portalsaude.meiahora.info/raza/prop/prosseguir/
172.67.135.173301 Moved Permanently 0 B URL HTTP/1.1 portalsaude.meiahora.info/raza/prop/prosseguir/
IP 172.67.135.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /raza/prop/prosseguir/ HTTP/1.1
Host: portalsaude.meiahora.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 13:40:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 14:40:05 GMT
Location: https://portalsaude.meiahora.info/raza/prop/prosseguir/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wA1QmCg75VbhvIYsDixCCnb6eHacnFRfwS4gAYCLlVAPAvfhqDamR8%2BOAMnDaTtrs8Yx89TleZW%2BjyeHSQ7UypUAPchkW3QV0dWBGpexoBn7TRi8FUw658qGmDPQV%2FRd6mx4ba%2F7i4tJVVet"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773478efeb9d0af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20042
Expires: Fri, 02 Dec 2022 19:14:07 GMT
Date: Fri, 02 Dec 2022 13:40:05 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18059
Expires: Fri, 02 Dec 2022 18:41:05 GMT
Date: Fri, 02 Dec 2022 13:40:06 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1691
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:06 GMT
Last-Modified: Fri, 02 Dec 2022 13:11:55 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ANULuujFhCsUMKfDokaJCN1q4UXZUNuc6aoiQePJDXRyRPaObOSIZNxnNBWTKUm45cPMFZ+rKvU=
x-amz-request-id: NPBJSKHZ5D11RGWX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 12:46:07 GMT
age: 3239
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 13:19:56 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1210
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 13:40:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.1 kB IP 142.250.74.131:0
Hash eff9b0998fab1168a265e08bd98ab215
b2f0170597b872f8521f62cad34cfc0120c3cf5c
7a0812b4d193620e1d49af9d986df6397539430c63eece0c0c254b75a5594a6d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 4.2 kB IP 93.184.220.29:0
File type gzip compressed data, from Unix\012- data
Hash dd239b19839673bdc301945e52bf283c
d1c1c3c6e3762b22be9ca4b1cb27acfe84f3d80c
5928db4d0355208c236208c51fb51f529f01a44719d17d8a334a3f56df2e7caf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:06 GMT
Server: ECS (amb/6BB6)
Content-Length: 279
portalsaude.meiahora.info/raza/prop/prosseguir/
104.21.7.31200 OK 21 kB URL HTTP/2 portalsaude.meiahora.info/raza/prop/prosseguir/
IP 104.21.7.31:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5579)
Hash 3a840e8e686f8d875251f2991743ce79
61104a76c427bc14136003b97373f3bc66862d23
dd3b9074690cdcef526a5dbc9201536965c7585328539272c41d204c9cb08652
GET /raza/prop/prosseguir/ HTTP/1.1
Host: portalsaude.meiahora.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 02 Dec 2022 13:40:06 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
last-modified: Fri, 02 Dec 2022 13:39:59 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Ff5e1ocP6jPlyY46kv%2BgPx8IAR02k5Kb1azey%2FZGCup77WFrHKL5dcgd2H11MyYo0EAw5NKC4E49FXM9eLiURl9ksfegakjCvC5P3QPdbJHVao0oGM27lkQvSMn8ZD2WqIcpsQv6%2Fnt9o5LJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773478f1ab8e1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 988ca3586a303e110d19ed8625bcdf32
d6bf31bd852deef3a38655b00595de834e81d941
1c748df352cfd9edd204756d3695e587a0ac6e9948e394bdf162e45d081367e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:06 GMT
Last-Modified: Fri, 02 Dec 2022 13:40:06 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/mukta/v13/iJWHBXyXfDDVXbFqj2md8WA.woff2
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/mukta/v13/iJWHBXyXfDDVXbFqj2md8WA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 21140, version 1.0\012- data
Hash cbd267bc765067b15567aa3d0d617794
f7dd8c99d6e561c0d29060d95711102d2419cc32
18efe70c0ef13ab8ccac687d4cfd1a56e6acc691ec1bd7f242127e5cc0d6afd2
GET /s/mukta/v13/iJWHBXyXfDDVXbFqj2md8WA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21140
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 05:45:40 GMT
expires: Fri, 01 Dec 2023 05:45:40 GMT
cache-control: public, max-age=31536000
age: 114866
last-modified: Tue, 26 Apr 2022 15:49:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/mukta/v13/iJWHBXyXfDDVXbEeiWmd8WA.woff2
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/mukta/v13/iJWHBXyXfDDVXbEeiWmd8WA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 21288, version 1.0\012- data
Hash eab39466c05fbfa06f2d5955c4f0afbc
b0680d4a7e6836048a610116c95198d88377d40c
9a3f8eb676ca0c654a8edea4aacd4a1339340dcd7540335abac4463cc78580a6
GET /s/mukta/v13/iJWHBXyXfDDVXbEeiWmd8WA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 19:16:16 GMT
expires: Wed, 29 Nov 2023 19:16:16 GMT
cache-control: public, max-age=31536000
age: 239030
last-modified: Tue, 26 Apr 2022 15:46:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash f5c492323d10dc3a5883ce2bc68695d5
2878786a96a5bf793a354574816e5ca55da16510
c7c7a13dd9803b8de8b16c5a4d1bd742038e1f4a70d758c48de966d734cb7ba2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 20:20:05 GMT
Expires: Wed, 07 Dec 2022 20:20:04 GMT
Etag: "2878786a96a5bf793a354574816e5ca55da16510"
Cache-Control: max-age=455397,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773478f63edf0b55-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1682
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:06 GMT
Last-Modified: Fri, 02 Dec 2022 13:12:04 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.218.168.248101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.168.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mHpmQZoeQHNmM54JdyN2Ow==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cl9uhTB5IjXghlhEkhYAajb3bbA=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-KD5J36D
142.250.74.168200 OK 89 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KD5J36D
IP 142.250.74.168:0
File type ASCII text, with very long lines (59771)
Hash d890eb527e6613b1a24381b43be11cc6
f5e782391ea1876acb1e3f57f70ccf373c3139ab
82d6fdf435209b4ead2392333615d94373d0afb81095c17802bf5066838a655e
GET /gtm.js?id=GTM-KD5J36D HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 13:40:07 GMT
expires: Fri, 02 Dec 2022 13:40:07 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88752
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 582dc5821640fc06c7065c719e2d0557
a0d834082c615f1f512c3bd814ff4b8583c8347d
42cddf6544286e823e67587f5694f2baa11cb02a254f60219e4b8bc89ed7dc79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 4.8 kB IP 142.250.74.131:0
Hash 8535ece7328c6a7c17e1c7f86034fd07
19271afa0164e9281525092f3f108b93cfc96b4d
e4bf8cf3b3f9855fd8299a6042552c5e8585d066b6506c9596beebeeaa31021e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ce4664ff78f43f330fe8110c920f96c8
8d95283944a9217b18b8aeb68c17992b79ab5638
a855f987a1c193780de746a84c4693da05cbc5b3dd9d97d769918441be33ea9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A855F987A1C193780DE746A84C4693DA05CBC5B3DD9D97D769918441BE33EA9B"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12693
Expires: Fri, 02 Dec 2022 17:11:40 GMT
Date: Fri, 02 Dec 2022 13:40:07 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 582dc5821640fc06c7065c719e2d0557
a0d834082c615f1f512c3bd814ff4b8583c8347d
42cddf6544286e823e67587f5694f2baa11cb02a254f60219e4b8bc89ed7dc79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 582dc5821640fc06c7065c719e2d0557
a0d834082c615f1f512c3bd814ff4b8583c8347d
42cddf6544286e823e67587f5694f2baa11cb02a254f60219e4b8bc89ed7dc79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
unphionetor.com/vctx?t=74972
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vctx?t=74972
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vctx?t=74972 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Fri, 02 Dec 2022 13:40:07 GMT
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 076a10a7e271e993ac633ffa92e76b90
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
gtm-mm59vfs-zdk1y.uc.r.appspot.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&_gaz=1&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&_fplc=0&ir=1&_uc=NO&_eu=Eg&_s=1&sid=1669988405&sct=1&seg=0&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_fv=2&_nsi=1&_ss=1&_c=1&ep.event_id=gtm.js&richsstsse
142.250.74.116500 Internal Server Error 323 B URL HTTP/2 gtm-mm59vfs-zdk1y.uc.r.appspot.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&_gaz=1&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&_fplc=0&ir=1&_uc=NO&_eu=Eg&_s=1&sid=1669988405&sct=1&seg=0&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_fv=2&_nsi=1&_ss=1&_c=1&ep.event_id=gtm.js&richsstsse
