabetizacaodiaria.com/dcu/php/js/loader_only.js	Phishing
2022-09-02	medium	www.alfabetizacaodiaria.com/dcu/php/js/config.js	Phishing
2022-09-02	medium	www.alfabetizacaodiaria.com/dcu/php/js/64.390011c5.js	Phishing
2022-09-02	medium	www.alfabetizacaodiaria.com/dcu/php/js/chunk-common.112fec58.js	Phishing
2022-09-02	medium	www.alfabetizacaodiaria.com/dcu/php/js/2.a6ab680e.js	Phishing
2022-09-02	medium	www.alfabetizacaodiaria.com/js/vendor.e1d2459d.js	Phishing
2022-09-02	medium	www.alfabetizacaodiaria.com/js/app.fa332a3e.js	Phishing
2022-09-02	medium	alfabetizacaodiaria.com/dcu/php/js/loader_only.js	Phishing
2022-09-02	medium	alfabetizacaodiaria.com/dcu/php/js/config.js	Phishing
2022-09-02	medium	alfabetizacaodiaria.com/dcu/php/js/64.390011c5.js	Phishing
2022-09-02	medium	alfabetizacaodiaria.com/js/vendor.e1d2459d.js	Phishing
2022-09-02	medium	alfabetizacaodiaria.com/dcu/php/js/chunk-common.112fec58.js	Phishing
2022-09-02	medium	alfabetizacaodiaria.com/js/app.fa332a3e.js	Phishing
2022-09-02	medium	www.alfabetizacaodiaria.com/dcu/php/js/2.a6ab680e.js	Phishing
2022-09-02	medium	alfabetizacaodiaria.com/dcu/php/js/2.a6ab680e.js	Phishing
2022-09-02	medium	www.alfabetizacaodiaria.com/js/vendor.e1d2459d.js	Phishing
2022-09-02	medium	alfabetizacaodiaria.com/js/vendor.e1d2459d.js	Phishing
2022-09-02	medium	www.alfabetizacaodiaria.com/js/app.fa332a3e.js	Phishing
2022-09-02	medium	alfabetizacaodiaria.com/js/app.fa332a3e.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files detected

URL
r3.o.lencr.org/
IP
23.36.76.225
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, max compression\012- data
Size
1.2 kB (1246 bytes)
Hash
cb03c072b705440dec771616e69295b0
4a6cada03d0a5893db493e52278d82ff90b1328b
c030a09949723dee2f24a0e7ca5c605a745745f1d3b973fe41bfd6329a41bef1

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (11)

	URL	Size	First Seen	Last Seen
	cdn.plaid.com/link/v2/stable/link-initialize.js	96 kB	2023-03-07	2023-03-07
Pretty URL cdn.plaid.com/link/v2/stable/link-initialize.js IP 54.230.111.89 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:27 Last Seen2023-03-07 12:09:27 Times Seen1 Hash f2ce698751de84623001f1199b841787 85fdea9ff00b8edb7bed5de62c5de910b45f91b5 17f02f49439c006417e6ca8e2a62febb3f1774b4912a39de1fe4435b4555fa2b Loading...

	assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js	34 kB	2023-03-07	2024-04-19
Pretty URL assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js IP 23.38.200.237 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-19 19:50:30 Times Seen2920 Hash d860c16ac938f7d839f0ec158d02d0f0 8710f81ed151233677f7e32b229cb35293dd6840 9219086b4f2c3bf77854b2e06ccd97ad32b9b7a140e65ff8b974a3bae6c7854c Loading...

	assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js	3.3 kB	2023-03-07	2024-04-18
Pretty URL assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js IP 23.38.200.237 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:10 Last Seen2024-04-18 12:36:42 Times Seen2363 Hash 2d1382c349d480b6b41574ac0c1af066 53ddf017aa6b66b4d54ea0818dc5c04789b9e5ae 462a66acbf50e933685e7587e9f1441df8225b2bb4d6b7bc5e757eccf4ff6575 Loading...

	us.cobrowse.pega.com/cobrowse/loadScripts	508 B	2023-03-07	2023-11-30
Pretty URL us.cobrowse.pega.com/cobrowse/loadScripts IP 23.23.131.85 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:27 Last Seen2023-11-30 01:33:20 Times Seen12 Hash 9cdb6851bb88c14e6033ca658ac8aa88 ee1d43de555319019f8b0713a683a463803a9b41 fa05f2814bdcd558f6b652532c66d74a995b0a05f464bda6e9375fcb3c02cf82 Loading...

	www.alfabetizacaodiaria.com/dcu/php/otp.html	688 B	2023-03-07	2023-03-17
Pretty URL www.alfabetizacaodiaria.com/dcu/php/otp.html IP 162.241.203.130 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:27 Last Seen2023-03-17 10:29:55 Times Seen1 Hash d62b1ac67093f3675c4105f5361cd1c8 22a59e1dba2dc8633e25a60d2247e7ba7f9c5c90 19090b8df95a112fba0e9aece4ac43b518f7024e72b3dff764d687e35e3b8b07 Loading...

	unknown	0 B	2023-03-07	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 05:36:23 Times Seen36969737 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	mpsnare.iesnare.com/general5/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false	42 kB	2023-03-07	2023-03-07
Pretty URL mpsnare.iesnare.com/general5/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false IP 54.228.71.178 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:27 Last Seen2023-03-07 12:09:27 Times Seen1 Hash 6f25c6b3303913be84a55e1612ced217 bcf13e3dc6f7eeca6e7eb850df0b9a5c1c093e5c 01dac30685cea46bac211a71c22d1d844683aedb685951bdb6f0506b703fe0dd Loading...

	mpsnare.iesnare.com/5.5.0/logo.js	505 B	2023-03-07	2023-03-07
Pretty URL mpsnare.iesnare.com/5.5.0/logo.js IP 54.228.71.178 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:27 Last Seen2023-03-07 12:09:27 Times Seen1 Hash 22e2e7d51bcd1455f7d630c7db5c5c69 9e4fbf3031caa84599b965f2384fdcab6e095112 0842e6637c7adcd3c0ade91a92cf38cbe69964648bd01f9d940fef701fbf00a4 Loading...

	assets.adobedtm.com/c710ed4af822/4edff89d26dd/launch-1574d0b03693.min.js	228 kB	2023-03-07	2023-03-17
Pretty URL assets.adobedtm.com/c710ed4af822/4edff89d26dd/launch-1574d0b03693.min.js IP 23.38.200.237 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:27 Last Seen2023-03-17 10:29:55 Times Seen1 Hash 97a1294fe9ebfd08669e214fcc839024 d7576324da4250a83fbe98879ae6d4b1e65fd594 0957412420818fcda430dbe2c91d724a4391701d15babb4ac6b01e409e95f1c3 Loading...

	dcu.demdex.net/dest5.html?d_nsid=0#http%3A%2F%2Fwww.alfabetizacaodiaria.com	6.7 kB	2023-03-07	2024-03-23
Pretty URL dcu.demdex.net/dest5.html?d_nsid=0#http%3A%2F%2Fwww.alfabetizacaodiaria.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-03-23 05:26:10 Times Seen1169 Hash bea2f42512935b636558e81988e2d51f 2c9772b62f6eb8a3cec9c3a6fb9c0b22c927e59d 0cc5ff21c24654308609656ebcfda2d792d15f6fda17c0a88b551fcf8e456fdb Loading...

	usassets.cobrowse.pega.com/assets/scripts/final/customer.js?v=8.7.1	1.2 MB	2023-03-07	2023-10-13
Pretty URL usassets.cobrowse.pega.com/assets/scripts/final/customer.js?v=8.7.1 IP 23.23.131.85 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:27 Last Seen2023-10-13 04:53:55 Times Seen4 Hash 02f1c3ee76b41a35f41358245aa6154c 92f6f5fab0d66676cf2c7b22a3eb17adba21fe14 882a1478e03664b3e5f2bb5b286689f553197877c4c5dae59c9c2991f5e1bd0a Loading...

