r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2233
Expires: Fri, 27 Jan 2023 13:51:12 GMT
Date: Fri, 27 Jan 2023 13:13:59 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4314
Expires: Fri, 27 Jan 2023 14:25:53 GMT
Date: Fri, 27 Jan 2023 13:13:59 GMT
Connection: keep-alive
ddmpay.ddmacordos.com/?c=scpc
301 Moved Permanently 245 B URL HTTP/1.1 ddmpay.ddmacordos.com/?c=scpc
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9bc3982d854264d7a1836b037ef485f6
a7dbef9447108db4f65f319706ab5464320c7ef9
3f46d0b8c0e58a1ff8733f0bebb1257b2f6b10b5894d64168d3780f9e4178933
GET /?c=scpc HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 27 Jan 2023 13:13:59 GMT
Server: Apache
Location: https://ddmpay.ddmacordos.com/?c=scpc
Content-Length: 245
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 12:42:59 GMT
content-type: application/json
age: 1861
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8023
Expires: Fri, 27 Jan 2023 15:27:43 GMT
Date: Fri, 27 Jan 2023 13:14:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +y9RN5HzP3rFJLFe73XdNZx3WCRlke1SGkj2woEsvKBUpsjTAL4oZUL2KQkDJ9KWUgIUvT2k2Xg=
x-amz-request-id: 05NRBPTK7882C42K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 12:20:32 GMT
age: 3208
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 13:14:00 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 12:49:03 GMT
age: 1497
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ddmpay.ddmacordos.com/?c=scpc
200 OK 54 B URL HTTP/1.1 ddmpay.ddmacordos.com/?c=scpc
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 31273ce0118f1429172da049673041d6
b227586360776dedbdd35702971ae9a7f44d9072
378b296d4a235ed82f612388de8212c97c1007a7400570f489c8ad1a8d2477ed
GET /?c=scpc HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:00 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3171
Expires: Fri, 27 Jan 2023 14:06:51 GMT
Date: Fri, 27 Jan 2023 13:14:00 GMT
Connection: keep-alive
ddmpay.ddmacordos.com/acesso/?c=scpc
200 OK 3.9 kB URL HTTP/1.1 ddmpay.ddmacordos.com/acesso/?c=scpc
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (481)
Hash e5334f34d159b4a3e6ea0a643cdcdbc4
407738a5129edfba7f6c2606b03c790e3fc50114
bfa0aafb44b87189d6ad4e77a090edaa301120accfc054832a98510b35b0e2ce
GET /acesso/?c=scpc HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/?c=scpc
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:00 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61; path=/; HttpOnly
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GTwnbbQoY7EjnBVOridZAw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: h4OpzwsDxoRDix7exs3p+RGglHg=
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js
200 OK 6.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js
IP
File type ASCII text, with very long lines (20164)
Hash ae393ccddfcfe335c9b29ee90aaf72cb
6a42536ed79b4ea9e3a71c69db3b5f7205dc7e81
75cbee82410be7ca2b5b5406219b0575725c415510df701ddf1e9e7fdec22aa8
GET /ajax/libs/popper.js/1.14.3/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ddmpay.ddmacordos.com
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 13:14:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 6451
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4f71"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 9214567
expires: Wed, 17 Jan 2024 13:14:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xRKFQrZBF59RG1H19UZxY9uirTuN3sQfRg7nQtArpaEkAgloTYJeEtaXw5v4knyIxLCHylP5LDJk%2BScF4fWFQu8sf72Fn4bKZbgbR%2BR984qdvdZIur1CP9x9yDvWcgk7eqlAT2gx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7901bfbc9805b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 2dd49753b725c0adb91fafd2a7821613
92547466e2927540da351740e1c8702b00016188
9a8ce5d24a953b03df10246293da6632a6e779f6719f51b1877c98ebc961a7ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6563
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:01 GMT
Last-Modified: Fri, 27 Jan 2023 11:24:38 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 280 B IP
Hash d727f096e17e7ce4467ab53ff6c1cd5f
4e45586da1aa3cd2aed10a3bc9462fdca0dd9a84
6ae0fbc2486a839a4864ec8be69ceaa72dd6f39b5b55cccb5eb41f641040b52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3130
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:01 GMT
Last-Modified: Fri, 27 Jan 2023 12:21:51 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 279 B IP
Hash 2dd49753b725c0adb91fafd2a7821613
92547466e2927540da351740e1c8702b00016188
9a8ce5d24a953b03df10246293da6632a6e779f6719f51b1877c98ebc961a7ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5863
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:01 GMT
Last-Modified: Fri, 27 Jan 2023 11:36:18 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
code.jquery.com/jquery-3.3.1.slim.min.js
200 OK 24 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.slim.min.js
IP
File type ASCII text, with very long lines (65247)
Hash 0f2e7d37e730fdbb1d8a1e8638529ecb
c21d16978a858baa75be15cb7e799ff000929429
cc938c08b93e67c94c68995709f52133c62cac78991f42058503b9c3d9e4b0b0
GET /jquery-3.3.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ddmpay.ddmacordos.com
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 13:14:01 GMT
content-encoding: gzip
content-length: 24038
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1111d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1674825241.dop020.sk1.t,1674825241.cds256.sk1.hn,1674825241.cds230.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5d26c41823a6e8c5fdcf3c28efbfdd01