IP 142.250.74.116:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash c6b760e6b0be68f648b223590f8ceb8e
b50c437fcc7f726d8b057da3187e5d338eba63e4
f08cee021d976570f1fb821c45e384ad464f6bc254a76dbb39855048e2ef3189
GET /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&_gaz=1&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&_fplc=0&ir=1&_uc=NO&_eu=Eg&_s=1&sid=1669988405&sct=1&seg=0&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_fv=2&_nsi=1&_ss=1&_c=1&ep.event_id=gtm.js&richsstsse HTTP/1.1
Host: gtm-mm59vfs-zdk1y.uc.r.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 500 Internal Server Error
x-cloud-trace-context: d1c9863a7d47053397aed2ec4084b768
date: Fri, 02 Dec 2022 13:40:07 GMT
content-type: text/html; charset=UTF-8
server: Google Frontend
content-length: 323
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gtm-mm59vfs-zdk1y.uc.r.appspot.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&_fplc=0&ir=1&_uc=NO&_eu=Eg&_s=2&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_c=1&_et=3&richsstsse
142.250.74.116500 Internal Server Error 323 B URL HTTP/2 gtm-mm59vfs-zdk1y.uc.r.appspot.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&_fplc=0&ir=1&_uc=NO&_eu=Eg&_s=2&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_c=1&_et=3&richsstsse
IP 142.250.74.116:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash c6b760e6b0be68f648b223590f8ceb8e
b50c437fcc7f726d8b057da3187e5d338eba63e4
f08cee021d976570f1fb821c45e384ad464f6bc254a76dbb39855048e2ef3189
GET /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&_fplc=0&ir=1&_uc=NO&_eu=Eg&_s=2&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_c=1&_et=3&richsstsse HTTP/1.1
Host: gtm-mm59vfs-zdk1y.uc.r.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 500 Internal Server Error
x-cloud-trace-context: f8451ff459641cd6b2159bf6cca77648
date: Fri, 02 Dec 2022 13:40:07 GMT
content-type: text/html; charset=UTF-8
server: Google Frontend
content-length: 323
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=74972&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=74972&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=74972&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 02 Dec 2022 13:40:07 GMT
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 22307eaeb7edad328f707e99ea81755b
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
gtm-mm59vfs-zdk1y.uc.r.appspot.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_fplc=0&_uc=NO&_eu=AAg&_s=9&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2&richsstsse
142.250.74.116500 Internal Server Error 43 kB URL HTTP/2 gtm-mm59vfs-zdk1y.uc.r.appspot.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_fplc=0&_uc=NO&_eu=AAg&_s=9&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2&richsstsse
IP 142.250.74.116:0
Hash 2a33057651a20a6620dd061b6acf0b99
f11d3823441bfb65101769428ed9a0c4dc97b97c
82830a14af463fa1184caee14fc063b8866b2c7331f0881ddbf6d7a9eb08c9bc
GET /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_fplc=0&_uc=NO&_eu=AAg&_s=9&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2&richsstsse HTTP/1.1
Host: gtm-mm59vfs-zdk1y.uc.r.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 500 Internal Server Error
x-cloud-trace-context: 54caaea263e318f44a9e2d31ce60c14f
date: Fri, 02 Dec 2022 13:40:07 GMT
content-type: text/html; charset=UTF-8
server: Google Frontend
content-length: 323
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gtm-mm59vfs-zdk1y.uc.r.appspot.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_fplc=0&_uc=NO&_eu=AAg&_s=8&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&ep.event_id=gtm.js&_et=1&richsstsse
142.250.74.116500 Internal Server Error 337 B URL HTTP/2 gtm-mm59vfs-zdk1y.uc.r.appspot.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_fplc=0&_uc=NO&_eu=AAg&_s=8&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&ep.event_id=gtm.js&_et=1&richsstsse
IP 142.250.74.116:0
Hash 058dd4473e749222a66beb086c0e1825
c2c91302ff2a5634ffe363c40e316b39526edb96
12b72b8661a95c7c0e4739472698359733e326cb62a6b7912fca90eb2378aa35
GET /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_fplc=0&_uc=NO&_eu=AAg&_s=8&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&ep.event_id=gtm.js&_et=1&richsstsse HTTP/1.1
Host: gtm-mm59vfs-zdk1y.uc.r.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 500 Internal Server Error
x-cloud-trace-context: bd98020e4cf3566440b2a236936cc234
date: Fri, 02 Dec 2022 13:40:07 GMT
content-type: text/html; charset=UTF-8
server: Google Frontend
content-length: 323
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 5.3 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (16574), with no line terminators
Hash 5cdda5ed80a4ee13f700ae502f7cd4ec
0e6aa932abf3c56561a686aa3e8d069aaa3ca228
d54fc3e1792330cc768902f861f0a79ecffbfd23b8db14f354e8fcefd1c831c1
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "fe80c55f1e1387116ff9765261ed192c:1669645506.686439"
Last-Modified: Mon, 28 Nov 2022 14:22:05 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Fri, 02 Dec 2022 14:00:07 GMT
Date: Fri, 02 Dec 2022 13:40:07 GMT
Content-Length: 5269
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-conversion/10833618787/?random=1669988405551&cv=11&fst=1669988405551&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=r4P_CJqVv7kDEOPO760o&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
142.250.74.132302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/10833618787/?random=1669988405551&cv=11&fst=1669988405551&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=r4P_CJqVv7kDEOPO760o&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 142.250.74.132:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/10833618787/?random=1669988405551&cv=11&fst=1669988405551&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=r4P_CJqVv7kDEOPO760o&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/10833618787/?random=1669988405551&cv=11&fst=1669988405551&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=r4P_CJqVv7kDEOPO760o&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-conversion/10953287591/?random=1669988405588&cv=11&fst=1669988405588&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=TEK-CMfDpd4DEKfP9-Yo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
142.250.74.132302 Found 740 B URL HTTP/2 www.google.com/pagead/1p-conversion/10953287591/?random=1669988405588&cv=11&fst=1669988405588&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=TEK-CMfDpd4DEKfP9-Yo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 142.250.74.132:0
Hash d851132100a484dfa3db02c570039a8b
c81478559e80fe5082ee5a2460bd449b72aa0132
169c82425fe7fdda45059d0ad35643fdcdf3d502ce75652cb459fe0b467f118c
GET /pagead/1p-conversion/10953287591/?random=1669988405588&cv=11&fst=1669988405588&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=TEK-CMfDpd4DEKfP9-Yo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/10953287591/?random=1669988405588&cv=11&fst=1669988405588&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=TEK-CMfDpd4DEKfP9-Yo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/611304047/?random=1669988405579&cv=11&fst=1669988405579&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&auid=2083854359.1669988406&rfmt=3&fmt=4
142.250.74.98200 OK 894 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/611304047/?random=1669988405579&cv=11&fst=1669988405579&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&auid=2083854359.1669988406&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (1887), with no line terminators
Hash 778dc6183939d358521c4a7f825bff8d
fe5f1d3938939e35d69a1cc412503b6ea7100459
c7c241beb12540475218cedab0eda5de7e7fbe0f2aa6fb94c7d1e231fb929361
GET /pagead/viewthroughconversion/611304047/?random=1669988405579&cv=11&fst=1669988405579&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&auid=2083854359.1669988406&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 894
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 13:55:07 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/11033636244/?random=1669988405590&cv=11&fst=1669988405590&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Zhg5CJ3114MYEJTbn40p&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1
