| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hasha9f1d4d98705c281fed3b60343463200 db6f8aa98d2eda4e5473b116a222c3055568bb78 164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14416
Expires: Fri, 25 Nov 2022 01:34:13 GMT
Date: Thu, 24 Nov 2022 21:33:57 GMT
Connection: keep-alive
|
|
| guiagaysalvador.com.br/ | 142.93.186.29 | 301 Moved Permanently | 178 B |
IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashcd2e0e43980a00fb6a2742d3afd803b8 81ffbd1712afe8cdf138b570c0fc9934742c33c1 bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
Analyzer | Verdict | Alert | fortinet | Malware | |
GET / HTTP/1.1
Host: guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 21:33:57 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://www.guiagaysalvador.com.br/
X-Powered-By: EasyEngine 3.8.1
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashaf40a2fcf8debb90c3608002da6c907a 3c75d6c0b557a3bd8d5db50155b8d896e852c145 555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3893
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:57 GMT
Last-Modified: Thu, 24 Nov 2022 20:29:04 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash8c63b226725ca6e92e3ef586ac19e603 d21ae42a1927501e5293ff3564f52b49f6b0decc 141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6869
Expires: Thu, 24 Nov 2022 23:28:26 GMT
Date: Thu, 24 Nov 2022 21:33:57 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nwxucuF2G3uucYn4oZj5OCNBYt1IeFOi/ZE/WgQezWvpxLQHsjVllkVp5fp3KDtu5LrIpgP3YjU=
x-amz-request-id: H9BBTWJRMTMRBX83
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 20:40:32 GMT
age: 3205
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashd130218d0e2841f39c99610fe1a2ab90 29fbe1e177ee55c7a61ae0a206afff271cf5f945 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 21:17:20 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 997
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:57 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash3fd903b9881c599d8522f17659e7d5f2 518e68388864eab7ce8f8ee55f15bb9e8dbebcbb 3b1560bcef59c03a0d010776029ce182a39c53915b1ed1869a89f3d0e27e11a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3B1560BCEF59C03A0D010776029CE182A39C53915B1ED1869A89F3D0E27E11A7"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5700
Expires: Thu, 24 Nov 2022 23:08:57 GMT
Date: Thu, 24 Nov 2022 21:33:57 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 21:08:53 GMT
cache-control: public,max-age=3600
age: 1504
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashfb6949e7abaa473393f7c604691de14f 599681bba3947709baa603bbae2dd7afd04059a4 36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1749
Cache-Control: max-age=129721
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:57 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 09:35:58 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 44.228.207.167 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP44.228.207.167:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Nn/Mk0L2EaBiczyS9oz9MQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1kMZwS6hpW6Dsmkjl9wOADWmA2M=
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash37421d0455431f58cbdbbd9300326121 bb2f721cf76c55dd3c3e0bcedf7cdeb7d2601261 071386cdf61026fbbfe6c87ba1ea655434735b7fbf4d5c41645fd692f486ea76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4129
Cache-Control: max-age=152995
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:58 GMT
Etag: "637f85c8-117"
Expires: Sat, 26 Nov 2022 16:03:53 GMT
Last-Modified: Thu, 24 Nov 2022 14:55:04 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4af780570d49b327d38dc189095448e9 1dd4193a2afeb237c5e475b603b1cbd137f7f97e f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash37421d0455431f58cbdbbd9300326121 bb2f721cf76c55dd3c3e0bcedf7cdeb7d2601261 071386cdf61026fbbfe6c87ba1ea655434735b7fbf4d5c41645fd692f486ea76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4129
Cache-Control: max-age=152995
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:58 GMT
Etag: "637f85c8-117"
Expires: Sat, 26 Nov 2022 16:03:53 GMT
Last-Modified: Thu, 24 Nov 2022 14:55:04 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash0131d4f64191a3db7ef3709a41e45d27 5ec0d1a704e29b9c7da3ec2a12183a23fdd632d9 4c24a33140f87294016f8134f3f024bb04a2836b094bc12cd1ebcf5ee9d3fe1f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1963
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:58 GMT
Etag: "637ec0fd-116"
Last-Modified: Thu, 24 Nov 2022 21:01:15 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashdd0dd96ca622aa07354fabdd0da767bf a29eaa02a81dabed2c12be20a89d65a5a0417524 6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=UA-45912135-5 | 142.250.74.168 | 200 OK | 44 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-45912135-5 IP142.250.74.168:0
File typeASCII text, with very long lines (1921) Hashe3cfcdbf34ab303123c97c0cb9b36c6c 2dd119cdcc1933b9e36fc9764abb804ef09d1ddf f2fc71dfcf3dd08a3553e2a463ca9fc79d0ff43a4dc5cb216b7e35267f140312
GET /gtag/js?id=UA-45912135-5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 21:33:58 GMT
expires: Thu, 24 Nov 2022 21:33:58 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43614
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4af780570d49b327d38dc189095448e9 1dd4193a2afeb237c5e475b603b1cbd137f7f97e f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.guiagaysalvador.com.br/midias/sites/imgs/ic-facebook.png | 142.93.186.29 | 200 OK | 1.5 kB |
URL HTTP/2www.guiagaysalvador.com.br/midias/sites/imgs/ic-facebook.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data Hash18607172e3fd7eefd92a3f65afa71bf2 1ab26b6d0dc0ae94c4ff26f63b148bdd80fd505c 73b97236350fb5df832708341204c309e9d3c11db801f6dd684c65fdca27a4a4
GET /midias/sites/imgs/ic-facebook.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
content-length: 1479
last-modified: Tue, 07 Jun 2016 21:54:10 GMT
etag: "57574282-5c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/sites/imgs/ic-insta.png | 142.93.186.29 | 200 OK | 2.1 kB |
URL HTTP/2www.guiagaysalvador.com.br/midias/sites/imgs/ic-insta.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data Hashcddef169b34d8aff3cfdf0ea8122e150 4256f571cdcb9cf19c64c0fb27bda3a5ce536d00 0fab38b8dd869b07a1e63dcf23a99903f4bcd99944ecef191e5419b56dfcb08c
GET /midias/sites/imgs/ic-insta.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
content-length: 2134
last-modified: Tue, 07 Jun 2016 21:54:10 GMT
etag: "57574282-856"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashdd0dd96ca622aa07354fabdd0da767bf a29eaa02a81dabed2c12be20a89d65a5a0417524 6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.googleapis.com/css?family=Open+Sans:400,600 | 142.250.74.10 | 200 OK | 1.1 kB |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans:400,600 IP142.250.74.10:0
Hash2facbd01bb32ad938ac7eb31237e287a 081ec1a89527fba1eca6f3842ffec1fc47d1ff77 50e81d4d9ab7240a381897cb39ff0f4c3ffeb9b3c9f58d9fac3b69aabfd2307f
GET /css?family=Open+Sans:400,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 21:33:58 GMT
date: Thu, 24 Nov 2022 21:33:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| new2sportnews.com/guiagaysaopaulo.js | 45.141.152.18 | 200 OK | 7.5 kB |
URL HTTP/2new2sportnews.com/guiagaysaopaulo.js IP45.141.152.18:0
File typeASCII text, with very long lines (21607), with no line terminators Hash7c21b4b57b8d8cfe22e749504780d0e3 0927680fe900e7a984053f7f4bf033078ec8ad20 0de97fda11d476f0817e3e2c83a81685ab5677c4949ef174d2663602cf28f4f9
GET /guiagaysaopaulo.js HTTP/1.1
Host: new2sportnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Dec 2022 21:33:57 GMT
content-type: application/javascript
last-modified: Wed, 07 Sep 2022 16:20:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7530
date: Thu, 24 Nov 2022 21:33:57 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| unpkg.com/flickity@2.3.0/dist/flickity.pkgd.min.js | 104.16.126.175 | 200 OK | 60 kB |
URL HTTP/2unpkg.com/flickity@2.3.0/dist/flickity.pkgd.min.js IP104.16.126.175:0
File typeASCII text, with very long lines (22161) Hashcea5e7b0405b3ad3b66e2a8dc35bddcd 77a2d78d1cdc43ad953d0e440ba42b8ffe6f847c 8671f4b98d326df0d4849e9a471318f68f0c7c7e97edf9d08869436b6ca92166
GET /flickity@2.3.0/dist/flickity.pkgd.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.guiagaysalvador.com.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"e136-ppFLVfsImDkhRKQGmGrAD36fhGA"
via: 1.1 fly.io
fly-request-id: 01FQ9VZY0MM9D6E2TFNQ5YF17K
cf-cache-status: HIT
age: 29390525
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f54416af7bb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/ | 142.93.186.29 | 200 OK | 12 kB |
URL HTTP/2www.guiagaysalvador.com.br/ IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Hash504fd64dfad1919d49c4b499d26d0aaf 8b6a85a63706b895cca6509bf2aa2b2a9a7ff355 cd7b8571cececdec905b4585c689ed512fe3de1260364e36c870028d0cd10206
Analyzer | Verdict | Alert | fortinet | Malware | |
GET / HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:57 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-powered-by: EasyEngine 3.8.1
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/guiagay/css/estrutura.css | 142.93.186.29 | 200 OK | 566 B |