2415b281bb7ee36d62aec11e477e4797e8bbc10c
e7c952964c5abd9aa20b354673bedf66a9ddb64c8c9ce0075a6601fe5d28cabe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 280 B IP
Hash d727f096e17e7ce4467ab53ff6c1cd5f
4e45586da1aa3cd2aed10a3bc9462fdca0dd9a84
6ae0fbc2486a839a4864ec8be69ceaa72dd6f39b5b55cccb5eb41f641040b52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3130
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:01 GMT
Last-Modified: Fri, 27 Jan 2023 12:21:51 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 279 B IP
Hash 2dd49753b725c0adb91fafd2a7821613
92547466e2927540da351740e1c8702b00016188
9a8ce5d24a953b03df10246293da6632a6e779f6719f51b1877c98ebc961a7ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5863
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:01 GMT
Last-Modified: Fri, 27 Jan 2023 11:36:18 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtag/js?id=G-Z6XNBT17T7
200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-Z6XNBT17T7
IP
File type ASCII text, with very long lines (21849)
Hash 2ad6791f1e247eeaf9960287355d595b
e48e7d29a13a8764aacdb29f08f41843f357ecf4
06da7a39b04e6c038d4e35591d67542d7dc809b09164603bdd8ceb90fa1d5fa2
GET /gtag/js?id=G-Z6XNBT17T7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jan 2023 13:14:01 GMT
expires: Fri, 27 Jan 2023 13:14:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77914
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ddmpay.ddmacordos.com/css/styles.css
200 OK 1.8 kB URL HTTP/1.1 ddmpay.ddmacordos.com/css/styles.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 59d5347101895d5934903c1fcf39ef02
0a6f94206240a04b5ae229b5b11a5e9446bec272
03599cb788efab85ad53d903e8a7e8e8353fd052931500046b87b13bf2bd5a6b
GET /css/styles.css HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/acesso/?c=scpc
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 21:53:21 GMT
Accept-Ranges: bytes
Content-Length: 1788
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5d26c41823a6e8c5fdcf3c28efbfdd01
2415b281bb7ee36d62aec11e477e4797e8bbc10c
e7c952964c5abd9aa20b354673bedf66a9ddb64c8c9ce0075a6601fe5d28cabe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ddmpay.ddmacordos.com/js/scripts.js
200 OK 1.3 kB URL HTTP/1.1 ddmpay.ddmacordos.com/js/scripts.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 080933dde21861eaeb80622c6bef62d4
7e198e29dc751c7adadf4d752e6a17b1385729d3
6fb6c9f13786ae662e05709f38c6501a3a899d2e7696088c38ed932096155592
GET /js/scripts.js HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/acesso/?c=scpc
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 22:30:35 GMT
Accept-Ranges: bytes
Content-Length: 1297
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ddmpay.ddmacordos.com/imgs/img_cartao04.png
200 OK 3.1 kB URL HTTP/1.1 ddmpay.ddmacordos.com/imgs/img_cartao04.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 47 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 0920964183937e8504b7bce249e99065
920ce3796aee578fc6fc82d29e72c127128a3cbb
aed976a01743d88467cab678a11f2f4c64033f92b6a77f219c84a6fb388c0e4d
GET /imgs/img_cartao04.png HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/acesso/?c=scpc
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 15:21:02 GMT
Accept-Ranges: bytes
Content-Length: 3057
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ddmpay.ddmacordos.com/imgs/img_cartao01.png
200 OK 4.5 kB URL HTTP/1.1 ddmpay.ddmacordos.com/imgs/img_cartao01.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 51 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f3c6744f6f8787702e5df90b9269516
f0c2e6a5aeffc7c84e4538657c52f27fd69916dc
e68f43bd5d964429faeb4d45075a5af9d102ab00c5bd9b5fe4f84c2b994a51e7
GET /imgs/img_cartao01.png HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/acesso/?c=scpc
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 15:20:58 GMT
Accept-Ranges: bytes
Content-Length: 4545
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ddmpay.ddmacordos.com/imgs/img_cartao05.png
200 OK 5.9 kB URL HTTP/1.1 ddmpay.ddmacordos.com/imgs/img_cartao05.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 60 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d165fe2cafd1654d49ad08c9d22b2be
2a134b4edc60c4a938bf8200a2c6b51218567262
cfe52b1e00e9224baa5cb3542ba3cc65949d5e331c6aef8355d423bc944dfd3f
GET /imgs/img_cartao05.png HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/acesso/?c=scpc
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 15:21:02 GMT
Accept-Ranges: bytes
Content-Length: 5916
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ddmpay.ddmacordos.com/imgs/box-login_fundo.png
200 OK 11 kB URL HTTP/1.1 ddmpay.ddmacordos.com/imgs/box-login_fundo.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 350 x 206, 8-bit/color RGBA, non-interlaced\012- data
Hash e246dc4d945996c5894c537a52afe5e8
e0c6d2a449a4afa007ccef19e217333dbdbd8baa
e5ed89f5fdf8c0215795b52b20598eedc497fade4f4d944048cb59ce9a4de0ba
GET /imgs/box-login_fundo.png HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/css/styles.css
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 15:20:14 GMT
Accept-Ranges: bytes
Content-Length: 11256
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ddmpay.ddmacordos.com/imgs/tx-usuario_fundo.png