142.250.74.98200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/11033636244/?random=1669988405590&cv=11&fst=1669988405590&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Zhg5CJ3114MYEJTbn40p&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/11033636244/?random=1669988405590&cv=11&fst=1669988405590&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Zhg5CJ3114MYEJTbn40p&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 13:55:07 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-conversion/11033636244/?random=1669988405590&cv=11&fst=1669988405590&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Zhg5CJ3114MYEJTbn40p&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
142.250.74.132302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/11033636244/?random=1669988405590&cv=11&fst=1669988405590&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Zhg5CJ3114MYEJTbn40p&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 142.250.74.132:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/11033636244/?random=1669988405590&cv=11&fst=1669988405590&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Zhg5CJ3114MYEJTbn40p&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/11033636244/?random=1669988405590&cv=11&fst=1669988405590&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Zhg5CJ3114MYEJTbn40p&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10953287591/?random=1669988405588&cv=11&fst=1669988405588&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=TEK-CMfDpd4DEKfP9-Yo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1
142.250.74.98200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10953287591/?random=1669988405588&cv=11&fst=1669988405588&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=TEK-CMfDpd4DEKfP9-Yo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/10953287591/?random=1669988405588&cv=11&fst=1669988405588&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=TEK-CMfDpd4DEKfP9-Yo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 13:55:07 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Mukta:300,600,200&subset=latin
142.250.74.138200 OK 2.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Mukta:300,600,200&subset=latin
IP 142.250.74.138:0
Hash fa0dc2102e7a93f6827e94835999de10
62d5deb1ebd48663a446ea63dae9d1d72268ed2e
54ee837866b0a9f26a6982d464df8ce1b4745fe44b5ce57938e3ff829de8e1ba
GET /css?family=Mukta:300,600,200&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 13:40:06 GMT
date: Fri, 02 Dec 2022 13:40:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10833618787/?random=1669988405551&cv=11&fst=1669988405551&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=r4P_CJqVv7kDEOPO760o&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1
142.250.74.98200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10833618787/?random=1669988405551&cv=11&fst=1669988405551&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=r4P_CJqVv7kDEOPO760o&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/10833618787/?random=1669988405551&cv=11&fst=1669988405551&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=r4P_CJqVv7kDEOPO760o&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 13:55:07 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/811775827/?random=1669988405580&cv=11&fst=1669988405580&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=HWYGCNaChNoCENPuioMD&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1
142.250.74.98200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/811775827/?random=1669988405580&cv=11&fst=1669988405580&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=HWYGCNaChNoCENPuioMD&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/811775827/?random=1669988405580&cv=11&fst=1669988405580&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=HWYGCNaChNoCENPuioMD&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 13:55:07 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/10870238034/?random=1669988405583&cv=11&fst=1669988405583&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=pN3VCJa_7bkDENLWqr8o&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
142.250.74.132302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/10870238034/?random=1669988405583&cv=11&fst=1669988405583&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=pN3VCJa_7bkDENLWqr8o&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 142.250.74.132:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/10870238034/?random=1669988405583&cv=11&fst=1669988405583&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=pN3VCJa_7bkDENLWqr8o&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/10870238034/?random=1669988405583&cv=11&fst=1669988405583&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=pN3VCJa_7bkDENLWqr8o&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-DLQS4HHPSE&cid=1863452818.1669988406>m=2oebu0&aip=1&z=1871705578
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-DLQS4HHPSE&cid=1863452818.1669988406>m=2oebu0&aip=1&z=1871705578
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-DLQS4HHPSE&cid=1863452818.1669988406>m=2oebu0&aip=1&z=1871705578 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/811775827/?random=1669988405580&cv=11&fst=1669988405580&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=HWYGCNaChNoCENPuioMD&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
142.250.74.132302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/811775827/?random=1669988405580&cv=11&fst=1669988405580&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=HWYGCNaChNoCENPuioMD&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 142.250.74.132:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/811775827/?random=1669988405580&cv=11&fst=1669988405580&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=HWYGCNaChNoCENPuioMD&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/811775827/?random=1669988405580&cv=11&fst=1669988405580&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=HWYGCNaChNoCENPuioMD&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10931630075/?random=1669988405585&cv=11&fst=1669988405585&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=0-z3CIfXisYDEPvfzdwo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1
142.250.74.98200 OK 1.3 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10931630075/?random=1669988405585&cv=11&fst=1669988405585&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=0-z3CIfXisYDEPvfzdwo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1
IP 142.250.74.98:0
Hash ddd548859d1274eb42e19b263c54a05d
14cc27431407f0066d6a6cd118886180cc0e094a
34b4c818c1f7b6e9a4845d9d1a757dabfef2a0fdb9c541d113b245044f1bc04a
GET /pagead/viewthroughconversion/10931630075/?random=1669988405585&cv=11&fst=1669988405585&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=0-z3CIfXisYDEPvfzdwo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 13:55:07 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/10931630075/?random=1669988405585&cv=11&fst=1669988405585&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=0-z3CIfXisYDEPvfzdwo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
142.250.74.132302 Found 7.7 kB URL HTTP/2 www.google.com/pagead/1p-conversion/10931630075/?random=1669988405585&cv=11&fst=1669988405585&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=0-z3CIfXisYDEPvfzdwo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 142.250.74.132:0
Hash cef9d5bb5b3d7ea8bf206696f7a231ac
1db1d3ae5e6239d818f90677d5cfc670bf02e559
d19684515b65117ad0fee8f1c19423c4c2acd47aba7e4b5184d1173ab367d985
GET /pagead/1p-conversion/10931630075/?random=1669988405585&cv=11&fst=1669988405585&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=0-z3CIfXisYDEPvfzdwo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 13:40:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/10931630075/?random=1669988405585&cv=11&fst=1669988405585&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=0-z3CIfXisYDEPvfzdwo&hn=www.google.com&frm=0&url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tiba=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&value=0&bttype=purchase&auid=2083854359.1669988406&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9bd806cca07dea834ae8e19fe9681b03