HTTP Transactions (88)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 10:41:43 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Uh_2QOKGqikjp0CDcznXRVlUkV37UTHc7SC24CRoY6Nnp1sfA4Fsng==
Age: 3174

www.alfabetizacaodiaria.com/dcu/php/otp.html

162.241.203.130

200 OK

7.7 kB

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/otp.html
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2737), with CRLF line terminators
Size
7.7 kB (7671 bytes)
Hash
e6f8c9f28bd3d427c5e90afb981d03fc
28ee5fce1438a4fa0f7c293bf609e6283deecfb6
806d0a7e4cc1a1ea2af9c2db2b67b9fbcfb38848b4c7dff9d28276e31ac5ce19

Detections

Analyzer	Verdict	Alert
openphish	Digital Federal Credit Union
fortinet	Phishing

HTTP Headers

GET /dcu/php/otp.html HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 11:34:37 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 18 Aug 2022 23:50:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7671
Keep-Alive: timeout=5, max=75
Content-Type: text/html

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2843
Expires: Fri, 02 Sep 2022 12:22:00 GMT
Date: Fri, 02 Sep 2022 11:34:37 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RvETnJ962kyPOfMbRFPzy5-yeaBzlehWmVJy-ofCpEUDfLyx13XS3g==
age: 37160
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 11:34:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js

23.38.200.237

200 OK

1.6 kB

URL HTTP/2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
IP
23.38.200.237:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (3155)
Size
1.6 kB (1597 bytes)
Hash
e672de61b277fc72de4299829bfbb31c
157a7409922d58a02dad3ba879d04eb2a3ef8f3d
e1a1c2a6f2ed4ffb63ebfda157eaf12c6ee3973be4da649eb63e0402c0d29215

HTTP Headers

GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "2d1382c349d480b6b41574ac0c1af066:1644856531.739514"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1597
expires: Fri, 02 Sep 2022 12:34:38 GMT
date: Fri, 02 Sep 2022 11:34:38 GMT
cache-control: no-cache
access-control-allow-origin: http://www.alfabetizacaodiaria.com
timing-allow-origin: *
X-Firefox-Spdy: h2

assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js

23.38.200.237

200 OK

12 kB

URL HTTP/2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
IP
23.38.200.237:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (32768)
Size
12 kB (12163 bytes)
Hash
e616df092766c7ab7904619f971a35cc
a960429c42802a43e3ce728fc4d1e8bdab10e606
082ae7647bfdb639846791e5c0ca39b96544dff3aed0c365973c9589cd5b091e

HTTP Headers

GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d860c16ac938f7d839f0ec158d02d0f0:1644856531.418573"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12163
expires: Fri, 02 Sep 2022 12:34:38 GMT
date: Fri, 02 Sep 2022 11:34:38 GMT
cache-control: no-cache
access-control-allow-origin: http://www.alfabetizacaodiaria.com
timing-allow-origin: *
X-Firefox-Spdy: h2

assets.adobedtm.com/c710ed4af822/4edff89d26dd/launch-1574d0b03693.min.js

23.38.200.237

200 OK

74 kB

URL HTTP/2
assets.adobedtm.com/c710ed4af822/4edff89d26dd/launch-1574d0b03693.min.js
IP
23.38.200.237:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (32768)
Size
74 kB (73977 bytes)
Hash
c8e5e4603713b2afef04641fbdaadcf8
ba70173dec1981bb9419e44373987917c15512e8
3beb4f3ae29074fd5cfbd0c211659e3fe7499219b644bef22f79e4898cf92427

HTTP Headers

GET /c710ed4af822/4edff89d26dd/launch-1574d0b03693.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "97a1294fe9ebfd08669e214fcc839024:1658495611.885198"
last-modified: Fri, 22 Jul 2022 13:13:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Fri, 02 Sep 2022 12:34:38 GMT
date: Fri, 02 Sep 2022 11:34:38 GMT
content-length: 73977
access-control-allow-origin: http://www.alfabetizacaodiaria.com
timing-allow-origin: *
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
808a2a2e9e7c055ad5a6ada8e30000e2
5801dd00ba0c20f3370d61837344f44b9ac5e27a
a709e14c5df4f9dea10811899395184be7b81d9af36e550722303b6d665e081e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5838
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:38 GMT
Last-Modified: Fri, 02 Sep 2022 09:57:20 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f1f07fe791fb5d2862a3b3f31ba49410
f494b1311d77e169b49dc951d9f193d5522bc180
1b1f4e3d9a9d762454107266114ed572cf7b9aa8bf6000b2f393983311aa2a63

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4773
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:38 GMT
Last-Modified: Fri, 02 Sep 2022 10:15:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f1f07fe791fb5d2862a3b3f31ba49410
f494b1311d77e169b49dc951d9f193d5522bc180
1b1f4e3d9a9d762454107266114ed572cf7b9aa8bf6000b2f393983311aa2a63

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4773
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:38 GMT
Last-Modified: Fri, 02 Sep 2022 10:15:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c3ae9ef3428cd0d64b72c4050c46ac04
66abeee5983d4f600eb880a484379b9b33b6784f
2bdf58e0780d80bd300e1b7c4516f7768348c9933d6d220902ed866eec321ff5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6284
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:38 GMT
Last-Modified: Fri, 02 Sep 2022 09:49:54 GMT
Server: ECS (amb/6BBD)
X-Cache: HIT
Content-Length: 471

www.alfabetizacaodiaria.com/dcu/php/js/loader_only.js

162.241.203.130

301 Moved Permanently

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/js/loader_only.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dcu/php/js/loader_only.js HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://alfabetizacaodiaria.com/dcu/php/js/loader_only.js
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mpsnare.iesnare.com/5.5.0/logo.js

54.228.71.178

200 OK

420 B

URL HTTP/1.1
mpsnare.iesnare.com/5.5.0/logo.js
IP
54.228.71.178:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (377)
Size
420 B (420 bytes)
Hash
0578c08463935b64ec71709ff5cb47c5
64f57615e7c01c4b13b712b2400beb2c761965de
dfc6e79c0fccb5981ac6b1e792a809183c4aa2c384f6c21c4be567b1e6eea668

HTTP Headers

GET /5.5.0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 11:34:38 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Sat, 02 Sep 2023 11:34:38 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip

www.alfabetizacaodiaria.com/dcu/php/js/config.js

162.241.203.130

301 Moved Permanently

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/js/config.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dcu/php/js/config.js HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://alfabetizacaodiaria.com/dcu/php/js/config.js
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

mpsnare.iesnare.com/general5/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false

54.228.71.178

200 OK

19 kB

URL HTTP/1.1
mpsnare.iesnare.com/general5/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
54.228.71.178:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (1038)
Size
19 kB (18557 bytes)
Hash
ccb866f17a60838d631cab941c85e0cb
8c4824caaa4ca0ea891e733958ac290b97f8fb5c
8902a8cd7cdc7f9bf1b4158547578e8004aa3e70b064b270aed7e10fa8ac923f

HTTP Headers

GET /general5/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 11:34:38 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: io_token_7c6a6574-f011-4c9a-abdd-9894a102ccef=IoytK8OYjT0S+RE4mfHHfcM2YNYu8dngfm4fMJm9GX4=;Path=/;Expires=Sat, 02-Sep-2023 11:34:38 GMT;Max-Age=31536000;Secure;HttpOnly;SameSite=None
Cache-Control: no-cache, private
Pragma: no-cache
Expires: 0
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip

www.alfabetizacaodiaria.com/dcu/php/css/app.7b1cd472.css

162.241.203.130

200 OK

1.1 kB

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/css/app.7b1cd472.css
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2620)
Size
1.1 kB (1105 bytes)
Hash
36384a6e74a7b2c7969c04b4b4f8a02c
e193f72978da870f8c80fc83254cc8e9c2cd2114
44c029ac9266329acd70393a312e3b6bfe725bc58217155d2c682dfbf0888fc1

HTTP Headers

GET /dcu/php/css/app.7b1cd472.css HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 18 Aug 2022 22:51:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1105
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.alfabetizacaodiaria.com/dcu/php/css/64.64d4d70e.css

162.241.203.130

200 OK

455 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/css/64.64d4d70e.css
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (686)
Size
455 B (455 bytes)
Hash
bb77448b3e374758ad614699a28a1bf6
43206343a345c6d67ffabb3912c94b12957c9a4f
3e609ce05193fff12cb82ccb24233c60cd51e2da2be01de0a569d64ecbd84321

HTTP Headers

GET /dcu/php/css/64.64d4d70e.css HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 18 Aug 2022 22:50:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 455
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.alfabetizacaodiaria.com/dcu/php/css/chunk-common.d06af608.css

162.241.203.130

200 OK

3.9 kB

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/css/chunk-common.d06af608.css
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (13269)
Size
3.9 kB (3871 bytes)
Hash
ea19bd19aa86f954fceedca620ae36e4
a12db9600b1c1bd20c32ce45b5c9f3db7bf64ab5
866f91aab0ba973975cbd7a93fe4e302306e2c2b068f18df1ca46836ed2f0624

HTTP Headers

GET /dcu/php/css/chunk-common.d06af608.css HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Last-Modified: Thu, 18 Aug 2022 22:51:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3871
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css

ocsp.godaddy.com/

192.124.249.36

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.36:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
ff8b8b55386364bc126d968df9c44f55
4c319a6e175063ef2ce2a358e6eeeffe87f86a63
f10735029c5c9bea4fca63dc10f2f6e851e5aa1ebc0eb05a92abeb8b7171fabe