200 OK 2.7 kB URL HTTP/1.1 ddmpay.ddmacordos.com/imgs/tx-usuario_fundo.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 219 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 4b36ab7abac6e9e8db938471d51c5a7f
d89274a3cbdad023925249dd3893e145c27810c7
be43682b9c44213046b3b027e4dc656a5c90dd84d8eae034a0fc4558fb930187
GET /imgs/tx-usuario_fundo.png HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/css/styles.css
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 15:21:12 GMT
Accept-Ranges: bytes
Content-Length: 2700
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ddmpay.ddmacordos.com/imgs/bt-entrar.png
200 OK 4.9 kB URL HTTP/1.1 ddmpay.ddmacordos.com/imgs/bt-entrar.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 96 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 0f5559f242e7f1293e32c79cdcc294cb
44af661eb416fa569d15f63b77efd71e64c5b6b2
17839dd3c671bdc593e7b3faf5866f1dc787bbb20e3f1104eb8817b95bbb1095
GET /imgs/bt-entrar.png HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/css/styles.css
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 15:20:20 GMT
Accept-Ranges: bytes
Content-Length: 4856
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ddmpay.ddmacordos.com/imgs/img_cartao02.png
200 OK 6.0 kB URL HTTP/1.1 ddmpay.ddmacordos.com/imgs/img_cartao02.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 55 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash ed5b8d9b7d79a82830d2931ae55dd3de
fe90bc1798951b4351369ff092161c567dc72039
4cb3f31151cb01902122259bb4e59c70e6d23d7676a9ef06bba5cf6274676715
GET /imgs/img_cartao02.png HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/acesso/?c=scpc
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 15:21:00 GMT
Accept-Ranges: bytes
Content-Length: 6033
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ddmpay.ddmacordos.com/imgs/img_cartao03.png
200 OK 4.9 kB URL HTTP/1.1 ddmpay.ddmacordos.com/imgs/img_cartao03.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 47 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 7e0e42567e7efb5358b6dc09d4b5db2f
4bd41083cc6eb13bac9bebf4eb239d0e2b99dbca
32b311991995bd60ed2e30df8b996d27e0321c54a0e9ea1a5f2b3a37ad1ee7e5
GET /imgs/img_cartao03.png HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/acesso/?c=scpc
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 15:21:01 GMT
Accept-Ranges: bytes
Content-Length: 4927
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
ddmpay.ddmacordos.com/imgs/img_cartao06.png
200 OK 4.0 kB URL HTTP/1.1 ddmpay.ddmacordos.com/imgs/img_cartao06.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 51 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ef9bc457e810f2c076065828951e992
1ab731ec61a6fc1f27f819a61ba7045b4a1fa512
8f57f02c3fb7b6235e770bddb7eac448a69b1ac273755a26ceb656872e56ad10
GET /imgs/img_cartao06.png HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/acesso/?c=scpc
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 15:21:03 GMT
Accept-Ranges: bytes
Content-Length: 3971
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/s/gts1d4/2O59h0283xo
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/2O59h0283xo
IP
Hash cc32abace89033cc065c324b1211d0da
5f2fa797e1f5d035ab2558ae7eae7e14cfe721ac
d412ffad136465d7a3e5a230141361468923c260793290a46e455a53affe88aa
POST /s/gts1d4/2O59h0283xo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:01 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.webchat.sz.chat/szchat.js
200 OK 11 kB URL HTTP/2 cdn.webchat.sz.chat/szchat.js
IP
File type C source, ASCII text, with very long lines (10653), with no line terminators
Hash 3e46b44e53a0d1e5ec98bd6df23d7bde
4efceb672e5b06ebe95725210a6e580d868f6b4c
54ee8b8cfed95b70e10ace382f926069f3191569c8fed1448402c45f7a367174
GET /szchat.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdswRkJaO6q4SY1muBfXJ-9XJsYC4gtNRCs9e9ONrtzPIm_Mf9JFwZydCzhQbTWQ2wGBo8X6rJh0ETudpYazUcCE
x-goog-generation: 1661478462894195
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 10653
x-goog-hash: crc32c=MRoq5Q==, md5=Pka0TlOg0eXsmL1t8j173g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 10653
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:42 GMT
etag: "3e46b44e53a0d1e5ec98bd6df23d7bde"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
200 OK 1.8 kB URL HTTP/2 cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1020)
Hash cfda2dc715259f21e7b788801c907de3
c91cb4ba0b92462c65fd13a2b93530aab2c1e852
905984ef2a1c0ce3b8395f8952761e2488db64488e96ac4b24a22b358f962137
GET /?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdutSvGLsINpDrztU74JvVKJ8b5i8hIlwZ1_hLBdLXceRYB4SKWlvR3yZyEmHNWXSeg3x_7vTv9vP4IrfIiXD5ZK9A
x-goog-generation: 1661478462641887
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1810
x-goog-hash: crc32c=8wup7A==, md5=z9otxxUlnyHnt4iAHJB94w==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1810
server: UploadServer
date: Fri, 27 Jan 2023 12:55:55 GMT
age: 1087
last-modified: Fri, 26 Aug 2022 01:47:42 GMT
etag: "cfda2dc715259f21e7b788801c907de3"
content-type: text/html
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/2O59h0283xo
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/2O59h0283xo
IP
Hash cc32abace89033cc065c324b1211d0da
5f2fa797e1f5d035ab2558ae7eae7e14cfe721ac
d412ffad136465d7a3e5a230141361468923c260793290a46e455a53affe88aa
POST /s/gts1d4/2O59h0283xo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11240