URL HTTP/2www.guiagaysalvador.com.br/midias/guiagay/css/estrutura.css IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Hash1482cb340f9be7a7db31e041bdc043ea 08df0a709cd27263a0683a583d212401939d913c d74496f3119e91e6510acb90a5cfd2e3199c21eb3da9b2e3eec67bb17edf5aee
GET /midias/guiagay/css/estrutura.css HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: text/css
last-modified: Thu, 16 Sep 2021 09:15:17 GMT
vary: Accept-Encoding
etag: W/"61430b25-336"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash8f282ce9c7941f8d6947c09545ac3362 9f5fdaa7f3c3d6ef908230757b29dea5ebae5925 cdd94febb16b15750225d8235197fa18061884e5d42505919414b06071788b88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4414
Cache-Control: max-age=151818
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:58 GMT
Etag: "637f8012-117"
Expires: Sat, 26 Nov 2022 15:44:16 GMT
Last-Modified: Thu, 24 Nov 2022 14:30:42 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
|
|
| www.guiagaysalvador.com.br/images/banner-enquete-melhores-2021-mobile.png | 142.93.186.29 | 200 OK | 38 kB |
URL HTTP/2www.guiagaysalvador.com.br/images/banner-enquete-melhores-2021-mobile.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 400 x 60, 8-bit/color RGBA, non-interlaced\012- data Hash2aad734a0ab3d30d34dc7df7dfd044f3 056e5c3507707d582bee42376c7013bfecad062e 005604f56977aa34fdca82dda6f90d2ffef3c78196996909a4fad16ce47c2f7c
GET /images/banner-enquete-melhores-2021-mobile.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
content-length: 37731
last-modified: Thu, 02 Dec 2021 03:24:29 GMT
etag: "61a83c6d-9363"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/sites/imgs/logo-guiyaeditora.png | 142.93.186.29 | 200 OK | 7.4 kB |
URL HTTP/2www.guiagaysalvador.com.br/midias/sites/imgs/logo-guiyaeditora.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 250 x 250, 8-bit colormap, non-interlaced\012- data Hash4b2248a561cfd1a8691e9ae9912e90a3 091e12de48e01b4bb81faf9952f5f4764d84eacf 10b46de8e6368018f2b01208387fe0f0de740a831a680079c7a0406dc510d310
GET /midias/sites/imgs/logo-guiyaeditora.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
content-length: 7409
last-modified: Fri, 04 Nov 2016 22:04:46 GMT
etag: "581d05fe-1cf1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/images/lisbon-gay-circuit.png | 142.93.186.29 | 200 OK | 8.2 kB |
URL HTTP/2www.guiagaysalvador.com.br/images/lisbon-gay-circuit.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 279 x 76, 8-bit/color RGBA, non-interlaced\012- data Hash5ca9968d801737506f8336a3041fd22a 9581ab3a352575643292287e403e0e932a5220a2 8f6a025b76adc3f8db0e8c9aae8398072e14829b7bcc4227edd032daeb64d176
GET /images/lisbon-gay-circuit.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
content-length: 8188
last-modified: Wed, 05 Jun 2019 19:04:57 GMT
etag: "5cf81259-1ffc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/images/porto-gay-circuit.png | 142.93.186.29 | 200 OK | 15 kB |
URL HTTP/2www.guiagaysalvador.com.br/images/porto-gay-circuit.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 426 x 117, 8-bit/color RGBA, non-interlaced\012- data Hash598997e6895f6efc18f8ecdc2d735907 5449d42dc4e98a6c7600a0d10e7a4aae93a606f3 1483a8e22622e6f00bb0aab3b2f186374d972187f213df2af7280d092e5c9d59
GET /images/porto-gay-circuit.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
content-length: 14851
last-modified: Wed, 05 Jun 2019 19:04:57 GMT
etag: "5cf81259-3a03"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/sites/imgs/ic-lupa.png | 142.93.186.29 | 200 OK | 1.8 kB |
URL HTTP/2www.guiagaysalvador.com.br/midias/sites/imgs/ic-lupa.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data Hash050247b4ebf723bdf875019a304faa13 5e2798a864d36f883efc33bbe5a43ebadbff2f03 55a8ea616a68ac8994f9cdaf4749868cc3fd216c128156680359b5c209fdd053
GET /midias/sites/imgs/ic-lupa.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/midias/guiagay/css/paginas/guiagay-index.css?tk=2022112418
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
content-length: 1832
last-modified: Tue, 07 Jun 2016 21:54:10 GMT
etag: "57574282-728"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hashf1a564b7955f125fc6817beb597d1108 c84f6e17f99c08d0ac21c557bcea807a1d99f46c 11edd941a969b1c4dff26052243fcc4f751bfd81405957919d4e921b8a4d34bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "11EDD941A969B1C4DFF26052243FCC4F751BFD81405957919D4E921B8A4D34BC"
Last-Modified: Wed, 23 Nov 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21592
Expires: Fri, 25 Nov 2022 03:33:50 GMT
Date: Thu, 24 Nov 2022 21:33:58 GMT
Connection: keep-alive
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/anderson_lee_ulrich_nao_binario_ataque_gay.jpg?width=690&height=387&tr=c1 | 142.93.186.29 | 200 OK | 183 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/anderson_lee_ulrich_nao_binario_ataque_gay.jpg?width=690&height=387&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 690x387, components 3\012- data Size183 kB (182577 bytes) Hash99bc4deb16f72d87e3a5ee5eedf4ee81 b9c0a10c13f0967184f44bc3b84fcafb0596233b 1321829aaf9ddf055ca63a1a4da060ac987a98f5b37c1be7cbf02b02d6b8f79d
GET /public/uploads/imagens/originais/noticia-foto/anderson_lee_ulrich_nao_binario_ataque_gay.jpg?width=690&height=387&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Thu, 24 Nov 2022 14:41:18 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| trustiseverything.de/karma/karma.js?karma=bs?nosaj=faster.bcn | 202.61.204.169 | 200 OK | 138 kB |
URL HTTP/2trustiseverything.de/karma/karma.js?karma=bs?nosaj=faster.bcn IP202.61.204.169:0
File typeASCII text, with very long lines (59620), with CRLF line terminators Size138 kB (138247 bytes) Hashe716dcdf85ea0cc6aade6dd49c76df43 c702c2359fd180d39228a0eb1d7f4979e6d5a9aa 996fc64e66e99ef1d5c640f095811b95394d6292c1928a142234b2c30449a00c
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /karma/karma.js?karma=bs?nosaj=faster.bcn HTTP/1.1
Host: trustiseverything.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://new2sportnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,max-age=86400
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 03 Jun 2022 12:15:20 GMT
accept-ranges: bytes
etag: "0bcc1974377d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
access-control-allow-origin: *
date: Thu, 24 Nov 2022 21:33:57 GMT
content-length: 138247
X-Firefox-Spdy: h2
|
|
| advertising-cdn.com/Yx7Hsx?return=js.client&&se_referrer=&default_keyword=Guia%20Gay%20Salvador&landing_url=www.guiagaysalvador.com.br%2F&name=_mrWx7XqrzBmHPrGh&host=https%3A%2F%2Fadvertising-cdn.com%2FYx7Hsx | 5.42.199.45 | 200 OK | 1.6 kB |
URL HTTP/1.1advertising-cdn.com/Yx7Hsx?return=js.client&&se_referrer=&default_keyword=Guia%20Gay%20Salvador&landing_url=www.guiagaysalvador.com.br%2F&name=_mrWx7XqrzBmHPrGh&host=https%3A%2F%2Fadvertising-cdn.com%2FYx7Hsx IP5.42.199.45:0
File typeHTML document text\012- HTML document, ASCII text, with very long lines (3807), with no line terminators Hash6a186f1fe1417fb096def74e33c407a3 da8cf0f19e95582d7237d2eb8e1d6a5b74a5ef3e c0e071b10e38ffd43f36614a23ea58f5bca35387cbfba8e9bd8c73f63d1898d5
GET /Yx7Hsx?return=js.client&&se_referrer=&default_keyword=Guia%20Gay%20Salvador&landing_url=www.guiagaysalvador.com.br%2F&name=_mrWx7XqrzBmHPrGh&host=https%3A%2F%2Fadvertising-cdn.com%2FYx7Hsx HTTP/1.1
Host: advertising-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:33:58 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 1552
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpaa84sfe;Expires=Monday, 11-Nov-2075 19:07:56 GMT;Max-Age=1671399238;Path=/Yx7Hsx;HttpOnly
208c9=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjU0MlwiOjE2NjkzMjU2Mzh9LFwiY2FtcGFpZ25zXCI6e1wiOThcIjoxNjY5MzI1NjM4fSxcInRpbWVcIjoxNjY5MzI1NjM4fSJ9.V_7671LBTi4iYyUzsE8aPwAN3T2K9RptFv-Egz5Bijk;Expires=Monday, 11-Nov-2075 19:07:56 GMT;Max-Age=1671399238;Path=/Yx7Hsx;HttpOnly
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
|
|
| snapwidget.com/stylesheets/embed.vendor.min.760717b3f565c387.css | 172.67.75.33 | 200 OK | 992 B |
URL HTTP/2snapwidget.com/stylesheets/embed.vendor.min.760717b3f565c387.css IP172.67.75.33:0
File typeASCII text, with very long lines (2359), with no line terminators Hash68fdb2ee440265bc7364eea5d45624dc 9dcf09d5282dd188bde455bb861101540e9e7e73 94315497e9067e3bfa9785708c01a6cdefb4c5493def0c51dd2c7553720eaa3f
GET /stylesheets/embed.vendor.min.760717b3f565c387.css HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/897867
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: text/css
cf-bgj: minify
etag: W/"635d1897-937"
last-modified: Sat, 29 Oct 2022 12:12:07 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 740554
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DIR3zAe88EYv6AsWQaRh9m4TP25K3c2ecHrpzdmbvMlTKz3K%2FpXT8KH3X0QkCoVdyERMTsb7l8OJvUULxsIiwNNBvg00u0qimWlb8q6y80MmAOpIxWYNBCnvtxDrCRTO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 76f54419cd47b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/grammy_2023.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 105 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/grammy_2023.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 338x203, components 3\012- data Size105 kB (105063 bytes) Hashf518522978b35279396f2a388ab1ed94 21b32ca4fb49e998ebea275336913ad534bf1a64 22673d4548b7c1bd511999fdc0f48048ca4d7882784f1552889f8bdac5658444