2177d482712d52a37e8c40a647b18ca18cceb3e1
bc838e9f2fb696c917c7132e05d99914472c6b06336202b072902ade707a6ffd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.clarity.ms/eus2/s/0.6.43/clarity.js
13.107.219.53200 OK 18 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.43/clarity.js
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (55029)
Hash 6d59b47d9560d98259e9f35dce3d09e1
15cb16b12236a8f03d24a6710c024cfd96fc88f5
ab85cb42892169204b435caa21790dbbb9f58961722c33e341163dd1fa8dce4c
GET /eus2/s/0.6.43/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d9026a431ead4c"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-azure-ref-originshield: 0GweJYwAAAAAjciBFG16sQLPqXhzX0xKAQU1TMDRFREdFMTkxOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
x-azure-ref: 0OACKYwAAAAD0koTOy/npQazt+3/FHZ1IT1NMMjMxMDUwMjAzMDI5ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Fri, 02 Dec 2022 13:40:07 GMT
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-DLQS4HHPSE&cid=1863452818.1669988406>m=2oebu0&aip=1
173.194.222.157204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-DLQS4HHPSE&cid=1863452818.1669988406>m=2oebu0&aip=1
IP 173.194.222.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE&cid=1863452818.1669988406>m=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=12&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=12&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=12&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=7&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_c=1&_et=2
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=7&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_c=1&_et=2
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=7&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_c=1&_et=2 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=11&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&ep.event_id=gtm.js&_et=3
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=11&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&ep.event_id=gtm.js&_et=3
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=11&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&ep.event_id=gtm.js&_et=3 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=10&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=10&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=10&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=13&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=13&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=13&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=14&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=14&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=14&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=6&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=view_item&_c=1&_et=3
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=6&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=view_item&_c=1&_et=3
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=6&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=view_item&_c=1&_et=3 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=15&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=15&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=15&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&_et=2 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=16&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=scroll&_c=1&epn.percent_scrolled=90&_et=16
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=16&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=scroll&_c=1&epn.percent_scrolled=90&_et=16
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=16&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=scroll&_c=1&epn.percent_scrolled=90&_et=16 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=D21AB07CC6734928B97C2DD99743C561&RedC=c.clarity.ms&MXFR=05978F10BFC26D1938A59D7EBBC2635A
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=05978F10BFC26D1938A59D7EBBC2635A; domain=.clarity.ms; expires=Wed, 27-Dec-2023 13:40:08 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Fri, 02 Dec 2022 13:40:07 GMT
content-length: 0
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=17&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&epn.percent_scrolled=90&_et=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=17&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&epn.percent_scrolled=90&_et=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=AAg&_s=17&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=raza_view&_c=1&epn.percent_scrolled=90&_et=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.clarity.ms/tag/9rf6379oo9
13.107.219.53200 OK 2.0 kB URL HTTP/2 www.clarity.ms/tag/9rf6379oo9
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 4068ede0c209d020a63730b03dcaa4ec
40e967f92a7908ec902b67b97853d7fe21b785b1
eae99467e9cd8acbb542c316984621b0567a6ad849a4ac7ddaec6b93891e6c5b
GET /tag/9rf6379oo9 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=e6384c96d8424d0aa0a55006499389fe.20221202.20231202; expires=Sat, 02 Dec 2023 13:40:08 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:dfa4d45a-f309-4181-9ede-77e6e6c0ecf0
x-cache: CONFIG_NOCACHE
x-azure-ref: 0OACKYwAAAABgW6Oz2WJXQqjdDJnH08wxT1NMMjMxMDUwMjAzMDI5ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Fri, 02 Dec 2022 13:40:07 GMT
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&_s=4
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&_s=4
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&_s=4 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 57
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=5&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_c=1&_et=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=5&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_c=1&_et=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DLQS4HHPSE>m=2oebu0&_p=402652746&cid=1863452818.1669988406&ul=en-us&sr=1280x1024&ir=1&_eu=Eg&_s=5&sid=1669988405&sct=1&seg=1&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&dt=pop5%20%E2%80%93%20Portal%20Sa%C3%BAde&en=page_view&_c=1&_et=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://portalsaude.meiahora.info
date: Fri, 02 Dec 2022 13:40:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18625
Expires: Fri, 02 Dec 2022 18:50:33 GMT
Date: Fri, 02 Dec 2022 13:40:08 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18625
Expires: Fri, 02 Dec 2022 18:50:33 GMT
Date: Fri, 02 Dec 2022 13:40:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F937deb9c-e12c-486f-bf82-4833aed00836.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F937deb9c-e12c-486f-bf82-4833aed00836.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d08081e2dd562ef50e4e98ebc0136698
b5118bca37feda2ada3001199dc1d80ac6d2aacc
5160333e0cfd338b3887972d0a5c0f817ef88b70b7eb78e4e25d153a85e3478f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F937deb9c-e12c-486f-bf82-4833aed00836.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11443
x-amzn-requestid: 21469d81-ee4b-47f3-8877-b6658b3ea8b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDHE4zoAMFvfw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-5b39eddd703ea04e6a1355f8;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPuZoyOu_QAqbZvTUaNy1J3BOqnR2ttrIhv9BwRmWnKeba-e6MZWKA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:55:34 GMT
age: 56674
etag: "b5118bca37feda2ada3001199dc1d80ac6d2aacc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18625
Expires: Fri, 02 Dec 2022 18:50:33 GMT
Date: Fri, 02 Dec 2022 13:40:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PIC-TIeTFK_Y2AiqowYT4_8tMuzIKO23lAwx18fYepTf4PIWkmLqkQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:20:15 GMT
age: 29993
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:00:48 GMT
age: 27560
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd8ad22c2eb1eb91c76970fa449f1bc4
0de97f3a4964038222bd751e043e413113e6db9d
668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 02EF3QEVKmEB2ikbGk9gzQq7_VMi00ufHUNRFTL8MpwJKaXQwdT8HA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 03:42:27 GMT
age: 35861
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
age: 56915
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r_0F64VpyutAOJ9IcTWrs3Sv--fhKiwKsV1FW0fOMSRt1QLLPxvJzg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 10:51:17 GMT