Expires: Fri, 27 Jan 2023 16:21:22 GMT
Date: Fri, 27 Jan 2023 13:14:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11240
Expires: Fri, 27 Jan 2023 16:21:22 GMT
Date: Fri, 27 Jan 2023 13:14:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11240
Expires: Fri, 27 Jan 2023 16:21:22 GMT
Date: Fri, 27 Jan 2023 13:14:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11240
Expires: Fri, 27 Jan 2023 16:21:22 GMT
Date: Fri, 27 Jan 2023 13:14:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11240
Expires: Fri, 27 Jan 2023 16:21:22 GMT
Date: Fri, 27 Jan 2023 13:14:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg
200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e96f3ea585b5fa8ed6446ed16e2b4b2
f90c205f370a2426dffe3c21b24bfa551b385556
6967ba25887f87200fcb39a3e6f065fd27596b2ebcf0d33a2751c655d6e724f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4272
x-amzn-requestid: e051c22b-c2ec-4e59-b29b-ba1464d8015b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRz28G13oAMFeeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d099c5-48b013ff34b9702a6d2fd560;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 02:53:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3BquvYOvgBWY2JeuOjZH9t1bunnj5yAXmMqyqZKuD6v2xMm8BAG3lw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 12:35:00 GMT
age: 2342
etag: "f90c205f370a2426dffe3c21b24bfa551b385556"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dc869235086902c4acc379733b6bfdb8
0170f6aa6bd83ddeb60cf1cb65e9f0443d8d4bae
e614e29b14e69209fd4b82a688290f7a3f541909833a6558cf480aca899bab6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9056
x-amzn-requestid: 81cf473d-8dc6-49e7-b012-d0b7dfaec7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fB4COHTlIAMFtRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca3a0e-0848461c054db5c66fde9107;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 06:51:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MApUIVJ9KiOB34nLWUtMNmA8deQVoQ9xyNqSUYXlzdLlGoP9n78C5A==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 06:24:42 GMT
age: 24560
etag: "0170f6aa6bd83ddeb60cf1cb65e9f0443d8d4bae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 18:35:59 GMT
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
age: 67083
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -_8PZoms7W6Lvw__KsoTwL_CzjfyWChzoSWDc9yCk9zCR8cTs87oNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 16:31:35 GMT
age: 74547
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48b381df-c118-4c63-bd08-99ac7a51ae39.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48b381df-c118-4c63-bd08-99ac7a51ae39.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06130c82b0c12aabc0cc9f920114e1c5
c2137e969f6eb3790923e1bc30d4288105fd1296
70b50dc9f7e76372b557da8d5188e86b4307e3d855619c5974d7830ab187cec1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48b381df-c118-4c63-bd08-99ac7a51ae39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11689
x-amzn-requestid: c72f71e2-e235-4611-826b-94b55c1a6a17
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1YDGl8oAMF2Lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c33-3e8a69900c1267e102d2c2bc;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Nsm2GhqSll0LCoSNRA6KjKZbee7frV0mgbS4z0yO9-DGrXvdZIM_2A==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 03:11:18 GMT
age: 36164
etag: "c2137e969f6eb3790923e1bc30d4288105fd1296"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ddmpay.ddmacordos.com/imgs/background.jpg
200 OK 361 kB URL HTTP/1.1 ddmpay.ddmacordos.com/imgs/background.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1366x768, components 3\012- data
Size 361 kB (361179 bytes)
Hash f90ea7b905d5ffce5c139ff5344f4f6b
3df02ccc003ab4542b87802197c159950b6c41c2
e73f47de955324d3470dc570eb8e64bf0aa3fc3f8c943c2adf1ef6a10d6b48ff
GET /imgs/background.jpg HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/css/styles.css
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 15:20:10 GMT
Accept-Ranges: bytes
Content-Length: 361179
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KY05WKpINERD5g9o2QLYdsNMSuuy_YKn2Tl7Qkn7YaAOaPTDfLteeA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:49:48 GMT
age: 55454
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 48f87f021aa43dc85cabc3b624264811
6dcc2e3610ec6ef91768905aae267c984227f54a
0e77dc8ff90169c7db1343058490de4942217f3846ca0586bebd33d32513b305
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ddmpay.ddmacordos.com/imgs/persona-mobile.png
200 OK 920 kB URL HTTP/1.1 ddmpay.ddmacordos.com/imgs/persona-mobile.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 760 x 766, 8-bit/color RGBA, non-interlaced\012- data
Size 920 kB (920256 bytes)
Hash 8ca25b1774a260dd0693085953fd662e
f736f28aa2a79eda6fd91018db8e9553fe87f896
d2eaf6184810499cd430d015bf377abd9dc49f088d82c632ec47600095c95405
GET /imgs/persona-mobile.png HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/acesso/?c=scpc
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 13:14:01 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 15:21:06 GMT
Accept-Ranges: bytes
Content-Length: 920256
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
cdn.webchat.sz.chat/assets/fonts/icons/css/sz4.css
200 OK 2.9 kB URL HTTP/2 cdn.webchat.sz.chat/assets/fonts/icons/css/sz4.css
IP
Hash 40bd38cf74139331ceb13c42c472b84e
5a2817b65e650d8346221ad5642480b75de6d494