GET /public/uploads/imagens/originais/noticia-foto/grammy_2023.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Thu, 17 Nov 2022 23:40:42 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/images/banner-enquete-melhores-2021-desktop.png | 142.93.186.29 | 200 OK | 117 kB |
URL HTTP/2www.guiagaysalvador.com.br/images/banner-enquete-melhores-2021-desktop.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 1280 x 65, 8-bit/color RGBA, non-interlaced\012- data Size117 kB (117103 bytes) Hash54151a6547cce663fdc92901c2d5d447 04989e3f7ff1e69289155d5be6a656d85f6312d3 c658366c09ed52741eb4169d5ac6aba9417cf397698a16fd72d8e41897ef5980
GET /images/banner-enquete-melhores-2021-desktop.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
content-length: 117103
last-modified: Thu, 02 Dec 2021 03:24:16 GMT
etag: "61a83c60-1c96f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/monkeypox_variola_macacos_gays_vacina_casos_morte.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 61 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/monkeypox_variola_macacos_gays_vacina_casos_morte.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 338x203, components 3\012- data Hasha7af411b0b40248b3a961882fe21d77a 7a3f750b395ca2b33dd3fdaf446566a6448df24d 1873c2f41efd6cf01574de7a85d9688f247e478b99ed889551f2e2e70ba9b943
GET /public/uploads/imagens/originais/noticia-foto/monkeypox_variola_macacos_gays_vacina_casos_morte.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Tue, 8 Nov 2022 04:33:40 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| files.metropoles.com/header-partner/header-partner-simple-white.html | 185.76.9.107 | 200 OK | 9.2 kB |
URL HTTP/2files.metropoles.com/header-partner/header-partner-simple-white.html IP185.76.9.107:0 ASN#60068 Datacamp Limited
File typeHTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1450) Hash363ca2547c598a44ed66029050a39ad7 c9aba5d2abade46de74f639e5dd54a19de79a6d8 e0680071058e90bc4b103d7a0a875381092aa6ef2724bf56fc44d546b6ab4598
GET /header-partner/header-partner-simple-white.html HTTP/1.1
Host: files.metropoles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.guiagaysalvador.com.br/
Origin: https://www.guiagaysalvador.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: text/html
content-length: 9172
x-guploader-uploadid: ADPycdvtSqpBk_CX32ATS8A1w4tK1nTHmt_m7UNGx90kICeIRpvLPGvskh05wtgRBvfw39q1OuYv4hv--jU3tnNvOoU68w
x-goog-generation: 1627420924344371
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9172
x-goog-hash: crc32c=DliMYg==, md5=NjyiVHxZikTtZgKQUKOa1w==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
expires: Wed, 21 Dec 2022 20:48:18 GMT
cache-control: max-age=2330060
last-modified: Tue, 27 Jul 2021 21:22:04 GMT
etag: "363ca2547c598a44ed66029050a39ad7"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/guiagay/js/guiagay-index.min.js?tk=2022112418 | 142.93.186.29 | 200 OK | 1.5 MB |
URL HTTP/2www.guiagaysalvador.com.br/midias/guiagay/js/guiagay-index.min.js?tk=2022112418 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Size1.5 MB (1509149 bytes) Hash08d646f8e1468df178b68e514b194e87 2c136831fb97490e3d3f61c76dc86536050fb272 e877f242d01879a3d9238cf2bf185a93c415671676572d15c4ee4d9918c57568
GET /midias/guiagay/js/guiagay-index.min.js?tk=2022112418 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jan 2021 18:40:11 GMT
vary: Accept-Encoding
etag: W/"5ff3610b-3e2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/tiroteio_boate_gay_q_club_coloriado.jpg?width=318&height=190&tr=c1 | 142.93.186.29 | 200 OK | 126 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/tiroteio_boate_gay_q_club_coloriado.jpg?width=318&height=190&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 318x190, components 3\012- data Size126 kB (125983 bytes) Hash856cefeb66dccba0235c69f7e48ec401 b299e66eabcac3ca6f4f7ae7cb818932d75e8a8c 2a7fdfe1e5f5d8d17a7b44aac48122af7e06340c5646e280cd64742fbcc53bae
GET /public/uploads/imagens/originais/noticia-foto/tiroteio_boate_gay_q_club_coloriado.jpg?width=318&height=190&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Thu, 24 Nov 2022 21:08:14 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| anuncios.guiya.com.br/images/776e69f6e3aa191a2acea7b405e2f0d4.jpg | 142.93.186.29 | 200 OK | 191 kB |
URL HTTP/2anuncios.guiya.com.br/images/776e69f6e3aa191a2acea7b405e2f0d4.jpg IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 4070x1060, components 3\012- data Size191 kB (190886 bytes) Hash776e69f6e3aa191a2acea7b405e2f0d4 def29261ee1071b8298842969eaa6df838f44bbf da2d2f02e9e0c8aebc6bd4f12a6e4c732d05d3e442ddc082eb07cb568548fc44
GET /images/776e69f6e3aa191a2acea7b405e2f0d4.jpg HTTP/1.1
Host: anuncios.guiya.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
content-length: 190886
last-modified: Sun, 22 Aug 2021 19:57:55 GMT
etag: "6122ac43-2e9a6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| anuncios.guiya.com.br/images/2138fdc038c74592dcb1aa06afefdda7.jpg | 142.93.186.29 | 200 OK | 298 kB |
URL HTTP/2anuncios.guiya.com.br/images/2138fdc038c74592dcb1aa06afefdda7.jpg IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, baseline, precision 8, 2640x402, components 3\012- data Size298 kB (298414 bytes) Hash2138fdc038c74592dcb1aa06afefdda7 e0a11bb638901b39c731a97a2b9186fe92d6d51c 3af54494111505542e4604ba5ecdce4d032fa46aa3937fe54d183c0c004dbfd6
GET /images/2138fdc038c74592dcb1aa06afefdda7.jpg HTTP/1.1
Host: anuncios.guiya.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
content-length: 298414
last-modified: Tue, 14 Jul 2020 19:00:54 GMT
etag: "5f0e00e6-48dae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_compras_3.png | 142.93.186.29 | 200 OK | 112 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_compras_3.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data Size112 kB (111675 bytes) Hashd12b64737a45226e4ba195a47802a167 0abbb0cd1fad75ed06dc96511fd0491cf6f2a64c 2c70d108f6d1af05ecf076f1cf42abaee83b579fe86385daec95f969134d5ff0
GET /public/uploads/imagens/originais/outros/ic_roteiro_compras_3.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/maria_do_rosario_direitos_humanos.jpg?width=318&height=190&tr=c1 | 142.93.186.29 | 200 OK | 96 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/maria_do_rosario_direitos_humanos.jpg?width=318&height=190&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 318x190, components 3\012- data Hashf76201f28d68bb35e2786e1438ec5ae0 7dd250a7d533b76deb0e270a1b3673d8effccdfa a757ebed4d52b3c2be54965e4a1dba3fb219846a9c7f5ffa4bfc1f0121350eec
GET /public/uploads/imagens/originais/noticia-foto/maria_do_rosario_direitos_humanos.jpg?width=318&height=190&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Wed, 23 Nov 2022 03:47:03 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| anuncios.guiya.com.br/images/bfd6026f6a1e100b132f9af1bde7a187.jpg | 142.93.186.29 | 200 OK | 105 kB |
URL HTTP/2anuncios.guiya.com.br/images/bfd6026f6a1e100b132f9af1bde7a187.jpg IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, progressive, precision 8, 709x1050, components 3\012- data Size105 kB (104914 bytes) Hashbfd6026f6a1e100b132f9af1bde7a187 637f5c01b5ed34204a7e2920c13817497ee7854c b5ab24037d74b31305f3f78eec56809417800e5cc2cb7108a80429430b686937
GET /images/bfd6026f6a1e100b132f9af1bde7a187.jpg HTTP/1.1
Host: anuncios.guiya.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
content-length: 104914
last-modified: Wed, 25 Aug 2021 04:58:05 GMT
etag: "6125cddd-199d2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| anuncios.guiya.com.br/images/8debf8a0d648f8d440e88129fbd0027a.jpg | 142.93.186.29 | 200 OK | 23 kB |
URL HTTP/2anuncios.guiya.com.br/images/8debf8a0d648f8d440e88129fbd0027a.jpg IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, progressive, precision 8, 374x300, components 3\012- data Hash8debf8a0d648f8d440e88129fbd0027a b83a1aa2e9e18263b4aa248db6dcaf87338e2f1b cee6b1c5c9d7129bd08f73668fa14afdd4aa188820d164b2d52077efcd1dd743
GET /images/8debf8a0d648f8d440e88129fbd0027a.jpg HTTP/1.1
Host: anuncios.guiya.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
content-length: 23414
last-modified: Wed, 25 Aug 2021 04:57:27 GMT
etag: "6125cdb7-5b76"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Pedro_Pascal_e_Ethan_Hawke_nos_bastidores_de_Strange_Way_of_Life.jpg?width=340&height=205&tr=c1 | 142.93.186.29 | 200 OK | 98 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Pedro_Pascal_e_Ethan_Hawke_nos_bastidores_de_Strange_Way_of_Life.jpg?width=340&height=205&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 340x205, components 3\012- data Hash1c49ebeeee965f0c3254679091a2b6f2 12dce704ba12a5a768e59915e2b513a8edd80c15 d6e355b2addb67f8964a146685defb4fc7432191d2374ee87ef0e71b68840146