age: 10131
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb0b231d82f3e27bc7b72abd02ce18e9
6b16f172595bf6e7a182fe4748457af0dacb4714
5278ff012f97eaa35ad47c13c1356cc0d36cb8737eabe757894c5aa58f24aa30
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3899
Cache-Control: max-age=117480
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Etag: "638918e5-1d7"
Expires: Sat, 03 Dec 2022 22:18:08 GMT
Last-Modified: Thu, 01 Dec 2022 21:13:09 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
cdn.taboola.com/libtrc/unip/1484436/tfa.js
151.101.129.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1484436/tfa.js
IP 151.101.129.44:0
File type ASCII text, with very long lines (58495)
Hash e29dfc61edc5ef143c98762ccc5c1fad
c1da7e8d33b32a395c52f3b500f77f204dc74867
9828983ffe297d8dde19c1696ffb750df63becbb8082371354c64296d7104fdc
GET /libtrc/unip/1484436/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: VGTdkK/QT8hZdcZoD3CgCwCG6p54nCkR+C7chECiBR91aWWrvbAIcFGyepRF36pHc8pIRB82A8g=
x-amz-request-id: H8DTTMJ718F8HW15
x-amz-replication-status: COMPLETED
last-modified: Sun, 27 Nov 2022 11:04:24 GMT
etag: "6c9053ce1c8cbcb06b21f31df39e4a24"
x-amz-version-id: sLL40D08uqUGUcvuI9EINrPDZLzyv8yv
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 02 Dec 2022 13:40:08 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1669-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669988408.924850,VS0,VE410
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 15
content-length: 17951
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb0b231d82f3e27bc7b72abd02ce18e9
6b16f172595bf6e7a182fe4748457af0dacb4714
5278ff012f97eaa35ad47c13c1356cc0d36cb8737eabe757894c5aa58f24aa30
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1196
Cache-Control: max-age=114777
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Etag: "638918e5-1d7"
Expires: Sat, 03 Dec 2022 21:33:05 GMT
Last-Modified: Thu, 01 Dec 2022 21:13:09 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
topdanet3.blogspot.com/2022/09/raza-view.html
142.250.74.161404 Not Found 15 kB URL HTTP/2 topdanet3.blogspot.com/2022/09/raza-view.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6565)
Hash fa95799223558219e7cef1f616d0462d
79cc9d183980f6e7d2caca03f9db18eca0b5c3cd
b4d743ace5f6b216b62b02556d3c2208b335a95f059ec92eda0b1ba7a3ec1f91
GET /2022/09/raza-view.html HTTP/1.1
Host: topdanet3.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 13:40:08 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 15106
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb0b231d82f3e27bc7b72abd02ce18e9
6b16f172595bf6e7a182fe4748457af0dacb4714
5278ff012f97eaa35ad47c13c1356cc0d36cb8737eabe757894c5aa58f24aa30
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3903
Cache-Control: max-age=117484
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Etag: "638918e5-1d7"
Expires: Sat, 03 Dec 2022 22:18:12 GMT
Last-Modified: Thu, 01 Dec 2022 21:13:09 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb0b231d82f3e27bc7b72abd02ce18e9
6b16f172595bf6e7a182fe4748457af0dacb4714
5278ff012f97eaa35ad47c13c1356cc0d36cb8737eabe757894c5aa58f24aa30
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1702
Cache-Control: max-age=115283
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Etag: "638918e5-1d7"
Expires: Sat, 03 Dec 2022 21:41:31 GMT
Last-Modified: Thu, 01 Dec 2022 21:13:09 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb0b231d82f3e27bc7b72abd02ce18e9
6b16f172595bf6e7a182fe4748457af0dacb4714
5278ff012f97eaa35ad47c13c1356cc0d36cb8737eabe757894c5aa58f24aa30
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3899
Cache-Control: max-age=117480
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Etag: "638918e5-1d7"
Expires: Sat, 03 Dec 2022 22:18:08 GMT
Last-Modified: Thu, 01 Dec 2022 21:13:09 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
topdanet3.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/2 topdanet3.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: topdanet3.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://topdanet3.blogspot.com/2022/09/raza-view.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 01:05:41 GMT
expires: Wed, 07 Dec 2022 01:05:41 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 18:54:36 GMT
content-type: text/javascript
age: 218067
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9bd806cca07dea834ae8e19fe9681b03
2177d482712d52a37e8c40a647b18ca18cceb3e1
bc838e9f2fb696c917c7132e05d99914472c6b06336202b072902ade707a6ffd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.bing.com/c.gif?CtsSyncId=D21AB07CC6734928B97C2DD99743C561&RedC=c.clarity.ms&MXFR=05978F10BFC26D1938A59D7EBBC2635A
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=D21AB07CC6734928B97C2DD99743C561&RedC=c.clarity.ms&MXFR=05978F10BFC26D1938A59D7EBBC2635A
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=D21AB07CC6734928B97C2DD99743C561&RedC=c.clarity.ms&MXFR=05978F10BFC26D1938A59D7EBBC2635A HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://portalsaude.meiahora.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=D21AB07CC6734928B97C2DD99743C561&MUID=2A1EBABC3AD1634D3209A8D23B8662CC
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=2A1EBABC3AD1634D3209A8D23B8662CC; domain=c.bing.com; expires=Wed, 27-Dec-2023 13:40:08 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0C996FBA9F7044EA99A3B2995EA19FF6 Ref B: OSL30EDGE0312 Ref C: 2022-12-02T13:40:08Z
date: Fri, 02 Dec 2022 13:40:08 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 267cc9d2fc0834e7dcc67cfd154a203e
c0730812ceab79d0708b847d7a62a7aba6d5e81d
1cdf3b1ad9cc8e3409a19df88fbc91053cf0823ca482f4e48edc074e13ff9435
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 267cc9d2fc0834e7dcc67cfd154a203e
c0730812ceab79d0708b847d7a62a7aba6d5e81d
1cdf3b1ad9cc8e3409a19df88fbc91053cf0823ca482f4e48edc074e13ff9435
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2342155703-widgets.js
216.58.207.233200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://topdanet3.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 287799
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/res/3311276799-indie_compiled.js
216.58.207.233200 OK 47 kB URL HTTP/2 resources.blogblog.com/blogblog/data/res/3311276799-indie_compiled.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (1535)
Hash 86d0aad32713640aa4d2e424e27970fe
4c88bc29b3fffa6e4a83c4919fc313c86526c506
c8284a3e3b30fea7bcd94cad17349dfa579575eace1987ec50a21417c5a8c5e3
GET /blogblog/data/res/3311276799-indie_compiled.js HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://topdanet3.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 46621
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:49:20 GMT
expires: Tue, 06 Dec 2022 13:49:20 GMT
cache-control: public, max-age=604800
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 258648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44
64.202.112.191200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44
IP 64.202.112.191:0
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:08 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: dcbb1e4f6f8ce197842ac686af484b73
content-encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 267cc9d2fc0834e7dcc67cfd154a203e
c0730812ceab79d0708b847d7a62a7aba6d5e81d
1cdf3b1ad9cc8e3409a19df88fbc91053cf0823ca482f4e48edc074e13ff9435
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 267cc9d2fc0834e7dcc67cfd154a203e
c0730812ceab79d0708b847d7a62a7aba6d5e81d
1cdf3b1ad9cc8e3409a19df88fbc91053cf0823ca482f4e48edc074e13ff9435
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=06578673656706387&referrer=
64.202.112.191200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=06578673656706387&referrer=
IP 64.202.112.191:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=06578673656706387&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:08 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 6c31ce866bd1e44d457e2f22837a10bb
content-encoding: gzip
tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=05294977720652773&referrer=
64.202.112.191200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=05294977720652773&referrer=