8eca624a8620a55f5aca272b683ee9718fb71fae397cbb75bd83415b42e4c2ff
GET /assets/fonts/icons/css/sz4.css HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtmz5xp3BKPT4VWEOUFAjIqnmvZQnJrP_Wl-DQ0wfU1LMXNla79VGSdW4SAx2el2CmbPdbMT4fh_Cgt_MO2M9V6
x-goog-generation: 1661478464275652
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2932
x-goog-hash: crc32c=y/5hFw==, md5=QL04z3QTkzHOsTxCxHK4Tg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 2932
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:44 GMT
etag: "40bd38cf74139331ceb13c42c472b84e"
content-type: text/css
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/css/chat.12.css
200 OK 88 kB URL HTTP/2 cdn.webchat.sz.chat/css/chat.12.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash ed8386f5bd937f9b07da09a3f67a5fd0
d2269defc1a694e6add36fe0c28c14679d557a51
9a8ab60c5d47ecb1040ed241849195e338967faa94b4c0f613559f14769bff56
GET /css/chat.12.css HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdstJzzBW8Qc32zx06vBRWxuZcte7R6kK5y7CIvvIw_EpOq03ULM-UbkvXkvWNBgliOu_ChcABUqmMkrgE5tJsEf
x-goog-generation: 1661478470723004
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 87850
x-goog-hash: crc32c=aGUCJg==, md5=7YOG9b2Tf5sH2gmj9npf0A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 87850
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:50 GMT
etag: "ed8386f5bd937f9b07da09a3f67a5fd0"
content-type: text/css
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/runtime.7.js
200 OK 3.4 kB URL HTTP/2 cdn.webchat.sz.chat/js/runtime.7.js
IP
File type ASCII text, with very long lines (3443), with no line terminators
Hash 197e0c928bca301596491d386be501b0
df17b9b3212bc1f48023ce96597b48d889adf60b
9f50088d32b40e7eead3eee4933589354fe553fe22c72844a1a6eebfafaa85ae
GET /js/runtime.7.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtQyuDO7tQiA8lg89BCQMs1A-3ZPwI0_qPhF64hnniIe5-B165NRPVtIyAoQ2BKbTX117lTAPGuoKxQXpHJ_HxE
x-goog-generation: 1661478479912495
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3443
x-goog-hash: crc32c=b3Q0MA==, md5=GX4MkovKMBWWSR04a+UBsA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 3443
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:59 GMT
etag: "197e0c928bca301596491d386be501b0"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/npm.axios.14.chunk.js
200 OK 14 kB URL HTTP/2 cdn.webchat.sz.chat/js/npm.axios.14.chunk.js
IP
File type ASCII text, with very long lines (13666), with no line terminators
Hash 70f61878f84e3521f9e60e4d89e3d64f
4989bf4d640a583615a56cdeca4cd7a1a9d616f2
4f3b6106818cac5f5d2aeec2795b054a4b20297105242c69b3e5722f783595c5
GET /js/npm.axios.14.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduCbhizuDMI7xfnv6g1QyHvxff11rIwuLsCPV_NMW0VdDcZ8zABN0fI1gQIJNi6BE5zHTvZXLNiZSWd945461VL
x-goog-generation: 1661478475845846
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 13666
x-goog-hash: crc32c=0imFlg==, md5=cPYYePhONSH55g5NiePWTw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 13666
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:55 GMT
etag: "70f61878f84e3521f9e60e4d89e3d64f"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/npm.babel.0.chunk.js
200 OK 12 kB URL HTTP/2 cdn.webchat.sz.chat/js/npm.babel.0.chunk.js
IP
File type ASCII text, with very long lines (11488)
Hash 9224b391daa471b8ff103bdf34e84005
036fbf909627e71151aca9a14acb57152e54d654
e7bf35fed87234cbe5aa421551886c749df6c420b5b7386b50fe8d0bb1176b91
GET /js/npm.babel.0.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsYxvXNY4ozIH0gixEShwJx1Rc0iqxqnBFmVC_WPWgcPXqTA5NTTSefvhlnkJsUtNhTQVbMn_f4If3nbFvdQ0rm
x-goog-generation: 1661478476154189
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 11563
x-goog-hash: crc32c=JvHHoA==, md5=kiSzkdqkcbj/EDvfNOhABQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 11563
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:56 GMT
etag: "9224b391daa471b8ff103bdf34e84005"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/npm.js-cookie.15.chunk.js
200 OK 1.8 kB URL HTTP/2 cdn.webchat.sz.chat/js/npm.js-cookie.15.chunk.js
IP
File type ASCII text, with very long lines (1688)
Hash 5b8422e81f783bf9d411386e84167803
6f19278659bdbda4dcf9ad4420720a231ebef3d2
23081a791b0b18f0ba51ac252e176e19740c96b508a8242c7542f38e1f052ed1
GET /js/npm.js-cookie.15.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsocGMjJf8ZQptEafFr5aFnePq9aWT9esJuf_1bhVmGZncS7Xyyr4hCoM1VHJ9UrrGFEIuNts2i0Rih1BIGoQNU
x-goog-generation: 1661478476633755
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1768
x-goog-hash: crc32c=luX7jw==, md5=W4Qi6B94O/nUEThuhBZ4Aw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1768
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:56 GMT
etag: "5b8422e81f783bf9d411386e84167803"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/npm.process.17.chunk.js
200 OK 1.7 kB URL HTTP/2 cdn.webchat.sz.chat/js/npm.process.17.chunk.js
IP
File type ASCII text, with very long lines (1743), with no line terminators
Hash 44be71dcd02072fb23005f61cf5996a0
c5ca1179add5819f79fa0c89a1cdd7c664802b17
14445c3c8dac52a60f79ffe89cd722fde70c6df248f13a5eba1e2074b1b53e95
GET /js/npm.process.17.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtpJ-XW4WdKcAgXPOZzkRNDUJ3abyqOSkONEguUMIIgRcZTTNUewy-NYVymial1rXnHygEorVckaY-Fmd7fKZbo
x-goog-generation: 1661478477942915
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1743
