Email do Remetente:netflix17@aviso12.contavalidaseg.com
Dono do domínio:
Registry Registrant ID:
Registrant Name: rafael, alex
Registrant Organization:
Registrant Street: rua cole porter 17
Registrant City: sao paulo
Registrant State/Province: SP
Registrant Postal Code: 08255180
Registrant Country: BR
Registrant Phone: +55.11916822917
Registrant Phone Ext:
Registrant Fax:
Registrant Fax Ext:
Registrant Email: alexrafaelars@gmail.com
Registry Admin ID:
Registry Tech ID:
Tech Name: rafael, alex
Tech Phone: +55.11916822917
Link da assinatura:https://fxn-te34t3k4eq-ew.a.run.app/
"domain": "contavalidaseg.com",
"base_domain": "contavalidaseg.com",
"dnssec": false,
"soa": {
"record": "NS1.BLUEHOST.com. root.BLUEHOST.com. 124080221 10800 3600 604800 3600",
"values": {
"primary_nameserver": "NS1.BLUEHOST.com",
"rname_email_address": "root@BLUEHOST.com",
"serial": 124080221,
"refresh": 10800,
"retry": 3600,
"expire": 604800,
"minimum": 3600
}
},
"ns": {
"hostnames": [
"ns1.bluehost.com",
"ns2.bluehost.com"
],
"warnings": []
},
"mx": {
"hosts": [],
"warnings": []
},
"mta_sts": {
"valid": false,
"error": "An MTA-STS DNS record does not exist."
},
"spf": {
"record": null,
"valid": false,
"void_dns_lookups": null,
"error": "An SPF record does not exist."
},
"dmarc": {
"record": null,
"location": null,
"valid": false,
"error": "A DMARC record does not exist."
},
"smtp_tls_reporting": {
"valid": false,
"error": "An SMTP TLS Reporting record does not exist."
},
"bimi": {
"record": null,
"valid": false,
"selector": "default",
"error": "A BIMI record does not exist at the default selector."
}
Estrutura do phishing:
content-type: text/html; charset=UTF-8
location: https://filmesflixuhdbr.reativeconta.com/wnf4e6d8717/d5e7f9a2b4c6e8f0a3b5c7d9e1f3a6b8/
x-cloud-trace-context: a2c1d2dff148d3553cf1e73238d6df20;o=1
date: Sun, 26 Apr 2026 14:24:58 GMT
server: Google Frontend
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
HTTP/1.1 302 Found
Date: Sun, 26 Apr 2026 14:25:01 GMT
Server: Apache/2.4.43 (Win64) OpenSSL/1.1.1g PHP/7.4.7
X-Powered-By: PHP/7.4.7
Location: https://google.com
Content-Type: text/html; charset=UTF-8
HTTP/2 301
location: https://www.google.com/
content-type: text/html; charset=UTF-8
content-security-policy-report-only: object-src 'none';base-uri 'self';script-src 'nonce-1GfMzKLiIudpLhbnawgDNA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other-hp
date: Sun, 26 Apr 2026 14:25:10 GMT
expires: Tue, 26 May 2026 14:25:10 GMT
cache-control: public, max-age=2592000
server: gws
content-length: 220
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
HTTP/2 200
content-type: text/html; charset=ISO-8859-1
content-security-policy-report-only: object-src 'none';base-uri 'self';script-src 'nonce-LNFPKkmdecf3X1R4FpzfBQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other-hp
accept-ch: Sec-CH-Prefers-Color-Scheme
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Sun, 26 Apr 2026 14:25:15 GMT
server: gws
x-xss-protection: 0
x-frame-options: SAMEORIGIN
expires: Sun, 26 Apr 2026 14:25:15 GMT
cache-control: private
set-cookie: AEC=AaJma5tEBi9VScbyAxxlLdOoAHmH_EkUD4DHgZrjqDeY8FnLcC0abrvmMfQ; expires=Fri, 23-Oct-2026 14:25:15 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
set-cookie: NID=530=UiSYqDB3io9IlmoxKCLVdyC4_JtXnA0TqcUZAyiK_xi2TR8ah2i1Gp2i88pKOHFeyyyFuvDtUIMXaudiVqkwLueOZvs-QMjVk501BwOcbrtZBMWy9hu7p2ko5sjkiFw7iWvW1SzCuKD4pddQgSg5tFy40TRN-046VPGnMXNMpMmyeT3iLKgLAd7k0OQXaF6deVh8Iu0sK4EiVDSX1o4Cah0uHAkI5Q; expires=Mon, 26-Oct-2026 14:25:15 GMT; path=/; domain=.google.com; HttpOnly
set-cookie: __Secure-BUCKET=CKsF; expires=Fri, 23-Oct-2026 14:25:15 GMT; path=/; domain=.google.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Nenhum comentário:
Postar um comentário