IP 64.202.112.191:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=05294977720652773&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:08 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 6891839a1f107be257c14104a76109bc
content-encoding: gzip
tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=0414916788322615&referrer=
64.202.112.191200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=0414916788322615&referrer=
IP 64.202.112.191:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=0414916788322615&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:08 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: fdeb5d18d7e665dd42405bbeb12a18a3
content-encoding: gzip
c.clarity.ms/c.gif?CtsSyncId=D21AB07CC6734928B97C2DD99743C561&MUID=2A1EBABC3AD1634D3209A8D23B8662CC
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=D21AB07CC6734928B97C2DD99743C561&MUID=2A1EBABC3AD1634D3209A8D23B8662CC
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=D21AB07CC6734928B97C2DD99743C561&MUID=2A1EBABC3AD1634D3209A8D23B8662CC HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://portalsaude.meiahora.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Fri, 02-Dec-2022 13:50:08 GMT; path=/; SameSite=None; Secure;
date: Fri, 02 Dec 2022 13:40:07 GMT
content-length: 42
X-Firefox-Spdy: h2
tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=0130692154978293&referrer=
64.202.112.191200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=0130692154978293&referrer=
IP 64.202.112.191:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=RAZAview&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=0130692154978293&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:08 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 88eed3d5e7f045238cd2daddcd028b36
content-encoding: gzip
tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=014321956286026616&referrer=
64.202.112.191200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=014321956286026616&referrer=
IP 64.202.112.191:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=014321956286026616&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:08 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: aabb8d7dfc1b726120e5cb469d80993a
content-encoding: gzip
app.monetizze.com.br/r/ASX7208468/?u=BL38404&undefined
23.36.79.24301 Moved Permanently 0 B URL HTTP/1.1 app.monetizze.com.br/r/ASX7208468/?u=BL38404&undefined
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/ASX7208468/?u=BL38404&undefined HTTP/1.1
Host: app.monetizze.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Content-Length: 0
Server: Apache
Location: https://thoraviril.blogspot.com/2020/04/thv-whitepage.html?mcr=ASX7208468
Access-Control-Allow-Origin: *
Expires: Fri, 02 Dec 2022 13:40:08 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 02 Dec 2022 13:40:08 GMT
Connection: keep-alive
Set-Cookie: PHPSESSID=7kh8rj487nme3e6a46q7b45d17; path=/; HttpOnly
mon_=%7B%22D8lJt7Y%3D%22%3A%22A0GyKNC7lPc3yg%3D%3D%22%7D; expires=Wed, 16-Sep-2296 13:40:08 GMT; path=/; samesite=none; domain=app.monetizze.com.br; secure; httponly
_fbp=fb.1.1669988408.4656232956; expires=Thu, 02-Mar-2023 13:40:08 GMT; path=/; domain=app.monetizze.com.br; httponly
msc_last=eyJjb29raWUiOiJBMEd5S05DN2xQYzN5Zz09IiwiZGF0YV90aW1lc3RhbXAiOiJCbVZYMFdOaUlISWRSVHNRY0E9PSIsImFmaWxpYWRvIjoiQm1GdEg5ZnMifQ%3D%3D; expires=Sat, 02-Dec-2023 13:40:08 GMT; path=/; domain=app.monetizze.com.br; httponly
ak_bmsc=559E7572921B2F0F5917139A7E0F1D01~000000000000000000000000000000~YAAQFE8kF3WQWoaEAQAA9twQ0xHMBbWpg4zVGaYzuRh7XraHlVaE4yl1Q5/NY6jz75YKd6ceaHvLwmvRtxFhwQgAb3pbi72DgfUSgGsEdvNBV2qxuWT7Wul9aTr4bwX2zC1TUVpdLmQRy8Q3xAZiaX3y9tVzo1JjYjaIbOW/ex8PAO52qoyVZlYh6tWWq7i1E2czEhgI3bb64L/QunjsXZjTy3ETUWvHibvuctDsFaBR1z4+1SfD6X7YHYhU0Fdiq+xei1BSD2OKfETVFYaNvaHWrbmiITGUgs+eESqnQUAenF5CHiSj5tqPmfmMlfNkwsuRP6aQ2mJ8cAvokjF3RjebU2FBkHrwgNVqTAI6wRxXLcIMP1fDVARNBa83jnF9gQ2Y8I4=; Domain=.monetizze.com.br; Path=/; Expires=Fri, 02 Dec 2022 15:40:07 GMT; Max-Age=7199; HttpOnly
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15768000 ; includeSubDomains
tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=duroVIEW&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=05123915075045404&referrer=
64.202.112.191200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=duroVIEW&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=05123915075045404&referrer=
IP 64.202.112.191:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=duroVIEW&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=05123915075045404&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:08 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: c374e051ec67f65789f4f015718c95b8
content-encoding: gzip
www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
142.250.74.35200 OK 3.5 kB URL HTTP/2 www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
IP 142.250.74.35:0
File type Unicode text, UTF-8 text, with very long lines (10473)
Hash 5f322b95a9dc592286f58bb0b446fb3a
7b504dd1f75dca0b6545643188e510cae4699c6a
a87b7a7bb8c3c8104355c38ea1e71953c2fc38320e3d32c675e753afa96eed15
GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://topdanet3.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 13:40:08 GMT
expires: Fri, 02 Dec 2022 13:40:08 GMT
cache-control: public, max-age=0
last-modified: Wed, 14 Apr 2021 19:28:00 GMT
content-type: text/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=duroVIEW&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=012485609298305922&referrer=
64.202.112.191200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=duroVIEW&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=012485609298305922&referrer=
IP 64.202.112.191:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=007896baf68284db2c07313fa4623a3dcf,00c931c54961e1e53c37edede49924ae9b,004e60858d8e46d2e44d827765b0520e58,00cb5f338007aae63073baf2ebf27a2193,00fad06bbb0bf0bedfb8a418e69a19c147,00a2dd34dcd2311bab043780ff59239261,00ed305355787233b5e3f660c8a510814e,00d9b924662117a9105a6b15df92988c44&apiObjVersion=1.1&obtpVersion=2.0.5&name=duroVIEW&dl=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&optOut=false&bust=012485609298305922&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:08 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 5bf773875b481184c2bbdf37fa97e1a2
content-encoding: gzip
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.34200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (4885)
Hash 941c8fc561252c0523b152f5634660c9
7966962f7609b0566c8afd67f33db186caed50eb
3076a8bd584405d5faffe20442f4e16b0601aae6ff9744be2846328b56325614
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://topdanet3.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 02 Dec 2022 13:40:08 GMT
expires: Fri, 02 Dec 2022 13:40:08 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 10963584313587139468
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48939
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5975042370483709&host=ca-host-pub-1556223355139109
142.250.74.34200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5975042370483709&host=ca-host-pub-1556223355139109
IP 142.250.74.34:0
File type ASCII text, with very long lines (4885)
Hash 17c2cf648415b36bf937b7d6970157ec
3000e0ddd77017f800f655ca855a18a6a080fd2c
840dd903ae15aaab570c8e200085514bd7b4ab6c0977e87d1ac9a1e93bc1209e
GET /pagead/js/adsbygoogle.js?client=ca-pub-5975042370483709&host=ca-host-pub-1556223355139109 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://topdanet3.blogspot.com
Connection: keep-alive
Referer: https://topdanet3.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 02 Dec 2022 13:40:08 GMT
expires: Fri, 02 Dec 2022 13:40:08 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 4162349518019035498
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48958
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 21c6a149b20a7a9010010aa9d3d7ce99
57e18e900b16d78e8a656b2748d36d2c6d1337dd
ed663a0e825b277d3754e56d73fde0dc5018ce3a3b6f2d9f5b09450afe022ed3
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 06 Dec 2022 10:45:06 GMT
ETag: "57e18e900b16d78e8a656b2748d36d2c6d1337dd"
Last-Modified: Fri, 02 Dec 2022 10:45:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2452
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773479026b33fab8-OSL