x-goog-hash: crc32c=mWG67g==, md5=RL5x3NAgcvsjAF9hz1mWoA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1743
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:57 GMT
etag: "44be71dcd02072fb23005f61cf5996a0"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/npm.setimmediate.18.chunk.js
200 OK 1.7 kB URL HTTP/2 cdn.webchat.sz.chat/js/npm.setimmediate.18.chunk.js
IP
File type ASCII text, with very long lines (1745), with no line terminators
Hash 65d5c075f7e57409a714f416f365c8d9
fb41562ad7095cf912cd5729ac47dc3b0a21d1d1
648eee7de982a128958f189d1cd95ac8782cb44a4e30c5ea2dc491d019a1605c
GET /js/npm.setimmediate.18.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvnlZ1HO1s75_fdy_wX-3DNuRQqIysYatgqEV6xjEggZ0zbsvGpSojuwhtjtsBbGXYuPewgPH9bdmW8b0Gfx1Au
x-goog-generation: 1661478478041807
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1745
x-goog-hash: crc32c=9xi4gA==, md5=ZdXAdffldAmnFPQW82XI2Q==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1745
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:58 GMT
etag: "65d5c075f7e57409a714f416f365c8d9"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ddmpay.ddmacordos.com/favicon.ico
404 Not Found 315 B URL HTTP/1.1 ddmpay.ddmacordos.com/favicon.ico
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /favicon.ico HTTP/1.1
Host: ddmpay.ddmacordos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/acesso/?c=scpc
Cookie: PHPSESSID=s7cghf1k0m2vlrs5rau061rn61; _ga_Z6XNBT17T7=GS1.1.1674825241.1.0.1674825241.0.0.0; _ga=GA1.1.654864627.1674825242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Fri, 27 Jan 2023 13:14:02 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 48f87f021aa43dc85cabc3b624264811
6dcc2e3610ec6ef91768905aae267c984227f54a
0e77dc8ff90169c7db1343058490de4942217f3846ca0586bebd33d32513b305
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.webchat.sz.chat/js/npm.vue-i18n.23.chunk.js
200 OK 28 kB URL HTTP/2 cdn.webchat.sz.chat/js/npm.vue-i18n.23.chunk.js
IP
File type ASCII text, with very long lines (27456)
Hash 509e2be15dcf0827d13795be79fcfb54
bcfc4c4bf705c6fbc2f0f5523b0960eb4b484342
06419aa0eebdc141690636c115c84fa6ce473e0e919cfe5743f47a5496139f20
GET /js/npm.vue-i18n.23.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvMimvbphubAGo6GgEtl-tk7snMBwDLujRzw4MQfxm3VTt9y4kWbVKjVBZ7yfAYzXB7fTMylbfpZZbvljgpWOun
x-goog-generation: 1661478478599907
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 27535
x-goog-hash: crc32c=we5Bdg==, md5=UJ4r4V3PCCfRN5W+efz7VA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 27535
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:58 GMT
etag: "509e2be15dcf0827d13795be79fcfb54"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-Z6XNBT17T7>m=2oe1p0&_p=141690869&cid=654864627.1674825242&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674825241&sct=1&seg=0&dl=https%3A%2F%2Fddmpay.ddmacordos.com%2Facesso%2F%3Fc%3Dscpc&dr=https%3A%2F%2Fddmpay.ddmacordos.com%2F%3Fc%3Dscpc&dt=DDMPay&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-Z6XNBT17T7>m=2oe1p0&_p=141690869&cid=654864627.1674825242&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674825241&sct=1&seg=0&dl=https%3A%2F%2Fddmpay.ddmacordos.com%2Facesso%2F%3Fc%3Dscpc&dr=https%3A%2F%2Fddmpay.ddmacordos.com%2F%3Fc%3Dscpc&dt=DDMPay&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-Z6XNBT17T7>m=2oe1p0&_p=141690869&cid=654864627.1674825242&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674825241&sct=1&seg=0&dl=https%3A%2F%2Fddmpay.ddmacordos.com%2Facesso%2F%3Fc%3Dscpc&dr=https%3A%2F%2Fddmpay.ddmacordos.com%2F%3Fc%3Dscpc&dt=DDMPay&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ddmpay.ddmacordos.com
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://ddmpay.ddmacordos.com
date: Fri, 27 Jan 2023 13:14:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/npm.timers-browserify.20.chunk.js
200 OK 1.1 kB URL HTTP/2 cdn.webchat.sz.chat/js/npm.timers-browserify.20.chunk.js
IP
File type ASCII text, with very long lines (1141), with no line terminators
Hash 0d38e81271ee94b2859d03ce23dba9bf
b32b2ae744fda2f05237121fac3ad285558a3ba2
376e943570e4bf06c65651ff9fcffd639b23e5f1f13e79be5325d658e353e90d
GET /js/npm.timers-browserify.20.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdugeY-Hy_HLYCXv-R96T0Y8bjOUVNgkQcYzrGqRM45U9qJWREpzxWzaoWX9XC0JxoFL-NX28jNDeZ1oXdaylKss
x-goog-generation: 1661478478440120
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1141
x-goog-hash: crc32c=DfZgyg==, md5=DTjoEnHulLKFnQPOI9upvw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1141
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:58 GMT
etag: "0d38e81271ee94b2859d03ce23dba9bf"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/npm.ws-client.26.chunk.js
200 OK 3.5 kB URL HTTP/2 cdn.webchat.sz.chat/js/npm.ws-client.26.chunk.js
IP
File type Unicode text, UTF-8 text, with very long lines (3500), with no line terminators
Hash 5c5081caab5d8b0f16734158c9b6d373
744a4fbe1c03e326c18fcd6052aa865efc4826c4
31c31a3562f6e53fffed029ead451e525398ad2581ea58ad23ee1cb3abe1b871
GET /js/npm.ws-client.26.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduuKHZoevR4KQoXHJ1Ofrs-DWHVWv2ZSZIZyIJJ8xx4heOm6W2q__tUpGbZ2k-JCCcnrjkMVCcX5pSmdGSfMRfv
x-goog-generation: 1661478479811661
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3501
x-goog-hash: crc32c=tFnRvw==, md5=XFCByqtdiw8Wc0FYybbTcw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 3501