GET /public/uploads/imagens/originais/noticia-foto/Pedro_Pascal_e_Ethan_Hawke_nos_bastidores_de_Strange_Way_of_Life.jpg?width=340&height=205&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Tue, 22 Nov 2022 04:30:46 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/tropical_26_11.jpg | 142.93.186.29 | 200 OK | 109 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/tropical_26_11.jpg IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 778x360, components 3\012- data Size109 kB (109356 bytes) Hashf36513a33726d087882c9eae4f0e3a71 f52f494ee7ef95de2c922820956496a83df0f52f 91d3fb491e9a39cf68ea963ce7b6fde812696c267075eeb040f0e32910f198d3
GET /public/uploads/imagens/originais/outros/tropical_26_11.jpg HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpg
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| call.cleverwebserver.com/?id=52864&c=NO&r=03&l=60&b=Firefox&os=Win10&mob=0&v=1.28.0&ref=aHR0cHM6Ly93d3cuZ3VpYWdheXNhbHZhZG9yLmNvbS5ici8%3D&ruri=&iv=-1&ctr=NO&sz=939 | 104.18.25.246 | 200 OK | 43 B |
URL HTTP/2call.cleverwebserver.com/?id=52864&c=NO&r=03&l=60&b=Firefox&os=Win10&mob=0&v=1.28.0&ref=aHR0cHM6Ly93d3cuZ3VpYWdheXNhbHZhZG9yLmNvbS5ici8%3D&ruri=&iv=-1&ctr=NO&sz=939 IP104.18.25.246:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash57f187c7a868faeac558007a8eb6cb2e 11ab10ab109fdb53d91d444ac781101f5a6360c6 aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /?id=52864&c=NO&r=03&l=60&b=Firefox&os=Win10&mob=0&v=1.28.0&ref=aHR0cHM6Ly93d3cuZ3VpYWdheXNhbHZhZG9yLmNvbS5ici8%3D&ruri=&iv=-1&ctr=NO&sz=939 HTTP/1.1
Host: call.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 21:33:59 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76f5441cd9970afe-OSL
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8854
Expires: Fri, 25 Nov 2022 00:01:33 GMT
Date: Thu, 24 Nov 2022 21:33:59 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8854
Expires: Fri, 25 Nov 2022 00:01:33 GMT
Date: Thu, 24 Nov 2022 21:33:59 GMT
Connection: keep-alive
|
|
| anuncios.guiya.com.br/delivery/lg.php?bannerid=669&campaignid=424&zoneid=117&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&cb=5bd78df8df | 142.93.186.29 | 200 OK | 546 B |
URL HTTP/2anuncios.guiya.com.br/delivery/lg.php?bannerid=669&campaignid=424&zoneid=117&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&cb=5bd78df8df IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeGIF image data, version 89a, 1 x 1\012- data Hashbd2c937546bcfac2730df33549938af1 881b7e313fa465350bfdd6e34710b46e284ce6bd 17259e96d8455dbaa29fe20de5212770aeb59bfd99b486e52ed3c37bafeba3fa
GET /delivery/lg.php?bannerid=669&campaignid=424&zoneid=117&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&cb=5bd78df8df HTTP/1.1
Host: anuncios.guiya.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/gif
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAGEO=NO%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; path=/
OAID=dc5c68feae5075517dcf007a2728cdb0; expires=Fri, 24-Nov-2023 21:33:58 GMT; Max-Age=31536000; path=/
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/Screenshot_from_2022_01_24_14_51_53.png | 142.93.186.29 | 200 OK | 5.2 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/Screenshot_from_2022_01_24_14_51_53.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 215 x 85, 8-bit/color RGBA, non-interlaced\012- data Hashabb51609bc948809aa578fc4196cf973 cc9cb28a40c3b33f84ff73897bf7e05454313689 530b83bcb17e59146927431d8d4e7ef6499c714caf25d30a1fce819d8842ab45
GET /public/uploads/imagens/originais/outros/Screenshot_from_2022_01_24_14_51_53.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd9d93b2a6875d446c3467eb49767eef5 303c571b13b05fcf27ee1159d8fdf6369aaef0a2 2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:10:24 GMT
age: 51815
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/guiagaySaoPaulo.png | 142.93.186.29 | 200 OK | 60 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/guiagaySaoPaulo.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 1191 x 1098, 8-bit/color RGBA, non-interlaced\012- data Hashbdaf779c02fe0facc97dba10c09952ef e968e30a57b1625c0d3289b5ee0e1eb10d6b0809 69ee04d56f8199f595e71ef6f5b7f7d623d7a46e71f9a568b13dd787afc350ab
GET /public/uploads/imagens/originais/outros/guiagaySaoPaulo.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_igrejas.png | 142.93.186.29 | 200 OK | 20 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_igrejas.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data Hashca405148bcb9556c675b1002280dafb0 c06249cef40454042d3665c43d351f5d14c81e48 6a273b8b8b1881c50c1977e8af04ddb4e92afb3da83a0711866ff53efb1aa15f
GET /public/uploads/imagens/originais/outros/ic_roteiro_igrejas.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp | 34.120.237.76 | 200 OK | 5.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0856fdb55f19f03a1bec38b3d6e0ac77 89accd230fba95fe0049678070817b36ead015fa 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rrs7G6Wto6iY0rT6KsKwKAOPJjehXqD0jHZrR_eaiqpepQILFr7Dtw==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:07 GMT
age: 85492
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_bares.png | 142.93.186.29 | 200 OK | 6.4 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_bares.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data Hash0fc6c16a03f48e3266afdefd7a9b1eb0 518162d56992e149a48c85dba6724786e696c864 d2230f91ae7fa524cad7af124a5129f53a20716d8ba388feff2884675206be49
GET /public/uploads/imagens/originais/outros/ic_roteiro_bares.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/guiagayFloripa_1.png | 142.93.186.29 | 200 OK | 48 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/guiagayFloripa_1.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 300 x 257, 8-bit/color RGBA, interlaced\012- data Hash8115941ac96c45fd46218e048af7f045 65b8914bac4f4e300468e3dddc84d9f718115930 cbde5959977b67350fbbf9bcc9ea08cab6d8233fff13a2c6044924824edf7d6e
GET /public/uploads/imagens/originais/outros/guiagayFloripa_1.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/guia_gay_brasilia_min.png | 142.93.186.29 | 200 OK | 27 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/guia_gay_brasilia_min.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 1116 x 987, 8-bit colormap, non-interlaced\012- data Hash6a8682fbf2fc5f6feaf1641681efd904 bed43219fc5ef448f9215754ac4f34598c47815c 61bf3d224efd1699a15bbff45485b86b3b40ff998d4e49a1acc3ee18bf58d48c
GET /public/uploads/imagens/originais/outros/guia_gay_brasilia_min.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash670dda5fda45a89db08867e9109f65b7 2a64bc381f8e795fe7a46a98c3e8add2f1ade404 7c2085a52a32eab3f4ab73c4ab3718cf1e7d67502e83001ce45d2857b37a0755
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6254
Cache-Control: max-age=119806
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:59 GMT
Etag: "637efbd7-1d7"
Expires: Sat, 26 Nov 2022 06:50:45 GMT
Last-Modified: Thu, 24 Nov 2022 05:06:31 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_clubs_1.png | 142.93.186.29 | 200 OK | 9.4 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_clubs_1.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data Hash96aaeb69eb340b08e76e6476e6e68cb7 ca7789f66d098c79882a8c5e4bd01228625bab3b 7c31cd13f0483d7bce021f22638300a9ae2124309f3a8670f36ff4e9e7445c2c
GET /public/uploads/imagens/originais/outros/ic_roteiro_clubs_1.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| snapwidget.com/embed/897867 | 172.67.75.33 | 401 Unauthorized | 5.7 kB |
URL HTTP/2snapwidget.com/embed/897867 IP172.67.75.33:0
Hash36294ee07fb71e6e362f178766fc14b3 7f2b134fb5d2342acfcba8f9eaa6228b5d2a3812 13d5e1829f04db733af646b5d11789f9542aa85fc525b0d16fd863ac25df53e6
GET /embed/897867 HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 401 Unauthorized
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
x-robots-tag: all
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v8sjBedAvp%2FjEfdpFYM46OA6JEgCvAbmBAuxfBMcn57TPssiuPojOxLPOor43QHLFQ141s8zHecUmCeV4omTaobz0NEX4H9TVdxSIlgTdHCJ8nYslCAxaDoWy4fdDrCD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 76f54417885ab4ed-OSL
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/guiagayBH.gif | 142.93.186.29 | 200 OK | 42 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/guiagayBH.gif IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeGIF image data, version 89a, 324 x 229\012- data Hash007bde678548eba410de85e9bc9326ae 8871e88a4202573857788daa2c3f13eb71b9d145 622fc93c34f90b63efea300e777f4985475f199a223ad9a6bfb7ce713a25cb40
GET /public/uploads/imagens/originais/outros/guiagayBH.gif HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/gif
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/midias/comuns/img/ic_delete.gif | 142.93.186.29 | 200 OK | 24 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/midias/comuns/img/ic_delete.gif IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Hashcf5cdfa1f7372e88562bd9f68afccb62 c54c2ae1f31035c4a7a92d6f7068e70d4b37f172 756934e04f97e3c2ac3c85ff6c054fc81f99ba64273256c394fea21adffa1b4e
GET /public/midias/comuns/img/ic_delete.gif HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: EasyEngine 3.8.1
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/header-partner_header-partner-simple-white_files/css | 142.93.186.29 | 404 Not Found | 59 kB |
URL HTTP/2www.guiagaysalvador.com.br/header-partner_header-partner-simple-white_files/css IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Hash1fbfb08ae91e3052f5daf6a6c2d636f5 29f440e7d824ef534e3fd1a4e4a1b451ecaa076d db114074da9f20a0196b8f2b4bd5bd29c9e251754c7c5407db80bc346ac9ac4a