trc.taboola.com/1484436/trc/3/json?tim=1669988406619&data=%7B%22id%22%3A872%2C%22ii%22%3A%22%2Fpop5%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1669988406611%2C%22cv%22%3A%2220221124-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fpop5%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnewlifepro-br-razaganv12conta2-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1669988406619%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A93%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.129.44200 OK 5.6 kB URL HTTP/2 trc.taboola.com/1484436/trc/3/json?tim=1669988406619&data=%7B%22id%22%3A872%2C%22ii%22%3A%22%2Fpop5%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1669988406611%2C%22cv%22%3A%2220221124-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fpop5%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnewlifepro-br-razaganv12conta2-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1669988406619%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A93%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.129.44:0
Hash 20a745a97997721c67c19c7aedeb609e
e025e7a69dcc88dbdecfa89e204ef35b32af3dc4
b07ed934c743b5bd7b13373268ce2197f8b8099fb321d90c3010bb46b67ee4ce
GET /1484436/trc/3/json?tim=1669988406619&data=%7B%22id%22%3A872%2C%22ii%22%3A%22%2Fpop5%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1669988406611%2C%22cv%22%3A%2220221124-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fpop5%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnewlifepro-br-razaganv12conta2-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1669988406619%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A93%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Fri, 02 Dec 2022 13:40:08 GMT
via: 1.1 varnish
x-served-by: cache-bma1669-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669988408.492250,VS0,VE114
vary: Accept-Encoding
x-vcl-time-ms: 114
X-Firefox-Spdy: h2
trc.taboola.com/1484436/log/3/unip?en=view_content&tim=1669988406622&vi=1669988406611&ri=3a604d8480fb735d2f04d4cc33a2bcdf&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tos=243&ssd=1&scd=93
151.101.129.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1484436/log/3/unip?en=view_content&tim=1669988406622&vi=1669988406611&ri=3a604d8480fb735d2f04d4cc33a2bcdf&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tos=243&ssd=1&scd=93
IP 151.101.129.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1484436/log/3/unip?en=view_content&tim=1669988406622&vi=1669988406611&ri=3a604d8480fb735d2f04d4cc33a2bcdf&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tos=243&ssd=1&scd=93 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Fri, 02 Dec 2022 13:40:08 GMT
via: 1.1 varnish
x-served-by: cache-bma1669-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669988409.644907,VS0,VE88
x-vcl-time-ms: 88
X-Firefox-Spdy: h2
s1.kwai.net/kos/s101/nlav11187/pixel/events.js?sdkid=422403242070126000&lib=kwaiq
101.33.29.223200 OK 49 kB URL HTTP/1.1 s1.kwai.net/kos/s101/nlav11187/pixel/events.js?sdkid=422403242070126000&lib=kwaiq
IP 101.33.29.223:0
File type Unicode text, UTF-8 text, with very long lines (64894)
Hash 5c08dd5169cdfc87f77b87a937dcf830
9ed9c5f44f701aa75bceb1b41b44a248b6b2d586
5b604047beba52b5a5b6253ccfbe8d246a2120baf6484ab79554d23a693d2bda
GET /kos/s101/nlav11187/pixel/events.js?sdkid=422403242070126000&lib=kwaiq HTTP/1.1
Host: s1.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Wed, 16 Nov 2022 11:56:14 GMT
Content-Encoding: gzip
Etag: "E1216EEC2B5BCD2AF6FA82C6A6DAE4BB"
Server: AliyunOSS
Date: Mon, 28 Nov 2022 21:27:04 GMT
Content-Type: application/javascript
x-oss-request-id: 638527A85943073831B5951B
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5204444445661091573
x-oss-storage-class: Standard
x-oss-server-time: 136
Content-Length: 48593
Accept-Ranges: bytes
X-NWS-LOG-UUID: 15521362604566153948
Connection: keep-alive
X-Cache-Lookup: Cache Hit
x-ks-client-ip: 91.90.42.154
X-Ks-Request-ID: 15521362604566153948
X-Ks-Cache: Hit from 101.33.29.223
kwaisign: NULL
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: x-ks-request-id,x-ks-client-ip,Content-Length
Cache-Control: max-age=2592000
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15435
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-credentials: true
date: Fri, 02 Dec 2022 13:40:08 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=topdanet3.blogspot.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=topdanet3.blogspot.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=topdanet3.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://topdanet3.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Dec 2022 13:40:08 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
trc.taboola.com/1484437/log/3/unip?en=view_content&tim=1669988406622&vi=1669988406611&ri=f87de109cf2aa1c1cc523ca00247c9c1&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tos=475&ssd=1&scd=93
151.101.129.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1484437/log/3/unip?en=view_content&tim=1669988406622&vi=1669988406611&ri=f87de109cf2aa1c1cc523ca00247c9c1&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tos=475&ssd=1&scd=93
IP 151.101.129.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1484437/log/3/unip?en=view_content&tim=1669988406622&vi=1669988406611&ri=f87de109cf2aa1c1cc523ca00247c9c1&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F&tos=475&ssd=1&scd=93 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Fri, 02 Dec 2022 13:40:08 GMT
via: 1.1 varnish
x-served-by: cache-bma1669-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669988409.867795,VS0,VE95
x-vcl-time-ms: 95
X-Firefox-Spdy: h2
trc.taboola.com/1484437/trc/3/json?tim=1669988406861&data=%7B%22id%22%3A900%2C%22ii%22%3A%22%2Fpop5%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1669988406611%2C%22cv%22%3A%2220221124-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fpop5%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnewlifepro-br-razaganv12conta2-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1669988406622%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F%22%2C%22tos%22%3A5%2C%22ssd%22%3A1%2C%22scd%22%3A93%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.129.44200 OK 1.5 kB URL HTTP/2 trc.taboola.com/1484437/trc/3/json?tim=1669988406861&data=%7B%22id%22%3A900%2C%22ii%22%3A%22%2Fpop5%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1669988406611%2C%22cv%22%3A%2220221124-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fpop5%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnewlifepro-br-razaganv12conta2-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1669988406622%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F%22%2C%22tos%22%3A5%2C%22ssd%22%3A1%2C%22scd%22%3A93%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.129.44:0
File type Unicode text, UTF-8 text, with very long lines (2472), with no line terminators
Hash 936f61a67093524b23d911cf53c7e4ac
2a5a7ef070c485e4fb24cc6d2cfdf14dea322102
a1f47e6ff67a1b8ef337d5678eb544edd20e48dd5b63ec73809f1e762a399d34
GET /1484437/trc/3/json?tim=1669988406861&data=%7B%22id%22%3A900%2C%22ii%22%3A%22%2Fpop5%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1669988406611%2C%22cv%22%3A%2220221124-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fpop5%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback1%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dnewlifepro-br-razaganv12conta2-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1669988406622%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F%22%2C%22tos%22%3A5%2C%22ssd%22%3A1%2C%22scd%22%3A93%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Fri, 02 Dec 2022 13:40:08 GMT
via: 1.1 varnish
x-served-by: cache-bma1669-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669988409.732958,VS0,VE106
vary: Accept-Encoding
x-vcl-time-ms: 106
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/res/3026064950-strm_compiled.js
216.58.207.233200 OK 47 kB URL HTTP/2 resources.blogblog.com/blogblog/data/res/3026064950-strm_compiled.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (1904)
Hash f3040b8525e55ca1a53201d87fb9b77c
99f3ed046949e8ff5817dfebc35536d04acb7a96
e236f9f0af057185d48f30488936150f8f57abe9f012e68f99058c9e4862b6e9
GET /blogblog/data/res/3026064950-strm_compiled.js HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thoraviril.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 46658