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 02 Sep 2022 11:34:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Sep 2022 01:29:58 GMT
Expires: Sat, 03 Sep 2022 01:29:58 GMT
ETag: "4c319a6e175063ef2ce2a358e6eeeffe87f86a63"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

www.alfabetizacaodiaria.com/dcu/php/js/64.390011c5.js

162.241.203.130

301 Moved Permanently

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/js/64.390011c5.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dcu/php/js/64.390011c5.js HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://alfabetizacaodiaria.com/dcu/php/js/64.390011c5.js
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.alfabetizacaodiaria.com/dcu/php/js/chunk-common.112fec58.js

162.241.203.130

301 Moved Permanently

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/js/chunk-common.112fec58.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dcu/php/js/chunk-common.112fec58.js HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://alfabetizacaodiaria.com/dcu/php/js/chunk-common.112fec58.js
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.alfabetizacaodiaria.com/dcu/php/css/2.658b5c49.css

162.241.203.130

200 OK

713 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/css/2.658b5c49.css
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1693)
Size
713 B (713 bytes)
Hash
454a44c4dcd00a03e00372254e6fe3e8
bc7e5b3ee87ea145249e9157a2fc7726a7322815
5f9aa1bf4b9e9b20f857475ce6baad9306e514e5c1a2b6a753856fd73d16c00e

HTTP Headers

GET /dcu/php/css/2.658b5c49.css HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Last-Modified: Thu, 18 Aug 2022 22:50:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 713
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

us.cobrowse.pega.com/cobrowse/loadScripts

23.23.131.85

200 OK

508 B

URL HTTP/2
us.cobrowse.pega.com/cobrowse/loadScripts
IP
23.23.131.85:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
508 B (508 bytes)
Hash
9cdb6851bb88c14e6033ca658ac8aa88
ee1d43de555319019f8b0713a683a463803a9b41
fa05f2814bdcd558f6b652532c66d74a995b0a05f464bda6e9375fcb3c02cf82

HTTP Headers

GET /cobrowse/loadScripts HTTP/1.1
Host: us.cobrowse.pega.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Sep 2022 11:34:38 GMT
content-type: application/javascript; charset=utf-8
content-length: 508
set-cookie: AWSALB=xaou6876bkSsGtZ1973shzGj8O2inQYFIqg6EbQIq/n0vGwffH+gTxvrTRHk0XBkNG2xNaqnUCoDZqYXEcksudhXsokay1cFB7Dtn66ZR6Bo8Beift5SMfUJiLRp; Expires=Fri, 09 Sep 2022 11:34:38 GMT; Path=/
AWSALBCORS=xaou6876bkSsGtZ1973shzGj8O2inQYFIqg6EbQIq/n0vGwffH+gTxvrTRHk0XBkNG2xNaqnUCoDZqYXEcksudhXsokay1cFB7Dtn66ZR6Bo8Beift5SMfUJiLRp; Expires=Fri, 09 Sep 2022 11:34:38 GMT; Path=/; SameSite=None; Secure
connect.sid=s%3AtKS-P44_XDlrFPAG4o-4K7Vo93tjD4f8.p0N4kRx21vbgSfu2UiaSPPJ8bZgJnovUNCOrkLWq9D0; Path=/; Expires=Sun, 04 Sep 2022 11:34:38 GMT; Secure; SameSite=None
server: nginx
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: X-CSRF-Token, X-Requested-With, accept, x-j-token, content-type
etag: W/"1fc-7h1D3lVTGQGfiwcTpoOkY4A6m0E"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.alfabetizacaodiaria.com/dcu/php/js/2.a6ab680e.js

162.241.203.130

301 Moved Permanently

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/js/2.a6ab680e.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dcu/php/js/2.a6ab680e.js HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://alfabetizacaodiaria.com/dcu/php/js/2.a6ab680e.js
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.alfabetizacaodiaria.com/js/vendor.e1d2459d.js

162.241.203.130

301 Moved Permanently

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/js/vendor.e1d2459d.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/vendor.e1d2459d.js HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://alfabetizacaodiaria.com/js/vendor.e1d2459d.js
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.alfabetizacaodiaria.com/js/app.fa332a3e.js

162.241.203.130

301 Moved Permanently

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/js/app.fa332a3e.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/app.fa332a3e.js HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://alfabetizacaodiaria.com/js/app.fa332a3e.js
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

alfabetizacaodiaria.com/dcu/php/js/loader_only.js

162.241.203.130

404 Not Found

3.6 kB

URL HTTP/1.1
alfabetizacaodiaria.com/dcu/php/js/loader_only.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902)
Size
3.6 kB (3558 bytes)
Hash
6a32b64fbe6e36ebe35319cdc4d92359
449ee0db774e22e0efbd5ae651d18bf731e8948c
d104ea7c0ec2480f3b23c21134f4a288ca20bf5c4dae6fbc296cb6a3457dbbee

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dcu/php/js/loader_only.js HTTP/1.1
Host: alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://alfabetizacaodiaria.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3558
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

alfabetizacaodiaria.com/dcu/php/js/config.js

162.241.203.130

404 Not Found

3.6 kB

URL HTTP/1.1
alfabetizacaodiaria.com/dcu/php/js/config.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902)
Size
3.6 kB (3558 bytes)
Hash
4f6d009896c3391aea54d0ac4c85780c
d599d33fe13fc23179e5552378bfedbcc612cdc4
c023b7c956b6fd80a06acba4e2ccfaa3fe5f37cb42188f873c85a9c9412c8878

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dcu/php/js/config.js HTTP/1.1
Host: alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://alfabetizacaodiaria.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3558
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

www.alfabetizacaodiaria.com/dcu/php/css/vendor.7de76d70.css

162.241.203.130

200 OK

98 kB

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/css/vendor.7de76d70.css
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65448)
Size
98 kB (98548 bytes)
Hash
9a8a98716b5b062489cd6c58972e5d51
566ce3908a6be9558397104ea26b8a58a66eb08f
c87cdd0736f974e0da35764cf9bc0f2e3f81b3a2717b9b39a8092e30f13865aa

HTTP Headers

GET /dcu/php/css/vendor.7de76d70.css HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 18 Aug 2022 22:51:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css

alfabetizacaodiaria.com/dcu/php/js/64.390011c5.js

162.241.203.130

404 Not Found

3.6 kB

URL HTTP/1.1
alfabetizacaodiaria.com/dcu/php/js/64.390011c5.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902)
Size
3.6 kB (3558 bytes)
Hash
4f6d009896c3391aea54d0ac4c85780c
d599d33fe13fc23179e5552378bfedbcc612cdc4
c023b7c956b6fd80a06acba4e2ccfaa3fe5f37cb42188f873c85a9c9412c8878

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dcu/php/js/64.390011c5.js HTTP/1.1
Host: alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://alfabetizacaodiaria.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3558
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

fonts.googleapis.com/css2?family=Nunito+Sans:wght@300;400;600;700;800&display=swap

216.58.211.10

200 OK

4.2 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Nunito+Sans:wght@300;400;600;700;800&display=swap
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (1902)
Size
4.2 kB (4230 bytes)
Hash
6ea20d02c05931bb25df9bf0bfe80016
b4d482595d24ba0f919af4618358688f9c685b62
6950062d3f542414a6d9ea1cf832146fbb1ace3fe209c844f14080d63558deca

HTTP Headers

GET /css2?family=Nunito+Sans:wght@300;400;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 11:34:38 GMT
date: Fri, 02 Sep 2022 11:34:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

alfabetizacaodiaria.com/js/vendor.e1d2459d.js

162.241.203.130

404 Not Found

3.6 kB

URL HTTP/1.1
alfabetizacaodiaria.com/js/vendor.e1d2459d.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902)
Size
3.6 kB (3558 bytes)
Hash
413dabf376f9fb97631b51ce6cdb7e14
deacaba2d70038ae5b9f50d2dd5254dde3db3b4c
e276273032087612145f1a8e46c9ccb1f53ade233bb0c78d61117e0576dd64b5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/vendor.e1d2459d.js HTTP/1.1
Host: alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://alfabetizacaodiaria.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3558
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

alfabetizacaodiaria.com/dcu/php/js/chunk-common.112fec58.js

162.241.203.130

404 Not Found

3.6 kB

URL HTTP/1.1
alfabetizacaodiaria.com/dcu/php/js/chunk-common.112fec58.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902)
Size
3.6 kB (3558 bytes)
Hash
6a32b64fbe6e36ebe35319cdc4d92359
449ee0db774e22e0efbd5ae651d18bf731e8948c
d104ea7c0ec2480f3b23c21134f4a288ca20bf5c4dae6fbc296cb6a3457dbbee

