sanepr-pagamentos.top/cdn-cgi/images/browser-bar.png?1376755637
200 OK 715 B URL GET HTTP/3 sanepr-pagamentos.top/cdn-cgi/images/browser-bar.png?1376755637
IP
Requested by https://sanepr-pagamentos.top/?cp=kwan/
Certificate IssuerGoogle Trust Services LLC
Subjectsanepr-pagamentos.top
FingerprintF8:F9:6C:DA:C5:74:98:15:65:F8:27:42:E4:DF:37:B2:7A:39:71:53
ValidityMon, 20 Nov 2023 16:21:01 GMT - Sun, 18 Feb 2024 16:21:00 GMT
File type PNG image data, 960 x 53, 8-bit colormap, non-interlaced\012- data
Hash 226dcb8f6144bdaafdfbd8f2f354be64
3785cc5b3bf52f8e398177b0ff1020b24aa86b8c
8c873472f4925d5d47521db4d52532d2983e9cb1bde8b43143a6cc6db56c35db
Analyzer Verdict Alert urlquery suspicious Suspicious - Sinkholed / Blocked
GET /cdn-cgi/images/browser-bar.png?1376755637 HTTP/1.1
Host: sanepr-pagamentos.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanepr-pagamentos.top/cdn-cgi/styles/cf.errors.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 15:35:12 GMT
content-type: image/png
content-length: 715
last-modified: Tue, 28 Nov 2023 16:06:21 GMT
etag: "65660ffd-2cb"
server: cloudflare
cf-ray: 830d5b91793e1bfe-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Tue, 05 Dec 2023 17:35:12 GMT
cache-control: max-age=7200, public
accept-ranges: bytes
sanepr-pagamentos.top/cdn-cgi/images/cf-no-screenshot-error.png
200 OK 3.2 kB URL GET HTTP/3 sanepr-pagamentos.top/cdn-cgi/images/cf-no-screenshot-error.png
IP
Requested by https://sanepr-pagamentos.top/?cp=kwan/
Certificate IssuerGoogle Trust Services LLC
Subjectsanepr-pagamentos.top
FingerprintF8:F9:6C:DA:C5:74:98:15:65:F8:27:42:E4:DF:37:B2:7A:39:71:53
ValidityMon, 20 Nov 2023 16:21:01 GMT - Sun, 18 Feb 2024 16:21:00 GMT
File type PNG image data, 178 x 175, 8-bit colormap, non-interlaced\012- data
Hash 0d768cbc261841d3affc933b9ac3130e
aff136a4c761e1df1ada7e5d9a6ed0ebea74a4b7
1c53772285052e52bb7c12ad46a85a55747ed7bf66963fe1993fcef91ff5b0d0
Analyzer Verdict Alert urlquery suspicious Suspicious - Sinkholed / Blocked
GET /cdn-cgi/images/cf-no-screenshot-error.png HTTP/1.1
Host: sanepr-pagamentos.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sanepr-pagamentos.top/cdn-cgi/styles/cf.errors.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 15:35:12 GMT
content-type: image/png
content-length: 3213
last-modified: Tue, 28 Nov 2023 16:06:21 GMT
etag: "65660ffd-c8d"
server: cloudflare
cf-ray: 830d5b9179411bfe-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Tue, 05 Dec 2023 17:35:12 GMT
cache-control: max-age=7200, public
accept-ranges: bytes
sanepr-pagamentos.top/favicon.ico
403 Forbidden 4.5 kB URL GET HTTP/3 sanepr-pagamentos.top/favicon.ico
IP
Requested by https://sanepr-pagamentos.top/?cp=kwan/
Certificate IssuerGoogle Trust Services LLC
Subjectsanepr-pagamentos.top
FingerprintF8:F9:6C:DA:C5:74:98:15:65:F8:27:42:E4:DF:37:B2:7A:39:71:53
ValidityMon, 20 Nov 2023 16:21:01 GMT - Sun, 18 Feb 2024 16:21:00 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4758), with no line terminators
Hash 926f13d8ff414f2439d879b3d17eb76b
3ccb9596f388fa1f2a9f7c3e4d2eae0138dc3c60
42a3dfef5d58af0edccd8b4cf27e0a69b779dc698ffc9a373bb09856d7298fca
GET /favicon.ico HTTP/1.1