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:59 GMT
etag: "5c5081caab5d8b0f16734158c9b6d373"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/npm.webpack.25.chunk.js
200 OK 211 B URL HTTP/2 cdn.webchat.sz.chat/js/npm.webpack.25.chunk.js
IP
File type ASCII text, with no line terminators
Hash 84263ef23382ce98d39b1fa6d0d8e0ad
18818d9a0b8c27a2a7f5dcde687eed066b0a134b
2ab743f60bb25dc3318f75c1840b0e6b43a0b8f272e0f49ad2c3d74c184c0ed2
GET /js/npm.webpack.25.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsAfnP4MewmHj9StkND4uX-4aws44bTnixzgfVOHajljsI73Hvz2471p79bDMx4PMn4oPrs5ZPvzvTULvzwgdL0
x-goog-generation: 1661478479715392
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 211
x-goog-hash: crc32c=xCzayw==, md5=hCY+8jOCzpjTmx+m0NjgrQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 211
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:59 GMT
etag: "84263ef23382ce98d39b1fa6d0d8e0ad"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/npm.vue-loader.24.chunk.js
200 OK 874 B URL HTTP/2 cdn.webchat.sz.chat/js/npm.vue-loader.24.chunk.js
IP
File type ASCII text, with very long lines (874), with no line terminators
Hash 2bbd97957e8a8124c414008d6ba44b8e
235390da929a39ee0ba5daa21a88d5f056bcd169
71c35506a64d6d5457cf3bf8324476260bbfb357729803f49a5d1470ccc79cc5
GET /js/npm.vue-loader.24.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu6cvHQJ0wRIGSFE2xfforNHdg87z1GM8BhpPL6FOybosI2mUC0Ue-gjSoFUkPm-uQ0ts7_Cz_h_yX_uYpVLRIA
x-goog-generation: 1661478478904023
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 874
x-goog-hash: crc32c=We+Rdg==, md5=K72XlX6KgSTEFACNa6RLjg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 874
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:58 GMT
etag: "2bbd97957e8a8124c414008d6ba44b8e"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/main.13.chunk.js
200 OK 36 kB URL HTTP/2 cdn.webchat.sz.chat/js/main.13.chunk.js
IP
File type Unicode text, UTF-8 text, with very long lines (35511), with no line terminators
Hash 197b3881eaa0257675445550a5a1e8c1
91b540c0ef6d4c18648db84005d1bfc9eb920e8c
774f73f6ab23f953d7d2e4f90eaaace16c005fee8a016df8618e7988e2d0a3ba
GET /js/main.13.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv_g-G35aZQ8BOQJqhCtLf4L2lI81oJif3pniHZsbbpL3jE8LJBsW4ce7nEHRbGetq9HjPpFtpNaCtHpUnDTQSc
x-goog-generation: 1661478475331108
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 35571
x-goog-hash: crc32c=pLaIRg==, md5=GXs4geqgJXZ1RFVQpaHowQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 35571
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:55 GMT
etag: "197b3881eaa0257675445550a5a1e8c1"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/chat.12.chunk.js
200 OK 97 B URL HTTP/2 cdn.webchat.sz.chat/js/chat.12.chunk.js
IP
File type ASCII text, with no line terminators
Hash 950d045ca6ecdbc246502c3131208763
de6a53badee9aa95914c7f105481fc95bfa1da5d
02524f4a65d39246d5fdf51763a76f394dd6214bfb1a533fef704ef53bc0f103
GET /js/chat.12.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv6XQHn7yO8XQr_lWhgC_AUcECP2XjZa97YLiQzR0T6rcOz-72ATPI0gQ7gZfFkiRk7hnjiG9JkenmfrY_PlqY7
x-goog-generation: 1661478475223968
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 97
x-goog-hash: crc32c=mM/K6A==, md5=lQ0EXKbs28JGUCwxMSCHYw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 97
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:55 GMT
etag: "950d045ca6ecdbc246502c3131208763"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c6c64fc014f993e296f124e4b2f0f175
68d3e62fcd25c05d19894a28f4490cf1d04a44c1
7cee6b4b9234d595e6abd78d1bc14febaf314cdab54cc18e07f92e0b24fe1e79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 25672, version 1.0\012- data
Hash fe3e5be2baa0126122ba9367ebab73c8
40bec99106dfab5f3721ed725483eb618a9016cd
8b166007d6f54c33b3ea10ea23572bc3166f55f365840d3cbd6ef7b5dcf6674e
GET /s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cdn.webchat.sz.chat
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25672
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:57 GMT
expires: Fri, 26 Jan 2024 10:05:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:12:08 GMT
content-type: font/woff2
age: 97685
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c6c64fc014f993e296f124e4b2f0f175
68d3e62fcd25c05d19894a28f4490cf1d04a44c1
7cee6b4b9234d595e6abd78d1bc14febaf314cdab54cc18e07f92e0b24fe1e79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 13:14:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ddmcobranca.sz.chat/api/v4/webchat/60b693fb054d1360d910f91c/messages?browser_id=2112b674-5eae-4dff-9d14-73734d013a05
200 OK 31 kB URL HTTP/2 ddmcobranca.sz.chat/api/v4/webchat/60b693fb054d1360d910f91c/messages?browser_id=2112b674-5eae-4dff-9d14-73734d013a05
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d143d60243bfd68a2fc65de415f6fb92
22df409230dc5807c92407d5a6a2bf8bb25f433f
a2524d3cf32c75071b5467e2c4abc767cc8ab333d1f045abb7f43d0a49db291c
GET /api/v4/webchat/60b693fb054d1360d910f91c/messages?browser_id=2112b674-5eae-4dff-9d14-73734d013a05 HTTP/1.1
Host: ddmcobranca.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.webchat.sz.chat
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 13:14:04 GMT
content-type: application/json
cache-control: no-cache, private
x-ratelimit-limit: 15000
x-ratelimit-remaining: 14997
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
access-control-allow-origin: https://cdn.webchat.sz.chat