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dcu/php/js/chunk-common.112fec58.js HTTP/1.1
Host: alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://alfabetizacaodiaria.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3558
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 02 Sep 2022 10:38:16 GMT
Expires: Fri, 02 Sep 2022 11:19:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VUdwImJxKONfCzmVh5LUXco9PgvV8n7RTnjSsiOETw5d3aeWDiEvLQ==
Age: 3382

alfabetizacaodiaria.com/js/app.fa332a3e.js

162.241.203.130

404 Not Found

3.6 kB

URL HTTP/1.1
alfabetizacaodiaria.com/js/app.fa332a3e.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902)
Size
3.6 kB (3558 bytes)
Hash
9829ede04f811046eb4d627dd72d4f0e
2ca21cb5851836cc5c5b8a45bfd6774f18cf9f86
06558d8cfd6e7f59145a9c4aca5ab067de2b415999c3d5869180f52beecca083

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/app.fa332a3e.js HTTP/1.1
Host: alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://alfabetizacaodiaria.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3558
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
21daf45cdda2eb462873226bb5c1f0fb
4d4621bbf1461f35f7e536c1dbd9de71978ffa23
8164c742d013bdc2836cac1167acfe482547347ab6a1daefa15475f694dae057

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1379
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:39 GMT
Last-Modified: Fri, 02 Sep 2022 11:11:40 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

www.alfabetizacaodiaria.com/dcu/php/js/2.a6ab680e.js

162.241.203.130

301 Moved Permanently

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/js/2.a6ab680e.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dcu/php/js/2.a6ab680e.js HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 11:34:38 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://alfabetizacaodiaria.com/dcu/php/js/2.a6ab680e.js
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

alfabetizacaodiaria.com/dcu/php/js/2.a6ab680e.js

162.241.203.130

404 Not Found

3.6 kB

URL HTTP/1.1
alfabetizacaodiaria.com/dcu/php/js/2.a6ab680e.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902)
Size
3.6 kB (3558 bytes)
Hash
4f6d009896c3391aea54d0ac4c85780c
d599d33fe13fc23179e5552378bfedbcc612cdc4
c023b7c956b6fd80a06acba4e2ccfaa3fe5f37cb42188f873c85a9c9412c8878

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dcu/php/js/2.a6ab680e.js HTTP/1.1
Host: alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Fri, 02 Sep 2022 11:34:39 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://alfabetizacaodiaria.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3558
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js

23.38.200.237

304 Not Modified

0 B

URL HTTP/2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
IP
23.38.200.237:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Mon, 14 Feb 2022 16:35:31 GMT
If-None-Match: "d860c16ac938f7d839f0ec158d02d0f0:1644856531.418573"
TE: trailers

HTTP/2 304 Not Modified
content-type: application/x-javascript
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
etag: "d860c16ac938f7d839f0ec158d02d0f0:1644856531.418573"
expires: Fri, 02 Sep 2022 12:34:39 GMT
date: Fri, 02 Sep 2022 11:34:39 GMT
cache-control: no-cache
access-control-allow-origin: http://www.alfabetizacaodiaria.com
timing-allow-origin: *
X-Firefox-Spdy: h2

assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js

23.38.200.237

304 Not Modified

0 B

URL HTTP/2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
IP
23.38.200.237:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Mon, 14 Feb 2022 16:35:31 GMT
If-None-Match: "2d1382c349d480b6b41574ac0c1af066:1644856531.739514"
TE: trailers

HTTP/2 304 Not Modified
content-type: application/x-javascript
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
etag: "2d1382c349d480b6b41574ac0c1af066:1644856531.739514"
expires: Fri, 02 Sep 2022 12:34:39 GMT
date: Fri, 02 Sep 2022 11:34:39 GMT
cache-control: no-cache
access-control-allow-origin: http://www.alfabetizacaodiaria.com
timing-allow-origin: *
X-Firefox-Spdy: h2

www.alfabetizacaodiaria.com/dcu/php/dcuLogoDark.png

162.241.203.130

200 OK

7.7 kB

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/dcuLogoDark.png
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 217 x 78, 8-bit/color RGBA, non-interlaced\012- data
Size
7.7 kB (7743 bytes)
Hash
ae64e87365d6e6696145c8c53ce3632e
09337bd0289c432bffab6f653297fe2534ad0c68
d1093fceb5f8b35c09e5d3329c8dc55509d7f46096efeea840f6e433212ba45e

HTTP Headers

GET /dcu/php/dcuLogoDark.png HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 11:34:39 GMT
Server: Apache
Last-Modified: Thu, 18 Aug 2022 22:49:04 GMT
Accept-Ranges: bytes
Content-Length: 7743
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png

mpsnare.iesnare.com/star

54.195.39.4

101 Switching Protocols

0 B

URL HTTP/1.1
mpsnare.iesnare.com/star
IP
54.195.39.4:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://www.alfabetizacaodiaria.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: r7t/4pcnk6CjmTSILWkZ1w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 02 Sep 2022 11:34:39 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: lg6Glz2qDDqMV6m7hkutQit7ddI=
Upgrade: WebSocket

push.services.mozilla.com/

35.163.196.193

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.163.196.193:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QQRiUBVFV4KWYy+XnYZSUw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WEY7OTWlAqlV/wD4ZYTqL6aN8/Q=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2

142.250.74.163

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17156, version 1.0\012- data
Size
17 kB (17156 bytes)
Hash
7e344afc10a492d516789f072fa6edfd
f38bd0b4e9d0577528f533b8ecd80801a0c6340f
c84423c305779f2aab07847a2e3870ac1ea4072e470d5eb149c01e0e0497eae3

HTTP Headers

GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alfabetizacaodiaria.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:23:14 GMT
expires: Tue, 29 Aug 2023 21:23:14 GMT
cache-control: public, max-age=31536000
age: 310285
last-modified: Mon, 09 May 2022 18:33:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b83499acb9d9084e2ae6344d7e4ffd8e
fec88d25ed11714853c1e46f6e3799bcebfe38d5
9b3f32dd934f53283b161aa93e4829bed6dd90e162bd0a9d38eec60b1b91c5ae

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2814
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:39 GMT
Last-Modified: Fri, 02 Sep 2022 10:47:45 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

www.alfabetizacaodiaria.com/js/vendor.e1d2459d.js

162.241.203.130

301 Moved Permanently

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/js/vendor.e1d2459d.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/vendor.e1d2459d.js HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 11:34:39 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://alfabetizacaodiaria.com/js/vendor.e1d2459d.js
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2

142.250.74.163

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data
Size
17 kB (16980 bytes)
Hash
8a97f720d330e75ccdbda9ae0e9f5e90
8e4fee916581ab48d385187705667cebc7500afe
97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787

HTTP Headers

GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alfabetizacaodiaria.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:08:00 GMT
expires: Tue, 29 Aug 2023 21:08:00 GMT
cache-control: public, max-age=31536000
age: 311199
last-modified: Mon, 09 May 2022 18:33:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2

142.250.74.163

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17116, version 1.0\012- data
Size
17 kB (17116 bytes)
Hash
bcf3a3fb620dfbee774f84e2c8e71530
40a79d240acdd7e5a95e165515ac7c0958a37971
280aaa8929329764ac3213ca093c63505cfcc665347939c79905c426d33867c5

HTTP Headers

GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alfabetizacaodiaria.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:55:12 GMT
expires: Tue, 29 Aug 2023 21:55:12 GMT
cache-control: public, max-age=31536000
age: 308367
last-modified: Mon, 09 May 2022 18:31:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=46051B125B89FACB0A495DD6%40AdobeOrg&d_nsid=0&ts=1662118478158

34.241.100.149

200 OK

837 B

URL HTTP/1.1
dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=46051B125B89FACB0A495DD6%40AdobeOrg&d_nsid=0&ts=1662118478158
IP
34.241.100.149:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (2304), with no line terminators
Size
837 B (837 bytes)
Hash
432000797dd07ea24ddc399d96124910
97d617052355d47e2e92c36ef0c5dae3b9b2c837
a94e838c66758413a8a55f4f12c8d3aa684c575332277d0c5ab82bf29283c7f8

HTTP Headers

GET /id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=46051B125B89FACB0A495DD6%40AdobeOrg&d_nsid=0&ts=1662118478158 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: http://www.alfabetizacaodiaria.com
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.alfabetizacaodiaria.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v038-0358e1334.edge-irl1.demdex.com 5 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=52403232727557922040278301748830310979; Max-Age=15552000; Expires=Wed, 01 Mar 2023 11:34:39 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: kFAkUXs+Q/8=
Content-Length: 837
Connection: keep-alive

digitalfederalcredit.tt.omtrdc.net/m2/digitalfederalcredit/mbox/json?mbox=target-global-mbox&mboxSession=325fe471b8204c41968382c78c12a420&mboxPC=&mboxPage=f7f3bfa62118425f9ec3d75590fa8ea2&mboxRid=d6e7efabd75a4789a503806d7a29f9d3&mboxVersion=1.8.3&mboxCount=1&mboxTime=1662118478174&mboxHost=www.alfabetizacaodiaria.com&mboxURL=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&mboxReferrer=&browserHeight=939&browserWidth=1280&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&pageurl=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&mboxMCSDID=391856ED3FFFE10C-01B72FB7A6815A7F&vst.trk=digitalfederalcreditunion.sc.omtrdc.net&vst.trks=digitalfederalcreditunion.sc.omtrdc.net&mboxMCGVID=52073197345716608280225736343927565587&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6