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 22:39:34 GMT
expires: Sat, 03 Dec 2022 22:39:34 GMT
cache-control: public, max-age=604800
last-modified: Sat, 26 Nov 2022 21:49:39 GMT
content-type: text/javascript
age: 486034
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f4b80b9fdd50e1a97c434f592efe9e5f
9f8ef6f699f6a349edf46c73ed4023d706027201
ed2e81c384d6b31b0e0ed2169df1bb332e92bb8c5885eedb13f7a4270b8abec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 13:40:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
172.217.21.161200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://topdanet3.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 02 Dec 2022 13:40:09 GMT
expires: Fri, 02 Dec 2022 13:40:09 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
172.217.21.161200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://topdanet3.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 15:08:26 GMT
expires: Fri, 01 Dec 2023 15:08:26 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 81103
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=thoraviril.blogspot.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=thoraviril.blogspot.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=thoraviril.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thoraviril.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Dec 2022 13:40:09 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 843
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-credentials: true
date: Fri, 02 Dec 2022 13:40:08 GMT
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 1a14c478a800e8674479e93d408e857c
4f2c5b42bbc0e0ea7a86d4e55990344c157658eb
450d59a048057a78961e24a6f6c44a8d37c56f43fba7482b51984d29c766b512
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 06 Dec 2022 09:58:20 GMT
ETag: "4f2c5b42bbc0e0ea7a86d4e55990344c157658eb"
Last-Modified: Fri, 02 Dec 2022 09:58:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3054
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77347907ae66fab8-OSL
unphionetor.com/vbri?t=74972&bid=undefined&aid=undefined&tp=4112
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbri?t=74972&bid=undefined&aid=undefined&tp=4112
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbri?t=74972&bid=undefined&aid=undefined&tp=4112 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 02 Dec 2022 13:40:09 GMT
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 65a1efdc49d455fde4f83c0b6a12fc8f
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
trc-events.taboola.com/1484436/log/3/unip?en=pre_d_eng_tb&tos=1553&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669988408170&vi=1669988406611&ri=3a604d8480fb735d2f04d4cc33a2bcdf&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1484436/log/3/unip?en=pre_d_eng_tb&tos=1553&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669988408170&vi=1669988406611&ri=3a604d8480fb735d2f04d4cc33a2bcdf&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1484436/log/3/unip?en=pre_d_eng_tb&tos=1553&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669988408170&vi=1669988406611&ri=3a604d8480fb735d2f04d4cc33a2bcdf&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Fri, 02 Dec 2022 13:40:10 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1484437/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669988408171&vi=1669988406611&ri=f87de109cf2aa1c1cc523ca00247c9c1&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1484437/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669988408171&vi=1669988406611&ri=f87de109cf2aa1c1cc523ca00247c9c1&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1484437/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669988408171&vi=1669988406611&ri=f87de109cf2aa1c1cc523ca00247c9c1&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Fri, 02 Dec 2022 13:40:10 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 1a14c478a800e8674479e93d408e857c
4f2c5b42bbc0e0ea7a86d4e55990344c157658eb
450d59a048057a78961e24a6f6c44a8d37c56f43fba7482b51984d29c766b512
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 13:40:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 06 Dec 2022 09:58:20 GMT
ETag: "4f2c5b42bbc0e0ea7a86d4e55990344c157658eb"
Last-Modified: Fri, 02 Dec 2022 09:58:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3055
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7734790e3ad8fab8-OSL
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 356
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-credentials: true
date: Fri, 02 Dec 2022 13:40:10 GMT
X-Firefox-Spdy: h2
trc-events.taboola.com/1484436/log/3/unip?en=pre_d_eng_tb&tos=4556&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1669988411173&vi=1669988406611&ri=3a604d8480fb735d2f04d4cc33a2bcdf&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1484436/log/3/unip?en=pre_d_eng_tb&tos=4556&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1669988411173&vi=1669988406611&ri=3a604d8480fb735d2f04d4cc33a2bcdf&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1484436/log/3/unip?en=pre_d_eng_tb&tos=4556&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1669988411173&vi=1669988406611&ri=3a604d8480fb735d2f04d4cc33a2bcdf&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 02 Dec 2022 13:40:12 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1484437/log/3/unip?en=pre_d_eng_tb&tos=4558&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1669988411174&vi=1669988406611&ri=f87de109cf2aa1c1cc523ca00247c9c1&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1484437/log/3/unip?en=pre_d_eng_tb&tos=4558&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1669988411174&vi=1669988406611&ri=f87de109cf2aa1c1cc523ca00247c9c1&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1484437/log/3/unip?en=pre_d_eng_tb&tos=4558&scd=93&ssd=1&est=1669988406614&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1669988411174&vi=1669988406611&ri=f87de109cf2aa1c1cc523ca00247c9c1&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fportalsaude.meiahora.info%2Fraza%2Fprop%2Fprosseguir%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 02 Dec 2022 13:40:12 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
checkout.razagan.com/pixel.php?
188.114.96.1200 OK 0 B URL HTTP/2 checkout.razagan.com/pixel.php?
IP 188.114.96.1:0
GET /pixel.php? HTTP/1.1
Host: checkout.razagan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 13:40:06 GMT
content-type: image/jpg
last-modified: Fri, 02 Dec 2022 12:28:20 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=90YoJLDiuhZ%2Bc%2B1WK%2BORSp0cs8iPIKZCS35xtqc7NnditBTKkFoCl2IsnHT85ssKH4nhL62LUI%2FYrrPUuR%2FlTBsJzPNZGSc9fpmiTwaJailCHwMNb7AdBi8ictZD5hduSYcO27jPgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773478f51af7b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.clarity.ms/tag/a1jwjfjmcv?ref=gtm2
13.107.219.53200 OK 0 B URL HTTP/2 www.clarity.ms/tag/a1jwjfjmcv?ref=gtm2
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/a1jwjfjmcv?ref=gtm2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=e301218b989648cb906c762bdf8610b3.20221202.20231202; expires=Sat, 02 Dec 2023 13:40:07 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 0NwCKYwAAAAD2xgTFr4HVSoR13ezyVlwJT1NMMjMxMDUwMjAzMDI5ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Fri, 02 Dec 2022 13:40:07 GMT
X-Firefox-Spdy: h2
api.mythad.com/rest/n/adintl/ad/getPixelConfig?pixelId=422403242070126000
43.134.151.146200 OK 0 B URL HTTP/2 api.mythad.com/rest/n/adintl/ad/getPixelConfig?pixelId=422403242070126000
IP 43.134.151.146:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /rest/n/adintl/ad/getPixelConfig?pixelId=422403242070126000 HTTP/1.1
Host: api.mythad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://portalsaude.meiahora.info
Connection: keep-alive
Referer: https://portalsaude.meiahora.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 13:40:09 GMT
content-type: application/json;charset=UTF-8
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-27=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, h3-Q039=":443"; ma=2592000, quic=":443"; ma=2592000; v="39,43,46"
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://portalsaude.meiahora.info
access-control-allow-credentials: true
x-kslogid: 669988409973654044
content-encoding: gzip
X-Firefox-Spdy: h2