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /header-partner_header-partner-simple-white_files/css HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 24 Nov 2022 21:33:59 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| connect.facebook.net/pt_BR/sdk.js?hash=8159e2221a5a0465a81ecb8edc7703fc | 157.240.200.14 | 200 OK | 87 kB |
URL HTTP/2connect.facebook.net/pt_BR/sdk.js?hash=8159e2221a5a0465a81ecb8edc7703fc IP157.240.200.14:0
File typeASCII text, with very long lines (13192) Hash8bac12a7b24533ad0cdbe241980ce6e3 80b3afaea2ae216a1074bb4e3512db9ea2506a7b e6edf2b22235016eb2b2c5fe11d3add78cac84bb7d925dd0f5f727ef60cb43dd
GET /pt_BR/sdk.js?hash=8159e2221a5a0465a81ecb8edc7703fc HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.guiagaysalvador.com.br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 4474f1fe5b54770f980d54dd9f97ca18
etag: "1c9ca294e9f031929623022e5df99e2d"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 24 Nov 2023 20:25:05 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: i6wSp7JFM60M2+JBmAzm4w==
x-fb-debug: Vl8l0MSdrrOqE0LUTIKSrVDApcWKq4SKKZpGut0XPmCdIBHO/rHCCDBilxrJNatdXBO3ziKqwUC+pDJ6AV8a1A==
priority: u=3,i
content-length: 86947
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 21:33:59 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf86429279e19a89ba7fae87ba2406b4e abfa5369a7feb4dfebf13f5eb902c3e860976238 76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.guiagaysalvador.com.br/midias/sites/imgs/seta-esquerda.png | 142.93.186.29 | 200 OK | 1.5 kB |
URL HTTP/2www.guiagaysalvador.com.br/midias/sites/imgs/seta-esquerda.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 64 x 54, 8-bit/color RGBA, non-interlaced\012- data Hashfdc2d9cf56ae961843d33c828cf35c29 21e6b05c16e6acd7bf0804b80e7c7dfb633f8313 f9d6e61ff1bb63c4686352b8b3eb5d598311e620ebe06d5e423c875663df0422
GET /midias/sites/imgs/seta-esquerda.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1; _ga=GA1.3.303773528.1669325639; _gid=GA1.3.1277050709.1669325639; _gat_gtag_UA_45912135_5=1; _gat_gtag_UA_66850008_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:59 GMT
content-type: image/png
content-length: 1520
last-modified: Fri, 26 Jan 2018 04:02:14 GMT
etag: "5a6aa846-5f0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/sites/imgs/seta-direita.png | 142.93.186.29 | 200 OK | 1.5 kB |
URL HTTP/2www.guiagaysalvador.com.br/midias/sites/imgs/seta-direita.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 64 x 54, 8-bit/color RGBA, non-interlaced\012- data Hash0c3a022236e8916e78d41fef6f415e47 5582fb9c57abc6d9df5904bb44905a44b5ea7281 97f2200b07053dfda43f553bf9cbc3ed61932b5023ed289694ffcc755472500e
GET /midias/sites/imgs/seta-direita.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1; _ga=GA1.3.303773528.1669325639; _gid=GA1.3.1277050709.1669325639; _gat_gtag_UA_45912135_5=1; _gat_gtag_UA_66850008_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:59 GMT
content-type: image/png
content-length: 1530
last-modified: Fri, 26 Jan 2018 04:02:14 GMT
etag: "5a6aa846-5fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashb6a795cdfedb5c954b3000dbb2dc7f90 b17bb97d224d89bc8227cddf5a8386e100751cda 78c411d16c1be2d8da51fc409cb45ec2aca8d32b77ab4d1a1a1fe5d1a33552e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash6fe23ae41ec0cbb3d702b1c64028cd13 e0e4d852454a5eae80a797aaa6f0991834dcc19a 47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| adservice.google.no/adsid/integrator.js?domain=www.guiagaysalvador.com.br | 142.250.74.34 | 200 OK | 100 B |
URL HTTP/2adservice.google.no/adsid/integrator.js?domain=www.guiagaysalvador.com.br IP142.250.74.34:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.guiagaysalvador.com.br HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 24 Nov 2022 21:33:59 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| adservice.google.com/adsid/integrator.js?domain=www.guiagaysalvador.com.br | 142.250.74.98 | 200 OK | 100 B |
URL HTTP/2adservice.google.com/adsid/integrator.js?domain=www.guiagaysalvador.com.br IP142.250.74.98:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.guiagaysalvador.com.br HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 24 Nov 2022 21:33:59 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| anuncios.guiya.com.br/delivery/lg.php?bannerid=673&campaignid=425&zoneid=120&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&cb=b0faa989fb | 142.93.186.29 | 200 OK | 514 B |
URL HTTP/2anuncios.guiya.com.br/delivery/lg.php?bannerid=673&campaignid=425&zoneid=120&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&cb=b0faa989fb IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeGIF image data, version 89a, 1 x 1\012- data Hashbb0cec51aa15b15cda677210fdc6f31c dce9fbb30e77ce8aa4c27ab524788e74787a3d02 0867b6bf9e26afd8a7f7d5a356cb2b776dff31af4234ef636e3ec8c6fd579328
GET /delivery/lg.php?bannerid=673&campaignid=425&zoneid=120&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&cb=b0faa989fb HTTP/1.1
Host: anuncios.guiya.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/gif
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAGEO=NO%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; path=/
OAID=c2380730fae360a0e63389fad9a25dc6; expires=Fri, 24-Nov-2023 21:33:58 GMT; Max-Age=31536000; path=/
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 87 kB |
IP142.250.74.3:0
File typegzip compressed data, from Unix\012- data Hash8b003ba715d497242db4087962ef32fb d08cf30afdd95bde250d98e8208b6ecbfcb3c76f 479f0691831620a6097e15b24652840df84b1b1385f72877dee4d91be96bd2ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash05681a05de8df6e408ae41032401b73f f4824b4863e26866b10cd45a8cb422c339997035 97ab2238b53d233622081c75f7c60621eea9ae85c19c7ae958cfdbd685f39ebc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45912135-5&cid=303773528.1669325639&jid=768319815&gjid=618136959&_gid=1277050709.1669325639&_u=YEBAAUAAAAAAACAAI~&z=460019693 | 142.250.150.154 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45912135-5&cid=303773528.1669325639&jid=768319815&gjid=618136959&_gid=1277050709.1669325639&_u=YEBAAUAAAAAAACAAI~&z=460019693 IP142.250.150.154:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45912135-5&cid=303773528.1669325639&jid=768319815&gjid=618136959&_gid=1277050709.1669325639&_u=YEBAAUAAAAAAACAAI~&z=460019693 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.guiagaysalvador.com.br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.guiagaysalvador.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 24 Nov 2022 21:33:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=217303351726807&ev=fb_page_view&dl=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&rl=&if=false&ts=1669325639146&sw=1280&sh=1024&at= | 157.240.200.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=217303351726807&ev=fb_page_view&dl=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&rl=&if=false&ts=1669325639146&sw=1280&sh=1024&at= IP157.240.200.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=217303351726807&ev=fb_page_view&dl=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&rl=&if=false&ts=1669325639146&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 24 Nov 2022 21:33:59 GMT
X-Firefox-Spdy: h2
|
|
| partner.googleadservices.com/gampad/cookie.js?domain=www.guiagaysalvador.com.br&callback=_gfp_s_&client=ca-pub-2841193357453836&gpid_exp=1 | 172.217.21.162 | 200 OK | 261 B |
URL HTTP/2partner.googleadservices.com/gampad/cookie.js?domain=www.guiagaysalvador.com.br&callback=_gfp_s_&client=ca-pub-2841193357453836&gpid_exp=1 IP172.217.21.162:0
File typeASCII text, with very long lines (411), with no line terminators Hashd8e3542ae738f3b01ad70cf051d25461 de745d79ba3d3215f1b3a387dbd5171cabd83cc6 a67ce7208b0fe9b86aa6ed1b635e6d26588be396167173445e309a9ef75eea35
GET /gampad/cookie.js?domain=www.guiagaysalvador.com.br&callback=_gfp_s_&client=ca-pub-2841193357453836&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 24 Nov 2022 21:33:59 GMT
server: cafe
cache-control: private
content-length: 261
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66850008-1&cid=303773528.1669325639&jid=356117077&gjid=1990620238&_gid=1277050709.1669325639&_u=YEDAAUABAAAAACAAI~&z=1123863237 | 142.250.150.154 | 200 OK | 4 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66850008-1&cid=303773528.1669325639&jid=356117077&gjid=1990620238&_gid=1277050709.1669325639&_u=YEDAAUABAAAAACAAI~&z=1123863237 IP142.250.150.154:0
File typeASCII text, with no line terminators Hash48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66850008-1&cid=303773528.1669325639&jid=356117077&gjid=1990620238&_gid=1277050709.1669325639&_u=YEDAAUABAAAAACAAI~&z=1123863237 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.guiagaysalvador.com.br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.guiagaysalvador.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 24 Nov 2022 21:33:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash05681a05de8df6e408ae41032401b73f f4824b4863e26866b10cd45a8cb422c339997035 97ab2238b53d233622081c75f7c60621eea9ae85c19c7ae958cfdbd685f39ebc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/irmos_cafuus_hq_gay.jpg?%7B%7D=&width=115&height=60&tr=c1 | 142.93.186.29 | 200 OK | 21 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/irmos_cafuus_hq_gay.jpg?%7B%7D=&width=115&height=60&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 115x60, components 3\012- data Hash228ab07e821d43519dc102ffcd67e87c 9ba0d9d30512f9d01b03740830ca91da66b66d4a cba38b2a99dbf73e5951f427ef7e3b66fd75fba8fe37d52b67feb399adad3ff9