54.76.106.219

200

96 B

URL HTTP/1.1
digitalfederalcredit.tt.omtrdc.net/m2/digitalfederalcredit/mbox/json?mbox=target-global-mbox&mboxSession=325fe471b8204c41968382c78c12a420&mboxPC=&mboxPage=f7f3bfa62118425f9ec3d75590fa8ea2&mboxRid=d6e7efabd75a4789a503806d7a29f9d3&mboxVersion=1.8.3&mboxCount=1&mboxTime=1662118478174&mboxHost=www.alfabetizacaodiaria.com&mboxURL=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&mboxReferrer=&browserHeight=939&browserWidth=1280&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&pageurl=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&mboxMCSDID=391856ED3FFFE10C-01B72FB7A6815A7F&vst.trk=digitalfederalcreditunion.sc.omtrdc.net&vst.trks=digitalfederalcreditunion.sc.omtrdc.net&mboxMCGVID=52073197345716608280225736343927565587&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6
IP
54.76.106.219:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
96 B (96 bytes)
Hash
00e396b9ddad1a87852e67ee7f191829
46e85f09565f1998803683a1801fd385b801e71d
d095a8df156549e43661e8bc6e62f9dc451b1a4177f0945d24900862deb3ff6b

HTTP Headers

GET /m2/digitalfederalcredit/mbox/json?mbox=target-global-mbox&mboxSession=325fe471b8204c41968382c78c12a420&mboxPC=&mboxPage=f7f3bfa62118425f9ec3d75590fa8ea2&mboxRid=d6e7efabd75a4789a503806d7a29f9d3&mboxVersion=1.8.3&mboxCount=1&mboxTime=1662118478174&mboxHost=www.alfabetizacaodiaria.com&mboxURL=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&mboxReferrer=&browserHeight=939&browserWidth=1280&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&pageurl=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&mboxMCSDID=391856ED3FFFE10C-01B72FB7A6815A7F&vst.trk=digitalfederalcreditunion.sc.omtrdc.net&vst.trks=digitalfederalcreditunion.sc.omtrdc.net&mboxMCGVID=52073197345716608280225736343927565587&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6 HTTP/1.1
Host: digitalfederalcredit.tt.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.alfabetizacaodiaria.com
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/

HTTP/1.1 200 
Date: Fri, 02 Sep 2022 11:34:39 GMT
Content-Type: application/json;charset=UTF-8
Content-Length: 96
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://www.alfabetizacaodiaria.com
Access-Control-Allow-Credentials: true
X-Request-ID: d6e7efabd75a4789a503806d7a29f9d3
Pragma: no-cache
Cache-Control: no-cache
Timing-Allow-Origin: *

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
9ba16a45d7201960b62c90f92565cae7
0058a5a95f5ccf1eac57786ae61c6c438165893f
a252ef7a84e6b48d4e14bb967283616921d87c009c16f034b86f022a5d5969c4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2999
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 11:34:39 GMT
Last-Modified: Fri, 02 Sep 2022 10:44:40 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313

usassets.cobrowse.pega.com/assets/stylesheets/customer/final/default.css?v=8.7.1

23.23.131.85

200 OK

3.5 kB

URL HTTP/2
usassets.cobrowse.pega.com/assets/stylesheets/customer/final/default.css?v=8.7.1
IP
23.23.131.85:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text, with very long lines (14626)
Size
3.5 kB (3489 bytes)
Hash
c9e0ee1acc72fd18e3953cf614f7e879
bacc2349aab9dfac47cd153702e98e1fa48466f4
e13c4a8b7d5d884e11579582e7e99198c7fdfbd2587a37f52add1783e49e5d8e

HTTP Headers

GET /assets/stylesheets/customer/final/default.css?v=8.7.1 HTTP/1.1
Host: usassets.cobrowse.pega.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Sep 2022 11:34:39 GMT
content-type: text/css
content-length: 3489
set-cookie: AWSALB=cnufPJxL5Y3WwitAP+26XtqUalcGsw62flMLBSNG+LxnVzf8bYTXi0NgAxEXEEpvZcNBEEaz58Og6F6mTAnqu+hRQhcWnthv7HiO9H5K6MJTLql3x7q0wzuYfA3w; Expires=Fri, 09 Sep 2022 11:34:39 GMT; Path=/
AWSALBCORS=cnufPJxL5Y3WwitAP+26XtqUalcGsw62flMLBSNG+LxnVzf8bYTXi0NgAxEXEEpvZcNBEEaz58Og6F6mTAnqu+hRQhcWnthv7HiO9H5K6MJTLql3x7q0wzuYfA3w; Expires=Fri, 09 Sep 2022 11:34:39 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Wed, 13 Jul 2022 12:04:58 GMT
etag: "62ceb4ea-da1"
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
X-Firefox-Spdy: h2

digitalfederalcreditunion.sc.omtrdc.net/id?d_visid_ver=5.4.0&d_fieldgroup=A&mcorgid=46051B125B89FACB0A495DD6%40AdobeOrg&mid=52073197345716608280225736343927565587&ts=1662118478343

15.236.176.210

200 OK

2 B

URL HTTP/2
digitalfederalcreditunion.sc.omtrdc.net/id?d_visid_ver=5.4.0&d_fieldgroup=A&mcorgid=46051B125B89FACB0A495DD6%40AdobeOrg&mid=52073197345716608280225736343927565587&ts=1662118478343
IP
15.236.176.210:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /id?d_visid_ver=5.4.0&d_fieldgroup=A&mcorgid=46051B125B89FACB0A495DD6%40AdobeOrg&mid=52073197345716608280225736343927565587&ts=1662118478343 HTTP/1.1
Host: digitalfederalcreditunion.sc.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: http://www.alfabetizacaodiaria.com
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: http://www.alfabetizacaodiaria.com
access-control-allow-credentials: true
date: Fri, 02 Sep 2022 11:34:39 GMT
p3p: CP="This is not a P3P policy"
server: jag
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 2
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

alfabetizacaodiaria.com/js/vendor.e1d2459d.js

162.241.203.130

404 Not Found

3.6 kB

URL HTTP/1.1
alfabetizacaodiaria.com/js/vendor.e1d2459d.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902)
Size
3.6 kB (3558 bytes)
Hash
56c2ee2e4f440c19b9ec87ce3927bad4
da86e6ccb35bd73d0b2c55cdf64d863c4d4fc891
862080b2bf3bcb33b75e168a510c3ffdeb0d0ff44e48f059b18dbb096f6afdf7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/vendor.e1d2459d.js HTTP/1.1
Host: alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive
Cookie: AMCV_46051B125B89FACB0A495DD6%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CvVersion%7C5.4.0; at_check=true; mbox=session#325fe471b8204c41968382c78c12a420#1662120339

HTTP/1.1 404 Not Found
Date: Fri, 02 Sep 2022 11:34:39 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://alfabetizacaodiaria.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3558
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

dcu.demdex.net/dest5.html?d_nsid=0

34.241.100.149

200 OK

2.8 kB

URL HTTP/1.1
dcu.demdex.net/dest5.html?d_nsid=0
IP
34.241.100.149:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Size
2.8 kB (2791 bytes)
Hash
ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12

HTTP Headers

GET /dest5.html?d_nsid=0 HTTP/1.1
Host: dcu.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Fri, 2 Sep 2022 11:34:39 GMT
DCS: dcs-prod-irl1-2-v038-0972c09bf.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Wed, 3 Aug 2022 12:12:42 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: TObR03kCS8Y=
transfer-encoding: chunked
Connection: keep-alive

usassets.cobrowse.pega.com/assets/scripts/final/customer.js?v=8.7.1

23.23.131.85

200 OK

261 kB

URL HTTP/2
usassets.cobrowse.pega.com/assets/scripts/final/customer.js?v=8.7.1
IP
23.23.131.85:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (65536), with no line terminators
Size
261 kB (261370 bytes)
Hash
eb9524e46cc30efd2673a51baa3a655e
f9860cf1e6dc646899418909a7bf2156df4556a4
c1898417dc51a18a977daaea237101556511c77a676d51982c6c035cbf15f1c1