Host: sanepr-pagamentos.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sanepr-pagamentos.top/?cp=kwan/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 15:35:12 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Tue, 05 Dec 2023 15:35:27 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HyPi4Nce9ZaOhPQAgJdsMeiDPk69dqK0S4WGlLvl1mVEtCKCfxW7asPZ5vjao2OkLxd5cM4%2FgK%2FGgcYsr2TILSAmJpcP3FyxXmyK77ljn5%2B8G%2B5luCSFme3BvJu2lCLd1CdTXaoLiac%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830d5b91b9ad1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
sanepr-pagamentos.top/cdn-cgi/challenge-platform/h/b/jsd/r/830d5b903aedb50f
200 OK 0 B URL POST HTTP/3 sanepr-pagamentos.top/cdn-cgi/challenge-platform/h/b/jsd/r/830d5b903aedb50f
IP
Requested by https://sanepr-pagamentos.top/?cp=kwan/
Certificate IssuerGoogle Trust Services LLC
Subjectsanepr-pagamentos.top
FingerprintF8:F9:6C:DA:C5:74:98:15:65:F8:27:42:E4:DF:37:B2:7A:39:71:53
ValidityMon, 20 Nov 2023 16:21:01 GMT - Sun, 18 Feb 2024 16:21:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/830d5b903aedb50f HTTP/1.1
Host: sanepr-pagamentos.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12218
Origin: https://sanepr-pagamentos.top
DNT: 1
Connection: keep-alive
Referer: https://sanepr-pagamentos.top/?cp=kwan/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 15:35:13 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=JD4Dqlkc8yS7NXVtkhPijL6goFf8KLR76mKXdR3NbD8-1701790513-0-1-730ca2d2.73a07051.5b213570-0.2.1701790513; path=/; expires=Wed, 04-Dec-24 15:35:13 GMT; domain=.sanepr-pagamentos.top; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aFN0xx4r7c1PSfFeC7fbcatOCDJZbiFwkKJ8%2FwpRZrL57NZpC%2FAtDDjBJ119TdKID9OHdtqtTyB8ATMYQIK25KWhE6al9IgmaLQKlbIEXrEUkK5p5jOVjWZ2SyaZzQ0mbnI8PHbNmho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830d5b931abc1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
sanepr-pagamentos.top/cdn-cgi/styles/cf.errors.css
200 OK 24 kB URL GET HTTP/3 sanepr-pagamentos.top/cdn-cgi/styles/cf.errors.css
IP
Requested by https://sanepr-pagamentos.top/?cp=kwan/
Certificate IssuerGoogle Trust Services LLC
Subjectsanepr-pagamentos.top
FingerprintF8:F9:6C:DA:C5:74:98:15:65:F8:27:42:E4:DF:37:B2:7A:39:71:53
ValidityMon, 20 Nov 2023 16:21:01 GMT - Sun, 18 Feb 2024 16:21:00 GMT
File type ASCII text, with very long lines (24131)
Hash a1cedc21f16b5a97114857154fab35e9
95e9890a15a4f7f94f7f19d2c297e4b07503c526
1103290e25ebda2712abe344a87facbac00ddaba712729be9fe5feef807bf91b
Analyzer Verdict Alert urlquery suspicious Suspicious - Sinkholed / Blocked
GET /cdn-cgi/styles/cf.errors.css HTTP/1.1
Host: sanepr-pagamentos.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sanepr-pagamentos.top/?cp=kwan/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 15:35:12 GMT
content-type: text/css
last-modified: Tue, 28 Nov 2023 16:06:21 GMT
etag: W/"65660ffd-5e44"
server: cloudflare
cf-ray: 830d5b9138e71bfe-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Tue, 05 Dec 2023 17:35:12 GMT
cache-control: max-age=7200, public
content-encoding: gzip
sanepr-pagamentos.top/cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
200 OK 7.4 kB URL GET HTTP/3 sanepr-pagamentos.top/cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