GET /public/uploads/imagens/originais/noticia-foto/irmos_cafuus_hq_gay.jpg?%7B%7D=&width=115&height=60&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1; _ga=GA1.3.303773528.1669325639; _gid=GA1.3.1277050709.1669325639; _gat_gtag_UA_45912135_5=1; _gat_gtag_UA_66850008_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:59 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Tue, 29 Sep 2020 21:00:35 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf7801fe8b983652ae788bc952856c2ed f3898da21792b146a9f856e87ed3520d76277fb8 faa1bc8a9887e2dc694ff645546ea16cb96ac4bd1b0c460aef95f2cced100d6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:34:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Yannick_Tallarida_a_pequena_sereia_cartoons_desenhos_gays_homoerotico_1.jpg?%7B%7D=&width=115&height=60&tr=c1 | 142.93.186.29 | 200 OK | 17 kB |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Yannick_Tallarida_a_pequena_sereia_cartoons_desenhos_gays_homoerotico_1.jpg?%7B%7D=&width=115&height=60&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 115x60, components 3\012- data Hash188347587ec13179edec7af210005c26 85c582284b06211b41ef7444a7a89af2682cded1 334ae495ba51e806824d3f24c8db037ce8cf16dc0c58569b453e5b5f8f603ce5
GET /public/uploads/imagens/originais/noticia-foto/Yannick_Tallarida_a_pequena_sereia_cartoons_desenhos_gays_homoerotico_1.jpg?%7B%7D=&width=115&height=60&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1; _ga=GA1.3.303773528.1669325639; _gid=GA1.3.1277050709.1669325639; _gat_gtag_UA_45912135_5=1; _gat_gtag_UA_66850008_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:59 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Sat, 16 Apr 2022 00:50:00 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashfdd426230fc6d944211201eb8bb9aa8c 9e45a44aa7f38231001fd10e25def211714bdf3a 3fb27cd549f11bd7bfd961cf3c5a4fa7e5f4b39565a65ce45846f423e5bcf4cd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:34:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66850008-1&cid=303773528.1669325639&jid=356117077&_u=YEDAAUABAAAAACAAI~&z=839291048 | 142.250.74.164 | 200 OK | 42 B |
URL HTTP/2www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66850008-1&cid=303773528.1669325639&jid=356117077&_u=YEDAAUABAAAAACAAI~&z=839291048 IP142.250.74.164:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66850008-1&cid=303773528.1669325639&jid=356117077&_u=YEDAAUABAAAAACAAI~&z=839291048 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 21:34:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| tpc.googlesyndication.com/sodar/sodar2.js | 142.250.74.33 | 200 OK | 6.4 kB |
URL HTTP/2tpc.googlesyndication.com/sodar/sodar2.js IP142.250.74.33:0
File typeASCII text, with very long lines (1321) Hashac906814ed812c4ecdbb624a3bd2f6c3 8e4547eaffaa66a1ee61b36028dbcd7091d0e7de 8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Thu, 24 Nov 2022 21:34:00 GMT
expires: Thu, 24 Nov 2022 21:34:00 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| tpc.googlesyndication.com/sodar/sodar2/225/runner.html | 142.250.74.33 | 200 OK | 5.0 kB |
URL HTTP/2tpc.googlesyndication.com/sodar/sodar2/225/runner.html IP142.250.74.33:0
File typeHTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020) Hashf530c16b248be97e10df228df6a41c24 ca3c3a38bbeef6906682b3e0b2a7be40c08b0925 f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 20:10:36 GMT
expires: Wed, 22 Nov 2023 20:10:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 177804
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bda37a1-533d-48a6-bc76-7ecc9fe2dfc8.jpeg | 34.120.237.76 | 200 OK | 6.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bda37a1-533d-48a6-bc76-7ecc9fe2dfc8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasheeac5ead5ce62f0d9e2d4bcefa946208 c2430d901f2b4e4a463e90c540294f334553a246 850a89160f840d7509806c5becd6b074a92613920474195f63d7e7a9cf18d908
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bda37a1-533d-48a6-bc76-7ecc9fe2dfc8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6426
x-amzn-requestid: 6f27f360-dd76-4aee-a9bc-cbd52cd80def
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvx8GtpIAMFvQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e933f-69fa8ba571cc62036406e6bf;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wm_pBVCoReupun-_glC47ejuxaRJ6ViGPKClLnWkDrmT-SewUOXexw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:06:01 GMT
age: 84485
etag: "c2430d901f2b4e4a463e90c540294f334553a246"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| snapwidget.com/cdn-cgi/rum? | 172.67.75.33 | 204 No Content | 0 B |
URL HTTP/2snapwidget.com/cdn-cgi/rum? IP172.67.75.33:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 558
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/embed/897867
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Nov 2022 21:34:06 GMT
access-control-allow-origin: https://snapwidget.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 76f54449eff5b4ed-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/saunas.png | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/saunas.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/outros/saunas.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/oak_samba_medico_Leo_gay_onlyfans.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/oak_samba_medico_Leo_gay_onlyfans.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/oak_samba_medico_Leo_gay_onlyfans.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Tue, 15 Nov 2022 08:14:32 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/virgin_drag_queen.jpg?width=395&height=190&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/virgin_drag_queen.jpg?width=395&height=190&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/virgin_drag_queen.jpg?width=395&height=190&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Thu, 10 Nov 2022 06:54:35 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/vila_gale_hotis_resorts_brasil_gay_LGBT.jpg?width=395&height=190&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/vila_gale_hotis_resorts_brasil_gay_LGBT.jpg?width=395&height=190&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/vila_gale_hotis_resorts_brasil_gay_LGBT.jpg?width=395&height=190&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Mon, 24 Oct 2022 06:05:58 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/guiagay/js/guiagay-geral.js?tk=2022112418 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/midias/guiagay/js/guiagay-geral.js?tk=2022112418 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /midias/guiagay/js/guiagay-geral.js?tk=2022112418 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: application/javascript
last-modified: Thu, 16 Sep 2021 10:20:02 GMT
vary: Accept-Encoding
etag: W/"61431a52-f06"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/liniker_grammy.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/liniker_grammy.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/liniker_grammy.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Sun, 20 Nov 2022 01:31:01 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/daniel_leo_oak_onlyfans_morte.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/daniel_leo_oak_onlyfans_morte.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/daniel_leo_oak_onlyfans_morte.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Fri, 18 Nov 2022 02:55:54 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/637f9c3d88f63image.jpg?width=340&height=205&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/637f9c3d88f63image.jpg?width=340&height=205&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/637f9c3d88f63image.jpg?width=340&height=205&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Thu, 24 Nov 2022 21:22:02 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Fabricio_rosa_gay_polcia_federal.jpg?width=318&height=190&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Fabricio_rosa_gay_polcia_federal.jpg?width=318&height=190&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/Fabricio_rosa_gay_polcia_federal.jpg?width=318&height=190&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Tue, 22 Nov 2022 05:40:17 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/zona_rosa_gay_ciudad_de_Mexico_Mexico_city.jpg?width=395&height=190&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/zona_rosa_gay_ciudad_de_Mexico_Mexico_city.jpg?width=395&height=190&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/zona_rosa_gay_ciudad_de_Mexico_Mexico_city.jpg?width=395&height=190&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Tue, 8 Nov 2022 04:33:31 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/index/previsao-tempo | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/index/previsao-tempo IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /index/previsao-tempo HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-powered-by: EasyEngine 3.8.1