HTTP Headers

GET /assets/scripts/final/customer.js?v=8.7.1 HTTP/1.1
Host: usassets.cobrowse.pega.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Sep 2022 11:34:39 GMT
content-type: application/javascript
content-length: 261370
set-cookie: AWSALB=7Cnfj1kd4ZFgEzfaUJg4jiCVow2ieK8U1tPXjtZkA0Yf9Iv304cTC8FFBYg6uvF8ijTzS3c8SCfjBpUgz4EaW07TC30sIQ3avHuMSXHZ4UIm3hf1BUYJouGuD6cv; Expires=Fri, 09 Sep 2022 11:34:39 GMT; Path=/
AWSALBCORS=7Cnfj1kd4ZFgEzfaUJg4jiCVow2ieK8U1tPXjtZkA0Yf9Iv304cTC8FFBYg6uvF8ijTzS3c8SCfjBpUgz4EaW07TC30sIQ3avHuMSXHZ4UIm3hf1BUYJouGuD6cv; Expires=Fri, 09 Sep 2022 11:34:39 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Mon, 18 Jul 2022 06:30:25 GMT
etag: "62d4fe01-3fcfa"
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
X-Firefox-Spdy: h2

www.alfabetizacaodiaria.com/js/app.fa332a3e.js

162.241.203.130

301 Moved Permanently

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/js/app.fa332a3e.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/app.fa332a3e.js HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html
Cookie: AMCV_46051B125B89FACB0A495DD6%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C52073197345716608280225736343927565587%7CMCAAMLH-1662723278%7C6%7CMCAAMB-1662723278%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662125678s%7CNONE%7CvVersion%7C5.4.0; at_check=true; mbox=session#325fe471b8204c41968382c78c12a420#1662120339|PC#325fe471b8204c41968382c78c12a420.37_0#1725363279; AMCVS_46051B125B89FACB0A495DD6%40AdobeOrg=1

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 11:34:39 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://alfabetizacaodiaria.com/js/app.fa332a3e.js
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

alfabetizacaodiaria.com/js/app.fa332a3e.js

162.241.203.130

404 Not Found

3.6 kB

URL HTTP/1.1
alfabetizacaodiaria.com/js/app.fa332a3e.js
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902)
Size
3.6 kB (3558 bytes)
Hash
4f6d009896c3391aea54d0ac4c85780c
d599d33fe13fc23179e5552378bfedbcc612cdc4
c023b7c956b6fd80a06acba4e2ccfaa3fe5f37cb42188f873c85a9c9412c8878

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/app.fa332a3e.js HTTP/1.1
Host: alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive
Cookie: AMCV_46051B125B89FACB0A495DD6%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C52073197345716608280225736343927565587%7CMCAAMLH-1662723278%7C6%7CMCAAMB-1662723278%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662125678s%7CNONE%7CvVersion%7C5.4.0; at_check=true; mbox=session#325fe471b8204c41968382c78c12a420#1662120339|PC#325fe471b8204c41968382c78c12a420.37_0#1725363279; AMCVS_46051B125B89FACB0A495DD6%40AdobeOrg=1

HTTP/1.1 404 Not Found
Date: Fri, 02 Sep 2022 11:34:39 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://alfabetizacaodiaria.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3558
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

cdn.plaid.com/link/v2/stable/link-initialize.js

54.230.111.89

200 OK

33 kB

URL HTTP/2
cdn.plaid.com/link/v2/stable/link-initialize.js
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
data
Size
33 kB (32748 bytes)
Hash
b8a1c3f8982f843c1d2b05e5eb6b121a
f9a9e6e689698d36d244dfa994cd6be6c3de0b55
41b9a9aed9c34b52bf825f7c3688488597a9542a633ef19dc8560a80044d6fde

HTTP Headers

GET /link/v2/stable/link-initialize.js HTTP/1.1
Host: cdn.plaid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
x-amz-id-2: g0O7rsNjn0/9WCh6KU6ZKKQYReYz2CsTNpbeeMt5TNSN+a7K23dV1Nf/EfMKEeHTfacVqNvPdg8=
x-amz-request-id: T5EWZ847DMHPMQNR
date: Thu, 01 Sep 2022 19:50:50 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 01 Sep 2022 19:25:53 GMT
etag: W/"f2ce698751de84623001f1199b841787"
x-amz-server-side-encryption: AES256
cache-control: no-cache,must-revalidate,max-age=0
x-amz-version-id: y.Uo8zyePvRJd9CCAfACQfEf0R4Kge7w
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OzIOmGL1I6sotNuWqn0uyXGvbtERifujjF6SB9k3TVokPwv6KDUuGg==
age: 56629
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3f6aff3f38265b1f97bad09f0a19d306
1c12428a27dedd8f07d44b53ce982be95b4f42a8
47f3a4ff2d7f1c1af5af45b28685e3d0de471a07bcc96f649cf3b923410a6da1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47F3A4FF2D7F1C1AF5AF45B28685E3D0DE471A07BCC96F649CF3B923410A6DA1"
Last-Modified: Thu, 01 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16396
Expires: Fri, 02 Sep 2022 16:07:56 GMT
Date: Fri, 02 Sep 2022 11:34:40 GMT
Connection: keep-alive

frame.gleap.io/

34.159.137.246

200 OK

644 B

URL HTTP/2
frame.gleap.io/
IP
34.159.137.246:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (644), with no line terminators
Size
644 B (644 bytes)
Hash
411b9572102a58b7ca5751907e1d0a07
b64120a65b7527095356482e4e54279d09de74e8
a6a61f622aa3c8dcc45cd747747c5dd7a8899fc0de6ee5ff104746e8ab89e9ed

HTTP Headers

GET / HTTP/1.1
Host: frame.gleap.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
age: 30902
cache-control: public, max-age=0, must-revalidate
content-type: text/html; charset=UTF-8
date: Fri, 02 Sep 2022 02:59:38 GMT
etag: "f3df91cbeed13f88231117184805a8e4-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GBYZPJC7QCSVH1MEEMY1DC5P
content-length: 644
X-Firefox-Spdy: h2

www.alfabetizacaodiaria.com/favicon.ico

162.241.203.130

302 Found

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/favicon.ico
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html
Cookie: AMCV_46051B125B89FACB0A495DD6%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C52073197345716608280225736343927565587%7CMCAAMLH-1662723278%7C6%7CMCAAMB-1662723278%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662125678s%7CNONE%7CMCAID%7CNONE%7CvVersion%7C5.4.0; at_check=true; mbox=session#325fe471b8204c41968382c78c12a420#1662120339|PC#325fe471b8204c41968382c78c12a420.37_0#1725363279; AMCVS_46051B125B89FACB0A495DD6%40AdobeOrg=1

HTTP/1.1 302 Found
Date: Fri, 02 Sep 2022 11:34:40 GMT
Server: Apache
Link: <https://alfabetizacaodiaria.com/wp-json/>; rel="https://api.w.org/"
X-Redirect-By: WordPress
Location: http://alfabetizacaodiaria.com/wp-includes/images/w-logo-blue-white-bg.png
Content-Length: 0
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
bd238958ab99478d68a7c3b515d3f5ca
634a7bc0f5bc12a74ea1fcb09411cd32f18af038
2fe36388dbd1b04954941053ca0dcd4d46f8f24e57576d0db483236581d20447

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 11:34:40 GMT
Last-Modified: Fri, 02 Sep 2022 11:34:34 GMT
Server: ECS (dcb/7F5F)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eI8l624NRLSYTQyMDFg7TikIEcKiNjvMfBYP6ITL4IS8WseKp_nQ6A==
Age: 6

digitalfederalcreditunion.sc.omtrdc.net/b/ss/dfcudigbankingprod,dfcumainglobal/1/JS-2.22.4-LCUM/s96401762463785?AQB=1&ndh=1&pf=1&t=2%2F8%2F2022%2011%3A34%3A39%205%200&sdid=391856ED3FFFE10C-01B72FB7A6815A7F&vid=52073197345716608280225736343927565587&mid=52073197345716608280225736343927565587&aamlh=6&ce=UTF-8&pageName=projectfinance%3Aen%3Adcu%3Aphp%3Aotp.html&g=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&cc=USD&ch=dcu&server=www.alfabetizacaodiaria.com&events=event1&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&v1=dcu&c2=dcu%3Aphp&v2=dcu%3Aphp&c3=dcu%3Aphp%3Aotp.html&v3=dcu%3Aphp%3Aotp.html&c9=D%3Dv9&v9=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&v10=D%3Dc10&v11=projectfinance%3Aen%3Adcu%3Aphp%3Aotp.html&v12=year%3D2022%20%7C%20month%3DSeptember%20%7C%20date%3D2%20%7C%20day%3DFriday%20%7C%20time%3D11%3A34%20AM&v13=New&c14=28&v14=D%3Dc14&c15=New%20Visitor&c16=1&c17=first%20hit%20of%20visit&v20=Project%20Finance&v41=52073197345716608280225736343927565587&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=46051B125B89FACB0A495DD6%40AdobeOrg&AQE=1