vary: Origin
strict-transport-security: max-age=31536000; includeSubDomains; always
permissions-policy: battery=(), camera=(*), geolocation=(), microphone=(*), fullscreen=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex, nofollow, nosnippet, noarchive
x-xss-protection: 1; mode=block; always
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7901bfd10dfdb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e0fe44d9606e6a149a253423f312dfc5
78e442e8a9142311c25dafd01823a240f4acb0d6
9aad8938c1fda9641f95a4369f57ea57303a28e05f56e3bb1961e17cfbb123f4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13175
x-amzn-requestid: 14ccf28a-a84a-4903-9edc-7659096cb3ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRxOCFrkIAMFt8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0958c-6a67f1aa65038439793808fd;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 02:35:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6Af7rqnIDAKAw6O0CYUv1epQ8VxFyXBjtAtpovQZJ72aKEymQu_O8Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 06:24:48 GMT
age: 24561
etag: "78e442e8a9142311c25dafd01823a240f4acb0d6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.webchat.sz.chat/js/npm.vue.21.chunk.js
200 OK 0 B URL HTTP/2 cdn.webchat.sz.chat/js/npm.vue.21.chunk.js
IP
GET /js/npm.vue.21.chunk.js HTTP/1.1
Host: cdn.webchat.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/?cid=60b693fb054d1360d910f91c&host=https%3A%2F%2Fddmcobranca.sz.chat&locale=pt-BR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsYawfY3-ww7s5zg7yQIYZtpz3EGv0_iUtJ83XqDbWBEy7DfMIiVZcv4DFrjcIzVKMsWG3wu4dZu_pLiwo1ML-q
x-goog-generation: 1661478479460607
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 75138
x-goog-hash: crc32c=Vr4pVw==, md5=jaJWtp/qPLolnhgY5sZv+g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 75138
server: UploadServer
date: Fri, 27 Jan 2023 13:14:02 GMT
last-modified: Fri, 26 Aug 2022 01:47:59 GMT
etag: "8da256b69fea3cba259e1818e6c66ffa"
content-type: application/javascript
age: 0
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Quicksand:300,400,600,700&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Quicksand:300,400,600,700&display=swap
IP
GET /css?family=Quicksand:300,400,600,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Jan 2023 13:14:02 GMT
date: Fri, 27 Jan 2023 13:14:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ddmcobranca.sz.chat/api/v4/webchat/60b693fb054d1360d910f91c/configuration
200 OK 0 B URL HTTP/2 ddmcobranca.sz.chat/api/v4/webchat/60b693fb054d1360d910f91c/configuration
IP
GET /api/v4/webchat/60b693fb054d1360d910f91c/configuration HTTP/1.1
Host: ddmcobranca.sz.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.webchat.sz.chat
Connection: keep-alive
Referer: https://cdn.webchat.sz.chat/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 13:14:03 GMT
content-type: application/json
cache-control: no-cache, private
x-ratelimit-limit: 15000
x-ratelimit-remaining: 14999
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
access-control-allow-origin: https://cdn.webchat.sz.chat
vary: Origin
strict-transport-security: max-age=31536000; includeSubDomains; always
permissions-policy: battery=(), camera=(*), geolocation=(), microphone=(*), fullscreen=(self)
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-robots-tag: noindex, nofollow, nosnippet, noarchive
x-xss-protection: 1; mode=block; always
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7901bfc76d2bb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/sweetalert2@10
200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/npm/sweetalert2@10
IP
GET /npm/sweetalert2@10 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 13:14:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 10.16.11
x-jsd-version-type: version
etag: W/"11dc8-k2jefS6LDTNa26qxcRQ+MH7V+1Q"
x-served-by: cache-fra-eddf8230059-FRA, cache-yyz4578-YYZ
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 11556
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eh9fthG2aRQ7aJL9z8s2zAQZlUXdZNwbQMShONG%2BP1zXvKPN10X1TbKFTDK49SwErIOM%2F%2B9tsa6kdwLH9do0Na%2BhTyl16JOiq6UyZWMZJ7mpWBD5y2en3Da7tv%2B5l2PeLR8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7901bfbcffb6fab4-OSL
content-encoding: br
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
IP
GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ddmpay.ddmacordos.com
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 13:14:01 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"04aca1f4cd3ec3c05a75a879f3be75a3"
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/21/2022 20:38:40
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: f02d814abfe97d84cda4682c730db28d
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7901bfbcd8e3b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ddmpay.ddmacordos.com
Connection: keep-alive
Referer: https://ddmpay.ddmacordos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 13:14:01 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"67176c242e1bdc20603c878dee836df3"
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/11/2022 02:42:40
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 2958418739a6c9f450750ac86300a32d
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7901bfbcf912b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
162.214.155.190
23.36.76.226
93.184.220.29
104.18.10.207
79.137.197.160