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| anuncios.guiya.com.br/delivery/asyncspc.php?zones=116%7C117%7C121%7C118%7C143%7C119%7C144%7C120%7C145&prefix=revive-0-&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2anuncios.guiya.com.br/delivery/asyncspc.php?zones=116%7C117%7C121%7C118%7C143%7C119%7C144%7C120%7C145&prefix=revive-0-&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /delivery/asyncspc.php?zones=116%7C117%7C121%7C118%7C143%7C119%7C144%7C120%7C145&prefix=revive-0-&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F HTTP/1.1
Host: anuncios.guiya.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.guiagaysalvador.com.br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: application/json
vary: Accept-Encoding
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAGEO=NO%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; path=/
OAID=766fed3fb5c235a8366a4ca0d50ad441; expires=Fri, 24-Nov-2023 21:33:58 GMT; Max-Age=31536000; path=/
access-control-allow-origin: https://www.guiagaysalvador.com.br
access-control-allow-credentials: true
x-powered-by: EasyEngine 3.8.1
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/index/limpar-cache-facebook/?url=https://www.guiagaysalvador.com.br/ | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/index/limpar-cache-facebook/?url=https://www.guiagaysalvador.com.br/ IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /index/limpar-cache-facebook/?url=https://www.guiagaysalvador.com.br/ HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1; _ga=GA1.3.303773528.1669325639; _gid=GA1.3.1277050709.1669325639; _gat_gtag_UA_45912135_5=1; _gat_gtag_UA_66850008_1=1; _fbp=fb.2.1669325639413.435127705; __gads=ID=f20fcaf8dadb4810-2219d7c879d700fa:T=1669325639:RT=1669325639:S=ALNI_MY2SIOaaS3gXRvMzLTevAr3k37Mow; __gpi=UID=00000b86b6e51d3c:T=1669325639:RT=1669325639:S=ALNI_MbJkbrSDnS4qJYG4Eh02jwzxm1vaQ; urljafoilimpada-43695752c59714f45a80eca55beb74c0=ok
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:34:00 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-powered-by: EasyEngine 3.8.1
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/316236042_2683369028467297_6236932639931929675_n_2.jpg | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/316236042_2683369028467297_6236932639931929675_n_2.jpg IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/outros/316236042_2683369028467297_6236932639931929675_n_2.jpg HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpg
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/rafa_sieg_ator_gay.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/rafa_sieg_ator_gay.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/rafa_sieg_ator_gay.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Sun, 20 Nov 2022 00:18:47 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| anuncios.guiya.com.br/delivery/asyncjs.php | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2anuncios.guiya.com.br/delivery/asyncjs.php IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /delivery/asyncjs.php HTTP/1.1
Host: anuncios.guiya.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
expire: Thu, 24 Nov 2022 22:33:58 GMT
cache-control: private, max-age=3600
x-powered-by: EasyEngine 3.8.1
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| anuncios.guiya.com.br/delivery/lg.php?bannerid=594&campaignid=395&zoneid=119&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&cb=56b6b49b8a | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2anuncios.guiya.com.br/delivery/lg.php?bannerid=594&campaignid=395&zoneid=119&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&cb=56b6b49b8a IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /delivery/lg.php?bannerid=594&campaignid=395&zoneid=119&loc=https%3A%2F%2Fwww.guiagaysalvador.com.br%2F&cb=56b6b49b8a HTTP/1.1
Host: anuncios.guiya.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/gif
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAGEO=NO%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; path=/
OAID=2e68b9c4f04cf7b67841b8d01f973c48; expires=Fri, 24-Nov-2023 21:33:58 GMT; Max-Age=31536000; path=/
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/esportes.png | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/esportes.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/outros/esportes.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/ameianoite_pabllo_vittar_gloria_groove.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/ameianoite_pabllo_vittar_gloria_groove.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/ameianoite_pabllo_vittar_gloria_groove.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Sat, 19 Nov 2022 18:10:39 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| unpkg.com/flickity@2/dist/flickity.pkgd.min.js | 104.16.126.175 | 302 Found | 0 B |
URL HTTP/2unpkg.com/flickity@2/dist/flickity.pkgd.min.js IP104.16.126.175:0
GET /flickity@2/dist/flickity.pkgd.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /flickity@2.3.0/dist/flickity.pkgd.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJNRJRDGPKS7SB83RXSAWMEN-ams
cf-cache-status: HIT
age: 420
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f544168f46b527-OSL
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/libs/jquery/jquery-2.2.3.min.js | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/midias/libs/jquery/jquery-2.2.3.min.js IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /midias/libs/jquery/jquery-2.2.3.min.js HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: application/javascript
last-modified: Tue, 07 Jun 2016 20:35:15 GMT
vary: Accept-Encoding
etag: W/"57573003-14e9b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/bandeira_lgbt_catar_2.jpg?width=340&height=205&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/bandeira_lgbt_catar_2.jpg?width=340&height=205&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/bandeira_lgbt_catar_2.jpg?width=340&height=205&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Wed, 23 Nov 2022 10:43:10 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/capa_negroes_do_basquete.jpg?%7B%7D=&width=115&height=60&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/capa_negroes_do_basquete.jpg?%7B%7D=&width=115&height=60&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/capa_negroes_do_basquete.jpg?%7B%7D=&width=115&height=60&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1; _ga=GA1.3.303773528.1669325639; _gid=GA1.3.1277050709.1669325639; _gat_gtag_UA_45912135_5=1; _gat_gtag_UA_66850008_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:59 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Tue, 29 Sep 2020 21:00:35 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/nicolas_prattes_ator_pelado_bunda_fora_.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/nicolas_prattes_ator_pelado_bunda_fora_.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/nicolas_prattes_ator_pelado_bunda_fora_.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Mon, 14 Nov 2022 18:03:46 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/guiagay/css/paginas/guiagay-index.css?tk=2022112418 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/midias/guiagay/css/paginas/guiagay-index.css?tk=2022112418 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /midias/guiagay/css/paginas/guiagay-index.css?tk=2022112418 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: text/css
last-modified: Sun, 17 Nov 2019 21:55:35 GMT
vary: Accept-Encoding
etag: W/"5dd1c1d7-348da"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_restaurantes.png | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_restaurantes.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/outros/ic_roteiro_restaurantes.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_apoio_turistico.png | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_apoio_turistico.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/outros/ic_roteiro_apoio_turistico.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/rodrigo_bocardi_nude_vaza_video_pelado.jpg?%7B%7D=&width=115&height=60&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/rodrigo_bocardi_nude_vaza_video_pelado.jpg?%7B%7D=&width=115&height=60&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/rodrigo_bocardi_nude_vaza_video_pelado.jpg?%7B%7D=&width=115&height=60&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1; _ga=GA1.3.303773528.1669325639; _gid=GA1.3.1277050709.1669325639; _gat_gtag_UA_45912135_5=1; _gat_gtag_UA_66850008_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:59 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Tue, 29 Sep 2020 21:00:35 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Koo_x_Twitter_1000x450.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Koo_x_Twitter_1000x450.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/Koo_x_Twitter_1000x450.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Mon, 21 Nov 2022 11:28:07 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Isaac_Humphires_gay_2.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Isaac_Humphires_gay_2.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/Isaac_Humphires_gay_2.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Sun, 20 Nov 2022 13:47:04 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/libs/jquery/jQuery-owlcarousel-Plugin/owl-carousel/owl.theme.css | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/midias/libs/jquery/jQuery-owlcarousel-Plugin/owl-carousel/owl.theme.css IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /midias/libs/jquery/jQuery-owlcarousel-Plugin/owl-carousel/owl.theme.css HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: text/css