IP
Requested by https://sanepr-pagamentos.top/?cp=kwan/
Certificate IssuerGoogle Trust Services LLC
Subjectsanepr-pagamentos.top
FingerprintF8:F9:6C:DA:C5:74:98:15:65:F8:27:42:E4:DF:37:B2:7A:39:71:53
ValidityMon, 20 Nov 2023 16:21:01 GMT - Sun, 18 Feb 2024 16:21:00 GMT
File type ASCII text, with very long lines (7377), with no line terminators
Hash 1d5759e0dec67dc7e37873f271f65900
d94ae005d3017965382501e1df6d78f9700d9f88
e402352aa3e1dd53fe43b61f11c0c665788b482f470e691d8c0b9d16761acb40
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js HTTP/1.1
Host: sanepr-pagamentos.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 15:35:12 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J9ZWHHXNJxFHMlZBW5NYXRs1mw%2FQM15tvTUe1stfpJLb%2FKPfXhZzWv%2FLXme68AI2M%2FTIiMzgSYyNrVt6Aodxc9lOM%2FzSkuy1pOX%2Fl78NgVH0Z334Y3FmyJNVAdk%2BbAAsjINnUZ1c65c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830d5b91f9fa1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
sanepr-pagamentos.top/?cp=kwan/
403 Forbidden 5.6 kB URL User Request GET HTTP/2 sanepr-pagamentos.top/?cp=kwan/
IP
Certificate IssuerGoogle Trust Services LLC
Subjectsanepr-pagamentos.top
FingerprintF8:F9:6C:DA:C5:74:98:15:65:F8:27:42:E4:DF:37:B2:7A:39:71:53
ValidityMon, 20 Nov 2023 16:21:01 GMT - Sun, 18 Feb 2024 16:21:00 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5851), with no line terminators
Hash 10ba8f79336504b01d05208e097e6ed8
d90411a89e5e016223cfac997f7b695530c41b32
d7a53ae83fcb5d32c64458b9537351471fd8038d96e1191995c57f74800438f0
GET /?cp=kwan/ HTTP/1.1
Host: sanepr-pagamentos.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://acesso-portal-via.myshopify.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Tue, 05 Dec 2023 15:35:12 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Tue, 05 Dec 2023 15:35:27 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2FQkwDdn1UYwhX%2BCHvD%2BDamWOSSlOWBg9KuDdwtEGe3uxDZk6pennGFxJ3Ju0uNH7OHl3dO0%2B08GypXmiDcAwePX1ihoOB%2BNQek3wqxALB3X4YrL6zo85XHI967AilVJcMI5J9fRJno%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830d5b903aedb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
sanepr-pagamentos.top/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 7.4 kB URL GET HTTP/3 sanepr-pagamentos.top/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
Requested by https://sanepr-pagamentos.top/?cp=kwan/
Certificate IssuerGoogle Trust Services LLC
Subjectsanepr-pagamentos.top
FingerprintF8:F9:6C:DA:C5:74:98:15:65:F8:27:42:E4:DF:37:B2:7A:39:71:53
ValidityMon, 20 Nov 2023 16:21:01 GMT - Sun, 18 Feb 2024 16:21:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: sanepr-pagamentos.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Tue, 05 Dec 2023 15:35:12 GMT
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
access-control-allow-origin: *
vary: accept-encoding
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TSiII0Y2OpBK1LaD7PntdM0u7sPmqgjwxQ%2F4ENUsOP%2FanFNlAWVQpclcInwjbFRTb6LYt6abmYwEEZGBo0l7ucgxEjhwFL9072FQ19fr44Z0AyAlkoxHYpscRF2MHjur533WhEcGCf4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830d5b91b9b31bfe-OSL
alt-svc: h3=":443"; ma=86400
23.227.38.74
188.114.97.1