15.236.176.210

200 OK

43 B

URL HTTP/1.1
digitalfederalcreditunion.sc.omtrdc.net/b/ss/dfcudigbankingprod,dfcumainglobal/1/JS-2.22.4-LCUM/s96401762463785?AQB=1&ndh=1&pf=1&t=2%2F8%2F2022%2011%3A34%3A39%205%200&sdid=391856ED3FFFE10C-01B72FB7A6815A7F&vid=52073197345716608280225736343927565587&mid=52073197345716608280225736343927565587&aamlh=6&ce=UTF-8&pageName=projectfinance%3Aen%3Adcu%3Aphp%3Aotp.html&g=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&cc=USD&ch=dcu&server=www.alfabetizacaodiaria.com&events=event1&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&v1=dcu&c2=dcu%3Aphp&v2=dcu%3Aphp&c3=dcu%3Aphp%3Aotp.html&v3=dcu%3Aphp%3Aotp.html&c9=D%3Dv9&v9=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&v10=D%3Dc10&v11=projectfinance%3Aen%3Adcu%3Aphp%3Aotp.html&v12=year%3D2022%20%7C%20month%3DSeptember%20%7C%20date%3D2%20%7C%20day%3DFriday%20%7C%20time%3D11%3A34%20AM&v13=New&c14=28&v14=D%3Dc14&c15=New%20Visitor&c16=1&c17=first%20hit%20of%20visit&v20=Project%20Finance&v41=52073197345716608280225736343927565587&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=46051B125B89FACB0A495DD6%40AdobeOrg&AQE=1
IP
15.236.176.210:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 2 x 2\012- data
Size
43 B (43 bytes)
Hash
ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506

HTTP Headers

GET /b/ss/dfcudigbankingprod,dfcumainglobal/1/JS-2.22.4-LCUM/s96401762463785?AQB=1&ndh=1&pf=1&t=2%2F8%2F2022%2011%3A34%3A39%205%200&sdid=391856ED3FFFE10C-01B72FB7A6815A7F&vid=52073197345716608280225736343927565587&mid=52073197345716608280225736343927565587&aamlh=6&ce=UTF-8&pageName=projectfinance%3Aen%3Adcu%3Aphp%3Aotp.html&g=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&cc=USD&ch=dcu&server=www.alfabetizacaodiaria.com&events=event1&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&v1=dcu&c2=dcu%3Aphp&v2=dcu%3Aphp&c3=dcu%3Aphp%3Aotp.html&v3=dcu%3Aphp%3Aotp.html&c9=D%3Dv9&v9=http%3A%2F%2Fwww.alfabetizacaodiaria.com%2Fdcu%2Fphp%2Fotp.html&v10=D%3Dc10&v11=projectfinance%3Aen%3Adcu%3Aphp%3Aotp.html&v12=year%3D2022%20%7C%20month%3DSeptember%20%7C%20date%3D2%20%7C%20day%3DFriday%20%7C%20time%3D11%3A34%20AM&v13=New&c14=28&v14=D%3Dc14&c15=New%20Visitor&c16=1&c17=first%20hit%20of%20visit&v20=Project%20Finance&v41=52073197345716608280225736343927565587&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=46051B125B89FACB0A495DD6%40AdobeOrg&AQE=1 HTTP/1.1
Host: digitalfederalcreditunion.sc.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/

HTTP/1.1 200 OK
access-control-allow-origin: *
date: Fri, 02 Sep 2022 11:34:40 GMT
expires: Thu, 01 Sep 2022 11:34:40 GMT
last-modified: Sat, 03 Sep 2022 11:34:40 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3569372258867511296-4619894470565752269
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff

cm.everesttech.net/cm/dd?d_uuid=52403232727557922040278301748830310979

34.248.32.199

302

0 B

URL HTTP/1.1
cm.everesttech.net/cm/dd?d_uuid=52403232727557922040278301748830310979
IP
34.248.32.199:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cm/dd?d_uuid=52403232727557922040278301748830310979 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 
Date: Fri, 02 Sep 2022 11:34:40 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~YxHqUAAAAGKf0gNx; Domain=.everesttech.net; Expires=Sat, 02-Sep-2023 11:34:40 GMT; Path=/
everest_session_v2=YxHqUAAAAGKf0wNx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=YxHqUAAAAGKf0gNx
Server: AMO-cookiemap/1.1

ocsp.godaddy.com/

192.124.249.36

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.36:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
ff8b8b55386364bc126d968df9c44f55
4c319a6e175063ef2ce2a358e6eeeffe87f86a63
f10735029c5c9bea4fca63dc10f2f6e851e5aa1ebc0eb05a92abeb8b7171fabe

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 02 Sep 2022 11:34:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Sep 2022 01:29:58 GMT
Expires: Sat, 03 Sep 2022 01:29:58 GMT
ETag: "4c319a6e175063ef2ce2a358e6eeeffe87f86a63"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ocsp.godaddy.com/

192.124.249.36

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.36:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
ff8b8b55386364bc126d968df9c44f55
4c319a6e175063ef2ce2a358e6eeeffe87f86a63
f10735029c5c9bea4fca63dc10f2f6e851e5aa1ebc0eb05a92abeb8b7171fabe

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 02 Sep 2022 11:34:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Sep 2022 01:29:58 GMT
Expires: Sat, 03 Sep 2022 01:29:58 GMT
ETag: "4c319a6e175063ef2ce2a358e6eeeffe87f86a63"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

dpm.demdex.net/ibs:dpid=411&dpuuid=YxHqUAAAAGKf0gNx

34.241.100.149

302 Found

0 B

URL HTTP/1.1
dpm.demdex.net/ibs:dpid=411&dpuuid=YxHqUAAAAGKf0gNx
IP
34.241.100.149:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ibs:dpid=411&dpuuid=YxHqUAAAAGKf0gNx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v038-0481eca2e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YxHqUAAAAGKf0gNx
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=79065755056061988843651094949409377714; Max-Age=15552000; Expires=Wed, 01 Mar 2023 11:34:40 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: yKygLbemS5U=
Content-Length: 0
Connection: keep-alive

frame.gleap.io/static/js/main.443cfc46.js

34.159.137.246

200 OK

117 kB

URL HTTP/2
frame.gleap.io/static/js/main.443cfc46.js
IP
34.159.137.246:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (65465)
Size
117 kB (116864 bytes)
Hash
5fcef777b5a97d01e4f7c9a7b73d074a
048480d79f9d4a562030197dde618f4ef6b4ca56
272a90e250b832b5c6dc2b2e31f39d8be5ef754f9e7023cc1b7c1a3ae63ff83d

HTTP Headers

GET /static/js/main.443cfc46.js HTTP/1.1
Host: frame.gleap.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frame.gleap.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 6391
cache-control: public, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Fri, 02 Sep 2022 09:48:09 GMT
etag: "e1cf7ba7fc74669f5b61bcd9d144dafa-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GBYZPJE61Y4W3H1TE8S46AG5
content-length: 116864
X-Firefox-Spdy: h2

frame.gleap.io/static/css/main.de56b7b2.css

34.159.137.246

200 OK

5.4 kB

URL HTTP/2
frame.gleap.io/static/css/main.de56b7b2.css
IP
34.159.137.246:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (34415)
Size
5.4 kB (5428 bytes)
Hash
272427200eed48f81560c775e82abcdd
54557b5a72c3955ad0c6f0c7897bb975462d8df8
a22e6f8b7a99cf86a44e42ded23e9f182191bbc333aeeeb22c9e9b83a243f723

HTTP Headers

GET /static/css/main.de56b7b2.css HTTP/1.1
Host: frame.gleap.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frame.gleap.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 153497
cache-control: public, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Wed, 31 Aug 2022 16:56:23 GMT
etag: "f0cb8a13a7993f2e22572e3bc1c87e39-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GBYZPJE74CQB8DX3CF3PTH7A
content-length: 5428
X-Firefox-Spdy: h2

dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YxHqUAAAAGKf0gNx

34.241.100.149

200 OK

59 B

URL HTTP/1.1
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YxHqUAAAAGKf0gNx
IP
34.241.100.149:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
59 B (59 bytes)
Hash
1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13