last-modified: Thu, 29 Sep 2016 23:57:52 GMT
vary: Accept-Encoding
etag: W/"57edaa80-681"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/noticias/ajax-mais-lidas | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/noticias/ajax-mais-lidas IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /noticias/ajax-mais-lidas HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1; _ga=GA1.3.303773528.1669325639; _gid=GA1.3.1277050709.1669325639; _gat_gtag_UA_45912135_5=1; _gat_gtag_UA_66850008_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:59 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-powered-by: EasyEngine 3.8.1
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| unpkg.com/flickity@2/dist/flickity.min.css | 104.16.126.175 | 302 Found | 0 B |
URL HTTP/2unpkg.com/flickity@2/dist/flickity.min.css IP104.16.126.175:0
GET /flickity@2/dist/flickity.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /flickity@2.3.0/dist/flickity.min.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJNRZEC28RQ4AC9J5DV1GH5J-ams
cf-cache-status: HIT
age: 5
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f544168f43b527-OSL
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/sex_club.png | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/sex_club.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/outros/sex_club.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/guiagaySalvador.png | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/guiagaySalvador.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/outros/guiagaySalvador.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Diego_Montez_ator_novela_vai_na_f_gay.jpg?width=340&height=205&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Diego_Montez_ator_novela_vai_na_f_gay.jpg?width=340&height=205&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/Diego_Montez_ator_novela_vai_na_f_gay.jpg?width=340&height=205&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Thu, 24 Nov 2022 21:00:06 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/enquete/ajax-enquete-box | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/enquete/ajax-enquete-box IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /enquete/ajax-enquete-box HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1; _ga=GA1.3.303773528.1669325639; _gid=GA1.3.1277050709.1669325639; _gat_gtag_UA_45912135_5=1; _gat_gtag_UA_66850008_1=1; _fbp=fb.2.1669325639413.435127705; __gads=ID=f20fcaf8dadb4810-2219d7c879d700fa:T=1669325639:RT=1669325639:S=ALNI_MY2SIOaaS3gXRvMzLTevAr3k37Mow; __gpi=UID=00000b86b6e51d3c:T=1669325639:RT=1669325639:S=ALNI_MbJkbrSDnS4qJYG4Eh02jwzxm1vaQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:34:00 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-powered-by: EasyEngine 3.8.1
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Mediadores___Bete_Nag_e_Fabrcio_Dias_marsha_lubt_periferia_negros.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Mediadores___Bete_Nag_e_Fabrcio_Dias_marsha_lubt_periferia_negros.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/Mediadores___Bete_Nag_e_Fabrcio_Dias_marsha_lubt_periferia_negros.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Fri, 18 Nov 2022 20:59:19 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Janana_Oliveira_lula_lgbt_transio.jpg?width=318&height=190&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/Janana_Oliveira_lula_lgbt_transio.jpg?width=318&height=190&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/Janana_Oliveira_lula_lgbt_transio.jpg?width=318&height=190&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Thu, 24 Nov 2022 14:41:18 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/charge_3n.jpg | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/charge_3n.jpg IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/outros/charge_3n.jpg HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpg
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/01_1.jpg?%7B%7D=&width=115&height=60&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/01_1.jpg?%7B%7D=&width=115&height=60&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/01_1.jpg?%7B%7D=&width=115&height=60&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1; _ga=GA1.3.303773528.1669325639; _gid=GA1.3.1277050709.1669325639; _gat_gtag_UA_45912135_5=1; _gat_gtag_UA_66850008_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:59 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Thu, 28 Jan 2021 00:33:47 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/libs/jquery/jQuery-owlcarousel-Plugin/owl-carousel/owl.carousel.min.js | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/midias/libs/jquery/jQuery-owlcarousel-Plugin/owl-carousel/owl.carousel.min.js IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /midias/libs/jquery/jQuery-owlcarousel-Plugin/owl-carousel/owl.carousel.min.js HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2016 23:57:52 GMT
vary: Accept-Encoding
etag: W/"57edaa80-5d52"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_hoteis.png | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_hoteis.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/outros/ic_roteiro_hoteis.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/midias/libs/jquery/jQuery-Weather-Widget/js/app.js | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/midias/libs/jquery/jQuery-Weather-Widget/js/app.js IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /midias/libs/jquery/jQuery-Weather-Widget/js/app.js HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jan 2021 19:30:07 GMT
vary: Accept-Encoding
etag: W/"5ff36cbf-1bf6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_cidadania.png | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/ic_roteiro_cidadania.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/outros/ic_roteiro_cidadania.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/cine_cabines.png | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/outros/cine_cabines.png IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/outros/cine_cabines.png HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/png
x-junio-cache: SimOriginal
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/protesto_copa_inglaterra_gay_catar_2.jpg?width=655&height=394&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/protesto_copa_inglaterra_gay_catar_2.jpg?width=655&height=394&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/protesto_copa_inglaterra_gay_catar_2.jpg?width=655&height=394&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Wed, 23 Nov 2022 02:50:46 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| snapwidget.com/js/snapwidget.js | 172.67.75.33 | 200 OK | 0 B |
URL HTTP/2snapwidget.com/js/snapwidget.js IP172.67.75.33:0
GET /js/snapwidget.js HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
etag: W/"6368c501-560f"
last-modified: Mon, 07 Nov 2022 08:42:41 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 254534
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r%2FkTVNOFoZ60VKDVNNzTeBY1UGXkzHAR64FNdwiidVxWvQDaT3af83WUB3%2BIdetCxPcKD3uneN7VtwSOUSzYwdPVHL6jagpy6DNYMBtP6eZPq6GbKC8k70Z%2Fiba%2BUanH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 76f544168eb2b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/botox_penis_impotencia.jpg?width=338&height=203&tr=c1 | 142.93.186.29 | 200 OK | 0 B |
URL HTTP/2www.guiagaysalvador.com.br/public/uploads/imagens/originais/noticia-foto/botox_penis_impotencia.jpg?width=338&height=203&tr=c1 IP142.93.186.29:0 ASN#14061 DIGITALOCEAN-ASN
GET /public/uploads/imagens/originais/noticia-foto/botox_penis_impotencia.jpg?width=338&height=203&tr=c1 HTTP/1.1
Host: www.guiagaysalvador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Cookie: PHPSESSID=4p3tks5ohqsli0anv4c4m85np1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:33:58 GMT
content-type: image/jpeg
cache-control: public, max-age=86400
last-modified: Thu, 10 Nov 2022 03:12:58 GMT
x-junio-cache: SimVersao
x-powered-by: EasyEngine 3.8.1
X-Firefox-Spdy: h2
|
|
| ui.cleverwebserver.com/ | 104.18.25.246 | 200 OK | 0 B |
IP104.18.25.246:0
GET / HTTP/1.1
Host: ui.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.guiagaysalvador.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 21:33:59 GMT
content-type: application/javascript
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76f5441c48de0afe-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|