HTTP Headers

GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YxHqUAAAAGKf0gNx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v038-0690fdf5f.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: n7lHkX5aQJU=
Content-Length: 59
Connection: keep-alive

r3.o.lencr.org/

23.36.76.225

200 OK

1.2 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, max compression\012- data
Size
1.2 kB (1246 bytes)
Hash
cb03c072b705440dec771616e69295b0
4a6cada03d0a5893db493e52278d82ff90b1328b
c030a09949723dee2f24a0e7ca5c605a745745f1d3b973fe41bfd6329a41bef1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9448
Expires: Fri, 02 Sep 2022 14:12:08 GMT
Date: Fri, 02 Sep 2022 11:34:40 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6196 bytes)
Hash
5e05660322f0368dd2bf8067d7e4554d
ec65cb47d86488f734c945a210d5f636a40fea2c
98875230ec45766102191bdc4180742fa3b8f3ad5ad1a128d12437105f86247e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6196
x-amzn-requestid: a7d6ce70-06d7-498c-8024-80185a3fc3e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyLFmVIAMFkcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112674-3fad622927177e9236d7c50a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wLezqM4_yKqtOR7D43beBqm8TAD5y8eQ7xHOxjDJdHchCpyusuzMuQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:55:46 GMT
etag: "ec65cb47d86488f734c945a210d5f636a40fea2c"
content-type: image/jpeg
age: 49134
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd29a2d-3498-41a7-af26-6104f50c81c8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10015 bytes)
Hash
25983224daee47c629690b65e7db685b
6f144e4e28ba6dfb56860b187a224cfbc23b50bb
2ada67937844f22cf524d39cf034ae5e49dd892c4b2e70af31cec62c747e3762

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd29a2d-3498-41a7-af26-6104f50c81c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10015
x-amzn-requestid: 28b44607-90c3-42b0-9a47-5ffd4f670347
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLlfGBqIAMFWqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112622-38788fd737d1b6a35acc1fee;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zMXXwsarlTt3JoospInef1pe4wZKTV_YmnM_ZXD79XLq1f9aZzSl1w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:38:30 GMT
age: 50170
etag: "6f144e4e28ba6dfb56860b187a224cfbc23b50bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10435 bytes)
Hash
955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 50234
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe107ad28-65a4-4da6-acf9-ccb14d8503cd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10489 bytes)
Hash
e22c8145b541b1fbc277f2f76fd91d2a
ec84f7d5c5202df3bd716e19ceb9b0283cfff714
32dbfeaac6960253057fe4d24ad7d782d4e398a49b188c0af357dd924bf0c9c3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe107ad28-65a4-4da6-acf9-ccb14d8503cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10489
x-amzn-requestid: 9ddf3d6f-b4d1-4d5f-a84d-cfdb3bcbd80c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLx_HKqoAMFzCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112672-7de601b74dcc23070611db09;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:38:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p8UoOZXko5kHqr_GvEy2q1W9hSuLkA-Xp2KG9tO7S4pmyz_Dl4s-DA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:03:15 GMT
age: 48685
etag: "ec84f7d5c5202df3bd716e19ceb9b0283cfff714"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9252 bytes)
Hash
5ba50b2fd1814c5ffc95aef40c69ce8c
cbb4546228115cccc122b16209e70171bef5c1f2
de822c8549508b28a07d29b203ae3ef356470df906cba727fc765f1bd14bb866

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9252
x-amzn-requestid: 7feebba8-f6b9-4b79-9726-5a7534da277e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyVG5DoAMF_Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112675-3123158f3dcfbd476537ca3c;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BOa5zGQyJS9q9bHmtKzlNtyS9ToGPZJkDFo2uY2lzz8Lnd3cZLQEaA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:01:10 GMT
age: 48810
etag: "cbb4546228115cccc122b16209e70171bef5c1f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3dcbf97c-e2ef-42c1-84e6-d36517138af8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4857 bytes)
Hash
ba47e5bea81246b74db8fa6d1c4c376e
ef02bcd29260cae4175de741b092a2dacb5eba5c
4601bafab731540ab697b41d63083987d6a2ee46d1c14206b2abbf66627fac62

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3dcbf97c-e2ef-42c1-84e6-d36517138af8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4857
x-amzn-requestid: c0f1e9ed-99f5-4e77-9450-d2da46174b8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XznvKEuZoAMF5VA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311532d-44205ff418b7f8b406b5fe60;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 00:49:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ksTD3-J2vW6YmCEvFrlqz_Q-1pR7F829IJ3L6HCRecKNhZXa08HhJg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 06:29:27 GMT
age: 18313
etag: "ef02bcd29260cae4175de741b092a2dacb5eba5c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.alfabetizacaodiaria.com/dcu/php/undefined/api/config?messagesType=customer&language=en-US&company=

162.241.203.130

301 Moved Permanently

0 B

URL HTTP/1.1
www.alfabetizacaodiaria.com/dcu/php/undefined/api/config?messagesType=customer&language=en-US&company=
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dcu/php/undefined/api/config?messagesType=customer&language=en-US&company= HTTP/1.1
Host: www.alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/dcu/php/otp.html
Cookie: AMCV_46051B125B89FACB0A495DD6%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C52073197345716608280225736343927565587%7CMCAAMLH-1662723278%7C6%7CMCAAMB-1662723278%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662125678s%7CNONE%7CMCAID%7CNONE%7CMCSYNCSOP%7C411-19245%7CvVersion%7C5.4.0; at_check=true; mbox=session#325fe471b8204c41968382c78c12a420#1662120339|PC#325fe471b8204c41968382c78c12a420.37_0#1725363279; AMCVS_46051B125B89FACB0A495DD6%40AdobeOrg=1; s_tslv=1662118479052; s_vnc365=1693654479053%26vn%3D1; s_ivc=true; s_dur=1662118479053; s_nr30=1662118479079-New; s_ppv=projectfinance%253Aen%253Adcu%253Aphp%253Aotp.html%2C100%2C100%2C939%2C1%2C1; s_ips=939; s_tp=939; s_cc=true

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 11:34:42 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://alfabetizacaodiaria.com/dcu/php/undefined/api/config?messagesType=customer&language=en-US&company=
Content-Length: 0
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

alfabetizacaodiaria.com/dcu/php/undefined/api/config?messagesType=customer&language=en-US&company=

162.241.203.130

404 Not Found

3.6 kB

URL HTTP/1.1
alfabetizacaodiaria.com/dcu/php/undefined/api/config?messagesType=customer&language=en-US&company=
IP
162.241.203.130:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902)
Size
3.6 kB (3558 bytes)
Hash
6a32b64fbe6e36ebe35319cdc4d92359
449ee0db774e22e0efbd5ae651d18bf731e8948c
d104ea7c0ec2480f3b23c21134f4a288ca20bf5c4dae6fbc296cb6a3457dbbee

HTTP Headers

GET /dcu/php/undefined/api/config?messagesType=customer&language=en-US&company= HTTP/1.1
Host: alfabetizacaodiaria.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.alfabetizacaodiaria.com
Referer: http://www.alfabetizacaodiaria.com/
Connection: keep-alive
Cookie: AMCV_46051B125B89FACB0A495DD6%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C52073197345716608280225736343927565587%7CMCAAMLH-1662723278%7C6%7CMCAAMB-1662723278%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662125678s%7CNONE%7CMCAID%7CNONE%7CMCSYNCSOP%7C411-19245%7CvVersion%7C5.4.0; at_check=true; mbox=session#325fe471b8204c41968382c78c12a420#1662120339|PC#325fe471b8204c41968382c78c12a420.37_0#1725363279; AMCVS_46051B125B89FACB0A495DD6%40AdobeOrg=1; s_tslv=1662118479052; s_vnc365=1693654479053%26vn%3D1; s_ivc=true; s_dur=1662118479053; s_nr30=1662118479079-New; s_ppv=projectfinance%253Aen%253Adcu%253Aphp%253Aotp.html%2C100%2C100%2C939%2C1%2C1; s_ips=939; s_tp=939; s_cc=true

HTTP/1.1 404 Not Found
Date: Fri, 02 Sep 2022 11:34:42 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://alfabetizacaodiaria.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3558
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

cdn.plaid.com/link/2.0.1376/link-dynamic-loader.js

54.230.111.89

200 OK

0 B

URL HTTP/2
cdn.plaid.com/link/2.0.1376/link-dynamic-loader.js
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /link/2.0.1376/link-dynamic-loader.js HTTP/1.1
Host: cdn.plaid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: http://www.alfabetizacaodiaria.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 01 Sep 2022 19:50:51 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 01 Sep 2022 19:25:53 GMT
etag: W/"8744825afbb54e80b83d92ce26822ffd"
x-amz-server-side-encryption: AES256
cache-control: max-age=10800
x-amz-version-id: quYhGixYYSkxOJ.N3_Lsu.fNHiHJopz.
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wF1NO-oqoKgCcXXMQ5bZzQ4N0gN4dvMDI6oMhRG72m6MlbsLpN2vQg==
age: 56630
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL