Report - www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f

Report Overview

Submitted URL
www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f
IP
192.185.223.116
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-09-30 01:59:01
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	91 kB	142.250.74.72
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	60 kB	34.120.237.76
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	21 kB	142.250.74.174
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	984 B	2.1 kB	142.250.74.66
prism.app-us1.com	8479	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	637 B	462 B	104.17.145.91
diffuser-cdn.app-us1.com	8451	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	599 B	104.17.145.91
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	907 B	576 B	216.239.32.36
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	619 B	724 B	64.233.165.155
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	1.5 kB	142.250.74.3
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	7.0 kB	142.250.74.3
js.adsrvr.org	1664	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	2.4 kB	143.204.45.46
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.9 kB	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	100.20.30.105
www.alaskausa.org	258465	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	10 kB	544 kB	107.162.171.161
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	16 kB	142.250.74.164
primegestaoempresarial.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	996 B	192.185.223.116
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
www.primegestaoempresarial.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.2 kB	311 kB	192.185.223.116
bat.bing.com	387	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	14 kB	204.79.197.200

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-30	medium	www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusafonts.css?20181128	Phishing
2022-09-30	medium	www.primegestaoempresarial.com/trade/alaska/alaskausa/fonts/PTN57F-webfont.woff	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (31)

	URL	Size	First Seen	Last Seen
	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	1.9 kB	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen13 Hash e2558cbe5c29ec305b5cd4c47f287ef8 8a666fefbd7c01295d1e9a07b13eba3469c38b3b 1779ec38e53e032e19aede583bb1250b7e4d0a921b62d2155a6998ce6ff8b90f Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	369 B	2023-03-07	2024-01-05
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2024-01-05 05:27:40 Times Seen4 Hash d850fa304b04e914feba514c236e913a 79cbb2b9a9ddd76d75be39d73fb6ed261776110d 8937f5aecff9ef1acd3186c7852a35305538447c1a107c54429714bc997b2d96 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	172 B	2023-03-07	2023-03-17
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash 1da4f5fdcdee6acc88ecf93522ccc86d dabbc02df9bb7c1f45b475cff0d692986f3e6fcd c250946ecf2aebf7c0fda8ec3f64635517af2d84704b2ea8a6f958d2ad98410a Loading...

	www.alaskausa.org/js/jquery-1.11.3.min.js	96 kB	2023-03-07	2024-04-18
Pretty URL www.alaskausa.org/js/jquery-1.11.3.min.js IP 107.162.171.161 ASN #55002 DEFENSE-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:25 Last Seen2024-04-18 21:06:38 Times Seen10280 Hash 895323ed2f7258af4fae2c738c8aea49 276c87ff3e1e3155679c318938e74e5c1b76d809 ecb916133a9376911f10bc5c659952eb0031e457f5df367cde560edbfba38fb8 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	21 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen16 Hash 5486f6bd2145349490f8c1293260cfa0 8b10f7228174f4f2ecf3300b23a450f8926f34ca e7699f5d57673c2c06cecb431d256633befdf0eac4f44315a4ce3ff1b913893a Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	2.1 kB	2023-03-07	2023-03-17
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash ddaec52f9dbaad4bdbd816217c8da05c ba8fcc8c51f7a9368e330e2df4de59e0c71cf1e6 63057254646b8a0da4b267966e36a11c675626980d1502fb98d831af85c31f95 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/831978068/?random=1664503130492&cv=9&fst=1664503130492&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9s0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&tiba=Alaska%20USA%20services%20for%20you&auid=1876373404.1664503128&hn=www.google.com&async=1&rfmt=3&fmt=4	2.6 kB	2023-03-08	2023-03-08
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/831978068/?random=1664503130492&cv=9&fst=1664503130492&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9s0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&tiba=Alaska%20USA%20services%20for%20you&auid=1876373404.1664503128&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 142.250.74.66 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:40:17 Last Seen2023-03-08 03:40:17 Times Seen1 Hash fd3bb33a9ef7816f49121a1ac202c4b6 aebb284a46df7015c3125fddbcefac62d69abeff b3fe06a440075c0a404f65ad62a2c1f54203c8ab690a3c78430b57abf2d9b870 Loading...

	www.google.com/pagead/conversion_async.js	42 kB	2023-03-08	2023-03-10
Pretty URL www.google.com/pagead/conversion_async.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:10:58 Last Seen2023-03-10 12:05:33 Times Seen1 Hash 7ebf0fce2f7b7c5a547d76da320bd16f cf5575cac6328d1538893b09ddcc0e1d9ece0bd2 a355dc6fd53a94ca23cff781b3cf5f19d3851d899687b32bdfb4ecf6adb0ecb3 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	4.2 kB	2023-03-07	2023-03-17
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash 5d8832b4db7422e5ac2e20f9062467c0 4d4eecfbb032fff43310e8d4be7a3259347ecde9 883e21d8985860b938fbf3929b44c9db4caf951b163131b25a0d83ec0eaff157 Loading...

	www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js	11 kB	2023-03-07	2023-09-07
Pretty URL www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js IP 107.162.171.161 ASN #55002 DEFENSE-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen14 Hash 6d3d6210fd17d11eebdcc9151064e213 757bc1fba335ef0387fb8e05ccf7d67111c67aa7 02ca1096a4032bceab99b6b588b0763f3eac608d12852dc1b0252601ad062bd5 Loading...

	www.alaskausa.org/js/jsSuite-1.9.5.js	62 kB	2023-03-07	2023-03-17
Pretty URL www.alaskausa.org/js/jsSuite-1.9.5.js IP 107.162.171.161 ASN #55002 DEFENSE-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash f83afd46a48a88ab3f867c648f8895cc 8e2e043ef90c8a1d7aae93ee7d6de51def5fb89a bca5da5fbdc9292cedb816e85db8980b5fbacf78e21d460b56aca95750ad5a43 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	21 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen16 Hash 3d73b1cb46543e532addca54e6761e8a 321bfdb72be1fadaaac2f1f4bdaef1c03375f3b6 2195b38e503e53362cb64f64eea69f3732e826168219ce6e6072f6fff774d186 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	21 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen16 Hash 7d9beb4228a4a1f0daa00afca638f5e2 230f4efcbc655ff11c63dd971bd221bccff18446 fbb381a648bd49f1af1d726ec051d75c14632c3f1fa39ffbe2b08ab9c2544b6d Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	21 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen16 Hash 1ba1ef9c3b171a3703ef0e64f2ffb7a8 548642466bdfadb4b960614c92c043cc7bef2dac 1e591cd403a488c386f34d87f816993f1e515601081767abb1a088500ae37e63 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	21 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen16 Hash 2cb38a08323dbd99f3c05c4616bc6b77 c30aedbb04242c9228a33b1e26015b61f410c697 241cbf472bf26a2896d6e8138d7929d29a33d4f7b53b67df13b957d23b130fee Loading...

	www.googletagmanager.com/gtm.js?id=GTM-W942G3C	332 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-W942G3C IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:40:17 Last Seen2023-03-08 03:40:17 Times Seen1 Hash f43dbd218991426c49f20204f2cbaf48 f6826bd18148e7fa946a924a6a0cf564ccb012be c45b797bafb7efa6400b484621e85cfcb8b3d467d282a0262ae09a769210f784 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	1.4 kB	2023-03-07	2024-04-18
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:29 Last Seen2024-04-18 14:00:32 Times Seen283 Hash bc9a8eaf3e6b50449dc8f17dce6ceb87 a6ed79412905a29eb6af6ab06ee65c243a8f2fae df143682c1457ed20ef47ab92cd113032a69bbe9e5217688a8e45f952a43fa3f Loading...

	js.adsrvr.org/up_loader.1.1.0.js	4.6 kB	2023-03-07	2023-11-04
Pretty URL js.adsrvr.org/up_loader.1.1.0.js IP 143.204.45.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:29 Last Seen2023-11-04 15:38:59 Times Seen1096 Hash 98d98b3499058b76d58073cf8ede2f10 2ec5bc839a187c2a4d93499567e8fff091a6bcc4 ee3a7301fe1e0c0f6bf6acff0d7a8d107f5cb3f62a2566740c0416d8e61f00b9 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	128 B	2023-03-07	2024-01-05
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2024-01-05 05:27:41 Times Seen4 Hash f07adaf58e962a8636afb754a9a04c2e b021913ba6d249ad7f4c70dd66a33cf8d0b76252 ac9be3e1a371da333602f7b42406e5a5c9a78f1e3dab0a2e9477cd9d6ad8c1ec Loading...

	bat.bing.com/bat.js	39 kB	2023-03-07	2023-08-25
Pretty URL bat.bing.com/bat.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2023-08-25 07:33:07 Times Seen42 Hash 16911c194f6e9313655f07c4eb9d8737 d39ccfa8c6d785af331afafe9e36336031f41b64 30153b15b4cb898c421e657f6de21dc27435cb990e7888367bdee12e06398da7 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	341 B	2023-03-07	2024-01-05
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2024-01-05 05:27:40 Times Seen4 Hash 0042a19ac90d66cf42c4fa1396ecbbf6 d883aa293ca29321e8896a7cf39c464da09ed8b8 8ef4331d4b04cbd19d10a754b740b98907c2a38be09588e92efcd9710a6a803b Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	536 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen3 Hash bf6492ad4b44f40b0ed4812ae01a05b6 8f786af39fd683a566e2ca0fdb45447348c19bcf 390938fbb57c9783619ad47e76eaa4a928ce28174b33c7bd30518ec5f61110b9 Loading...

	www.googletagmanager.com/gtag/js?id=DC-9253762	109 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=DC-9253762 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:40:17 Last Seen2023-03-08 03:40:17 Times Seen1 Hash 6637ca1673d603271436bd01974a75de 634ae1be34dff03d0128774d186c33fad02a21fe 84a4dae0a8b67b31c2bcdb4f6af047f47ce27716ec9f288646d7802703916b1f Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	2.6 kB	2023-03-07	2023-03-17
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash 6fe3e4fb2d9423fa87cf9a0e0f570d96 b96bd7e228457964510c9ec7ddad67dea9d98dcc 948ec3177d0f9d3dc161c66cda556aee42ddac698738d1348154a7f99c3c5904 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	1.9 kB	2023-03-07	2023-03-17
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash 4597f6e22792d7b33e97809b5d4b2f2c 12886b4bed472a962ff81b82ec76828bd91bd5d6 9b96bae40f4dd9d0de901fc75e3c2c4a88157dbb3ff9120da78a4a2d9b1c14dd Loading...

	diffuser-cdn.app-us1.com/diffuser/diffuser.js	24 kB	2023-03-07	2023-04-05
Pretty URL diffuser-cdn.app-us1.com/diffuser/diffuser.js IP 104.17.145.91 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2023-04-05 02:07:52 Times Seen69 Hash 4d482a43613d3966f353ec9d97452e0c 4acc9cf492267ab6d351fb11246431bd7d6e6387 15eb202865d1d835fae2eff61bb922fa91fb4064a1fb850ebadab1f190782648 Loading...

	www.alaskausa.org/js/jquery.accAccordion.js	7.7 kB	2023-03-07	2023-09-07
Pretty URL www.alaskausa.org/js/jquery.accAccordion.js IP 107.162.171.161 ASN #55002 DEFENSE-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen4 Hash ff5441be8da9b57a6c30df693f64a7a6 b9cb6de18497bd3c9b07ab57e933466b67ff420d f7e3eb312cccb6419c3aec05f31125d606b83c1fe8c91b30a13e8ed4f6403aab Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-01-06
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:05:31 Last Seen2024-01-06 17:39:53 Times Seen66 Hash 99ba52a15d2da967b023016d1af58cbd 5c2246049c43834d17113877b4731bd4f9803d55 9e25469f734732205f33dd80ff8ca12080406c18d2fa99a1f368103e51f7999f Loading...

	www.googletagmanager.com/gtag/js?id=G-R11FYFZ8HF&l=dataLayer&cx=c	226 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-R11FYFZ8HF&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:40:17 Last Seen2023-03-08 03:40:17 Times Seen1 Hash aae08f572ea7dfe508c3c27759bd2d29 296d54aa056629da18bbeb4df042a9abcd669eb2 178bc458d5d7c8a64683ce81a394fbb6cce3b262813d9c51c463a8967976333f Loading...

	prism.app-us1.com/?a=25948200&u=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f	0 B	2023-03-07	2024-04-18
Pretty URL prism.app-us1.com/?a=25948200&u=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f IP 104.17.145.91 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-18 21:19:45 Times Seen36947437 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.alaskausa.org/js/jquery/slick/slick.181.js	93 kB	2023-03-07	2023-03-26
Pretty URL www.alaskausa.org/js/jquery/slick/slick.181.js IP 107.162.171.161 ASN #55002 DEFENSE-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-26 01:30:26 Times Seen10 Hash c88b659245280b7e064ed3c720aaa368 864106461b00976f8def844e06f0dc00f028737d 03adc4dc515be5d90fd135e9745f7833c80c921a5b054e827067bf6ef0171fb3 Loading...

HTTP Transactions (87)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 30 Sep 2022 01:16:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ACj_mQf3or_Ly2uftWR1HbilBCr0DI2kGWrYnwzdawCIDn2qYHpsaw==
Age: 2566

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10024
Expires: Fri, 30 Sep 2022 04:45:54 GMT
Date: Fri, 30 Sep 2022 01:58:50 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 29 Sep 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vrguHQO5tdg_MwIJyqcNZXBx6n0JzH3Ge_3QHQ_rKkg-4aBbDIJK8g==
age: 73823
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 01:58:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f

192.185.223.116

200 OK

18 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (619)
Size
18 kB (17687 bytes)
Hash
cfcddf41689322e51787539a500fbeed
145175540879399149eeacc39cec658ceaf58deb
0c03cf00ca288f06d69d083331eaaf7172a6af51eaebdcf2a5aea921bcb652fa

HTTP Headers

GET /trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:50 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Cache-Control: max-age=7200
Expires: Fri, 30 Sep 2022 03:58:50 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusafonts.css?20181128

192.185.223.116

200 OK

985 B

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusafonts.css?20181128
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
985 B (985 bytes)
Hash
2832fd8c6093a6482abd5d03dba4b181
78de3c2fa52aa5739e39deb08df1c101b9cd02e5
b95a2d58f8845fcb3dd2d0b8ee143dccda6a657aa595743cc31938a6fb8e8560

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /trade/alaska/alaskausa/css/akusafonts.css?20181128 HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 19 Aug 2019 19:03:44 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 30 Oct 2022 01:58:51 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 985
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-base.css

192.185.223.116

200 OK

11 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-base.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
11 kB (11412 bytes)
Hash
80a9abd6868890f89f1d64cc33e0625d
d267a76a9147c8f07d8525413430db60064194c8
871c2c02c19d392816f126fbb02429d20336252ba8c4326e7620789a584d4c20

HTTP Headers

GET /trade/alaska/alaskausa/css/akusa-base.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:18:48 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 30 Oct 2022 01:58:51 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 11412
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6ac97060c75238244bfa94c6c6f63e40
9a640270fe62b82a8d971472f28a150e23f3a0c2
f7c0b8dc16c4a08e73772eadf8303a509768acf9d70f132c1c1db899534d4bab

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-W942G3C

142.250.74.72

200 OK

90 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-W942G3C
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (58138)
Size
90 kB (90189 bytes)
Hash
c612a08069dafc08fd61ce2b9ababbf5
474ed1981962552c4f65e346b09fb6c275b4f248
c4b376cd142bf34011800914885a550a94d1774d7b7ef044cd6439aa9aac2303

HTTP Headers

GET /gtm.js?id=GTM-W942G3C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 30 Sep 2022 01:58:51 GMT
expires: Fri, 30 Sep 2022 01:58:51 GMT
cache-control: private, max-age=900
last-modified: Fri, 30 Sep 2022 00:17:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 90189
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/slick.css

192.185.223.116

200 OK

1.2 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/slick.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
1.2 kB (1172 bytes)
Hash
edd4f206bae3305768fe1ac66326c628
1c6b6757720e1be115f3b3daa928788f7caf321e
0350d03e29134f29d2dc6cb31008a694df413e5d9f0cf878661163077df283ec

HTTP Headers

GET /trade/alaska/alaskausa/css/slick.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 19 Aug 2019 19:22:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 30 Oct 2022 01:58:51 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1172
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-home.css

192.185.223.116

200 OK

2.5 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-home.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
2.5 kB (2482 bytes)
Hash
a936fd01faf11623fafca380b0544fb4
30a6ae8d9328e3552314d6d808a9f5477502860a
075a2848420902f8ebd3cc514df26cb5a141b9050e600a1ee6e767b4f20feeb9

HTTP Headers

GET /trade/alaska/alaskausa/css/akusa-home.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 19 Aug 2019 19:23:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 30 Oct 2022 01:58:51 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2482
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-desktop.css

192.185.223.116

200 OK

8.1 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-desktop.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (844)
Size
8.1 kB (8059 bytes)
Hash
b8571d507427020217147bdc30da2a2d
acd7df2d1292a7d28f8150b327622f1e7e617f36
90f6bca86ac0fe663729d5709780e90efcf84cf66f9fc6009b0b9f7e1cb2672d

HTTP Headers

GET /trade/alaska/alaskausa/css/akusa-desktop.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:19:48 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 30 Oct 2022 01:58:51 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 8059
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 30 Sep 2022 01:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 30 Sep 2022 01:37:22 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: X2XnuRQNZ1o3Vh89AAM7lcWnMpoErJa1i1p9IG_ufiV1gnaj6I5BDg==
Age: 1758

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6ac97060c75238244bfa94c6c6f63e40
9a640270fe62b82a8d971472f28a150e23f3a0c2
f7c0b8dc16c4a08e73772eadf8303a509768acf9d70f132c1c1db899534d4bab

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.primegestaoempresarial.com/trade/alaska/alaskausa/images/header_bg.png

192.185.223.116

200 OK

8.1 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/images/header_bg.png
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 156 x 165, 8-bit/color RGB, non-interlaced\012- data
Size
8.1 kB (8058 bytes)
Hash
f420d4563192f414fabc27808342a8b2
80d69a4a339f6ddfe991d41d798d9a58fa0a21ea
5cd6b433131a0f7972117a1de73410cd07059f385b4dceb1e99b1c9dd6351fb6

HTTP Headers

GET /trade/alaska/alaskausa/images/header_bg.png HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-desktop.css

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:50:32 GMT
Accept-Ranges: bytes
Content-Length: 8058
Cache-Control: max-age=31536000
Expires: Sat, 30 Sep 2023 01:58:51 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-phone.css

192.185.223.116

200 OK

6.8 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-phone.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (676)
Size
6.8 kB (6812 bytes)
Hash
b6210515247573d638fa1a2adc1e3870
78ec7d9617046883a7bacbbe9f0375af340e1070
4631b56d6792e7a2d8b7bf6ae34186bda83355f3efedd9c935079777002ffe43

HTTP Headers

GET /trade/alaska/alaskausa/css/akusa-phone.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 19 Aug 2019 19:19:32 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 30 Oct 2022 01:58:51 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 6812
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-print.css

192.185.223.116

200 OK

278 B

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-print.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
278 B (278 bytes)
Hash
524da06f25fdf0fe13f8fba3e34233f9
edd9cb40225a022dd8ce2a04e7df4d34779356ed
cbef40f0c70c41f0686686ef4ad4ab5984cd2837378027745cadaa27f1ed0b66

HTTP Headers

GET /trade/alaska/alaskausa/css/akusa-print.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:20:04 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 30 Oct 2022 01:58:51 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 278
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css

js.adsrvr.org/up_loader.1.1.0.js

143.204.45.46

200 OK

1.9 kB

URL HTTP/1.1
js.adsrvr.org/up_loader.1.1.0.js
IP
143.204.45.46:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (4593), with no line terminators
Size
1.9 kB (1887 bytes)
Hash
8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b

HTTP Headers

GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 29 Sep 2022 13:32:53 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CfPP7MGHD7TFSAMBf6yoE7afMuHxfHAXGMXR8csmA7qLa1EQ8R-J1w==
Age: 44758

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f09cb223e3dc028c58cf32c2274c3766
ca7f1663a1200941986e786353ed2f3ff50bd0b2
9b89a5534b1a84f0a86f150dc7f1f699bb972f7b8e151b29c02454dd939066ca

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4211
Cache-Control: max-age=112686
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:51 GMT
Etag: "63355216-1d7"
Expires: Sat, 01 Oct 2022 09:16:57 GMT
Last-Modified: Thu, 29 Sep 2022 08:06:46 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

www.primegestaoempresarial.com/trade/alaska/alaskausa/images/navSprites.png

192.185.223.116

200 OK

14 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/images/navSprites.png
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 240 x 320, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14383 bytes)
Hash
2c34097881e44683ea2c683b9c4c6fba
c3053cdec4d858a66cdaeb71e6612115508513a8
dab4dd2fc46c7aa07526cacce2b4111e56d2c57443449519b04af9dec4cfe019

HTTP Headers

GET /trade/alaska/alaskausa/images/navSprites.png HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-desktop.css

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:42:50 GMT
Accept-Ranges: bytes
Content-Length: 14383
Cache-Control: max-age=31536000
Expires: Sat, 30 Sep 2023 01:58:51 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png

www.primegestaoempresarial.com/trade/alaska/alaskausa/fonts/PTN57F-webfont.woff

192.185.223.116

200 OK

25 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/fonts/PTN57F-webfont.woff
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 25232, version 1.0\012- data
Size
25 kB (25232 bytes)
Hash
dbe930f71a2d24cc78b2fac1fbcbf7eb
9e86b11f4ebdb2f78668b05c19a30407491437ee
505251f17e21dc99dcd248a697febdab8814c2a0f3a5de7694b6b59f0a26afcf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /trade/alaska/alaskausa/fonts/PTN57F-webfont.woff HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusafonts.css?20181128

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Last-Modified: Tue, 20 Aug 2019 00:44:16 GMT
Accept-Ranges: bytes
Content-Length: 25232
Cache-Control: max-age=21600
Expires: Fri, 30 Sep 2022 07:58:51 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: font/woff

www.primegestaoempresarial.com/trade/alaska/alaskausa/fonts/AkusaIcon.woff?j5gpp4

192.185.223.116

200 OK

17 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/fonts/AkusaIcon.woff?j5gpp4
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 17108, version 1.0\012- data
Size
17 kB (17108 bytes)
Hash
b778f3bf70c28c600d8ee7453c1fc0b6
6c058c6a97d77d515d06b3529a11e6a03de002dd
3230f11f87ac7aa3afcde93c95793a2e00651d4bbae8b8fc3d12667daf8052fa

HTTP Headers

GET /trade/alaska/alaskausa/fonts/AkusaIcon.woff?j5gpp4 HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusafonts.css?20181128

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 20 Aug 2019 00:45:52 GMT
Accept-Ranges: bytes
Content-Length: 17108
Cache-Control: max-age=21600
Expires: Fri, 30 Sep 2022 07:58:51 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=75
Content-Type: font/woff

prism.app-us1.com/?a=25948200&u=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f

104.17.145.91

200 OK

0 B

URL HTTP/2
prism.app-us1.com/?a=25948200&u=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f
IP
104.17.145.91:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?a=25948200&u=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f HTTP/1.1
Host: prism.app-us1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 30 Sep 2022 01:58:51 GMT
content-type: application/javascript
content-length: 0
cache-control: no-cache, private
set-cookie: prism_25948200=e07b33c4-c54d-402e-b974-e67195cf0258; expires=Sun, 30-Oct-2022 01:58:51 GMT; Max-Age=2592000; path=/; secure; httponly; samesite=none
x-envoy-upstream-service-time: 64
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 75295b1c7b12fac4-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
90ab36359b4131adb7c162ade7120c25
e4d7967184efbbf54337bb68c4975cc89ef14499
b310d440f3828bf79720f99b0601ca4f1aede02c9631ce3398c6c97faf2a693c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1202
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:51 GMT
Last-Modified: Fri, 30 Sep 2022 01:38:49 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

www.primegestaoempresarial.com/trade/alaska/alaskausa/images/homeSprites.png

192.185.223.116

200 OK

190 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/images/homeSprites.png
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 272 x 550, 8-bit/color RGBA, non-interlaced\012- data
Size
190 kB (190407 bytes)
Hash
c6dfc43f4439d97b3796d7141fefd850
d86a787e16816d02f05b18210bf5649ed403f10d
beb161501df73ad297e1a7679cc63010d22d479ea146e56ef2b3f7a7e9b06c9c

HTTP Headers

GET /trade/alaska/alaskausa/images/homeSprites.png HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-desktop.css

HTTP/1.1 200 OK
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:53:52 GMT
Accept-Ranges: bytes
Content-Length: 190407
Cache-Control: max-age=31536000
Expires: Sat, 30 Sep 2023 01:58:51 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
90ab36359b4131adb7c162ade7120c25
e4d7967184efbbf54337bb68c4975cc89ef14499
b310d440f3828bf79720f99b0601ca4f1aede02c9631ce3398c6c97faf2a693c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1202
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:51 GMT
Last-Modified: Fri, 30 Sep 2022 01:38:49 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

100.20.30.105

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
100.20.30.105:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bgo4fC/fRW6ixteWtME2Xg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UWh63bSkknNKHNA9Xu6qJQZ0BuU=

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
90ab36359b4131adb7c162ade7120c25
e4d7967184efbbf54337bb68c4975cc89ef14499
b310d440f3828bf79720f99b0601ca4f1aede02c9631ce3398c6c97faf2a693c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:51 GMT
Server: ECS (amb/6BA8)
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9614f0953e42ee2929d2286318d5bf83
50b65951ebd7ca71a864c3dabafecce4cf2bc390
c7da19596f28cfe57d8db43d21297cc201d5a5f74ec894f3919ba0ee59c1242c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.alaskausa.org/js/jquery.accAccordion.js

107.162.171.161

200 OK

3.1 kB

URL HTTP/1.1
www.alaskausa.org/js/jquery.accAccordion.js
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
3.1 kB (3084 bytes)
Hash
06e42aebb3858cd8f493e85045fb5673
c7400b593de87ebeb5ce10c3d29591ea9d063a12
11b7c0addf38af5f83482d3b82ee16953903313e73ba82b1d09e3782fd074a06

HTTP Headers

GET /js/jquery.accAccordion.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Wed, 28 Sep 2022 02:44:42 GMT
Accept-Ranges: bytes
ETag: "2b571b43e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:50 GMT
Content-Length: 3084
Via: 1.1 dca1-bit9045
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive

region1.google-analytics.com/g/collect?v=2&tid=G-R11FYFZ8HF&gtm=2oe9s0&_p=1457957052&cid=1256376323.1664503129&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664503128&sct=1&seg=0&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&dt=Alaska%20USA%20services%20for%20you&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-R11FYFZ8HF&gtm=2oe9s0&_p=1457957052&cid=1256376323.1664503129&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664503128&sct=1&seg=0&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&dt=Alaska%20USA%20services%20for%20you&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-R11FYFZ8HF&gtm=2oe9s0&_p=1457957052&cid=1256376323.1664503129&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664503128&sct=1&seg=0&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&dt=Alaska%20USA%20services%20for%20you&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.primegestaoempresarial.com
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: http://www.primegestaoempresarial.com
date: Fri, 30 Sep 2022 01:58:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js

107.162.171.161

200 OK

5.0 kB

URL HTTP/1.1
www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
5.0 kB (5013 bytes)
Hash
351f3a0ccd1ce923d84feae6e7312463
a42acdb266e0871bd9a3b971a6a2b6be3219600f
c91d036452fe324dba730ff05188b0e56b2af892bfa340c09c6a96af0f56d2a9

HTTP Headers

GET /js/jquery.leanModal.AKUSA.2.1.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Wed, 28 Sep 2022 02:44:53 GMT
Accept-Ranges: bytes
ETag: "c9de5f49e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:55 GMT
Content-Length: 5013
Via: 1.1 dca1-bit9045
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive

www.alaskausa.org/js/jquery/slick/slick.181.js

107.162.171.161

200 OK

24 kB

URL HTTP/1.1
www.alaskausa.org/js/jquery/slick/slick.181.js
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
24 kB (23677 bytes)
Hash
6534a62e16e877b353989a88d6181513
c93dd1499549d15cf73d76d6d207910d77848f74
91409a4a5020bcac1a0ca5d187bc28edd0e4e3820f0d4ab5ddd7ef8ec139639e

HTTP Headers

GET /js/jquery/slick/slick.181.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Wed, 28 Sep 2022 02:44:41 GMT
Accept-Ranges: bytes
ETag: "6ed5d42e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:50 GMT
Via: 1.1 dca1-bit9045
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked

www.alaskausa.org/images/nav/ncua.png

107.162.171.161

200 OK

4.3 kB

URL HTTP/1.1
www.alaskausa.org/images/nav/ncua.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 146 x 65, 8-bit colormap, non-interlaced\012- data
Size
4.3 kB (4280 bytes)
Hash
38b7240d957be9f71b5271246fb01f67
9007e7baf8e357ac11c8541c871e48960c8d9f30
d6641292ca4109173a6ca88b1353f0a6edeaad1c5f90e4c69c6999943109a878

HTTP Headers

GET /images/nav/ncua.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:49 GMT
Accept-Ranges: bytes
ETag: "349b647e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:55 GMT
Content-Length: 4280
Via: 1.1 dca1-bit9045

www.alaskausa.org/js/jsSuite-1.9.5.js

107.162.171.161

200 OK

26 kB

URL HTTP/1.1
www.alaskausa.org/js/jsSuite-1.9.5.js
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
ASCII text, with very long lines (1664), with CRLF line terminators
Size
26 kB (25907 bytes)
Hash
1944286c5d9045bed03628acc73abaaa
77558a881d16646a0111cddc3b8aade9e097d763
720c1ead84265c920a00af4d5303a22d071a88ed9e408a046950fdeaee3a50a1

HTTP Headers

GET /js/jsSuite-1.9.5.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Wed, 28 Sep 2022 02:44:42 GMT
Accept-Ranges: bytes
ETag: "5348fb42e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:50 GMT
Content-Length: 25907
Via: 1.1 dca1-bit9045
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive

www.alaskausa.org/images/nav/EHL.png

107.162.171.161

200 OK

3.3 kB

URL HTTP/1.1
www.alaskausa.org/images/nav/EHL.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 55 x 59, 8-bit colormap, non-interlaced\012- data
Size
3.3 kB (3317 bytes)
Hash
859cf2ed8319f4931c1e2371bee8b46d
ff866fe6e3071999e6c057dae5aed927aefd047f
1c7cd686a01f2dcffc1f55119624e9166300721172b4e7ad284ff734bc8db0a1

HTTP Headers

GET /images/nav/EHL.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:37 GMT
Accept-Ranges: bytes
ETag: "bd76e93fe4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:51 GMT
Content-Length: 3317
Via: 1.1 dca1-bit9045

www.alaskausa.org/images/nav/akusafcu_logo.png

107.162.171.161

200 OK

16 kB

URL HTTP/1.1
www.alaskausa.org/images/nav/akusafcu_logo.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 220 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16228 bytes)
Hash
dc43cc5c96d54639189781edf322cac9
26c53d9c975f997481520a336ac5f6a22f115c74
6ceabe544edbb8513733f30b14c1d17a2fa51e461f972c31d17e5450d4718603

HTTP Headers

GET /images/nav/akusafcu_logo.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:49 GMT
Accept-Ranges: bytes
ETag: "539447e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:55 GMT
Content-Length: 16228
Via: 1.1 dca1-bit9045

www.alaskausa.org/js/jquery-1.11.3.min.js

107.162.171.161

200 OK

46 kB

URL HTTP/1.1
www.alaskausa.org/js/jquery-1.11.3.min.js
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
ASCII text, with very long lines (32038)
Size
46 kB (45711 bytes)
Hash
cf54b56dbd2adb27eb44fe6defb747e6
78e81335c5c317f9d56877d2f011a74a50910dd8
9256346dc8067ab6665a68fe1590b676d13f8ecd353fa2676ec372a2f3338a94

HTTP Headers

GET /js/jquery-1.11.3.min.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Wed, 28 Sep 2022 02:44:59 GMT
Accept-Ranges: bytes
ETag: "9e62f94ce4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:56 GMT
Via: 1.1 dca1-bit9045
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked

www.alaskausa.org/current/promo/data/images/secondary/Great_Rates.png

107.162.171.161

200 OK

3.0 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/Great_Rates.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (3033 bytes)
Hash
da47d67ee48590d1d3490581a4eb6fd8
43a004ad73b946c772a62bfbddb2ed0f6a0b8565
9bbcdf829b5aa64649daf841121e4f202aca979b883869cb9162b19ee16c45d6

HTTP Headers

GET /current/promo/data/images/secondary/Great_Rates.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:22 GMT
Accept-Ranges: bytes
ETag: "98fee036e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:51 GMT
Content-Length: 3033
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/secondary/24_7.png

107.162.171.161

200 OK

3.5 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/24_7.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
3.5 kB (3463 bytes)
Hash
0db67a66d466835deeac0db174f4403d
439086975df74b74840f85473040fceaf7bee429
42a60c275762c54d2609fc3f4c3e92b890438a13544acedb78acc1429a6f75e8

HTTP Headers

GET /current/promo/data/images/secondary/24_7.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:19 GMT
Accept-Ranges: bytes
ETag: "c26d5235e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:51 GMT
Content-Length: 3463
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Blue.jpg

107.162.171.161

200 OK

66 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Blue.jpg
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size
66 kB (65873 bytes)
Hash
998829620cec9eaa11e86e00786c4981
75ba120c255c97d369542b70c621fe75dda73bfc
5bf9db11eaad113f8b70430b03bc111ebd7d13e87a150899afcb72e7885b7151

HTTP Headers

GET /current/promo/data/images/primary/Q3-Background-Photos-Blue.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Wed, 28 Sep 2022 02:44:20 GMT
Accept-Ranges: bytes
ETag: "ae01f36e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:51 GMT
Content-Length: 65873
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/secondary/Safeguard.png

107.162.171.161

200 OK

2.9 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/Safeguard.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2918 bytes)
Hash
4436dcbfaeef45033c2bcd8e992c80e9
bdefa9b95661e46969f1691e7805f19f96e8089a
bced0264cfd64147a011c2df12645beb5728e815bdcb5ee5b87965c005ede9de

HTTP Headers

GET /current/promo/data/images/secondary/Safeguard.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:30 GMT
Accept-Ranges: bytes
ETag: "9d67d23be4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:55 GMT
Content-Length: 2918
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-Blue.png

107.162.171.161

200 OK

39 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-Blue.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 441 x 223, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (39075 bytes)
Hash
3ccc45fb8f4d4d0b8323d03ded67f365
368dd2ae2bbaa0de8ee88abca84b8cfe2124e422
45334c39a6ca18a5fde4f0b28fc2c917f0fe3689dd0973edb6a395a1087d3f12

HTTP Headers

GET /current/promo/data/images/primary/Q3-Floating-Banner-Blue.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:29 GMT
Accept-Ranges: bytes
ETag: "bc917c3be4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:55 GMT
Content-Length: 39075
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/secondary/House.png

107.162.171.161

200 OK

2.1 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/House.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2115 bytes)
Hash
ed1a5366dc3530d3aa004d69cc5ada2b
7d820d2739041784171d2feecc13eaa6bc1e7d9d
840b945fdae9b827d3eeec3047c593b98fdcd6d4b08845fb25ba4c00ed5e4d60

HTTP Headers

GET /current/promo/data/images/secondary/House.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:32 GMT
Accept-Ranges: bytes
ETag: "699cb3de4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:56 GMT
Content-Length: 2115
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/secondary/Credit_Card.png

107.162.171.161

200 OK

1.8 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/Credit_Card.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
0fab6e6b3f1a5035f9bacc6fb7a6fec6
41fa99b1ab405dbab5637583fae5481c0c15295a
0f8a809653dccad6b1246b84439448d9b4be08ebdabf504b6b7d2dcc43b1fe6d

HTTP Headers

GET /current/promo/data/images/secondary/Credit_Card.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:22 GMT
Accept-Ranges: bytes
ETag: "98fee036e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:51 GMT
Content-Length: 1842
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/secondary/ClickSWITCH.png

107.162.171.161

200 OK

3.8 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/ClickSWITCH.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3750 bytes)
Hash
1d936e6db476e5dfe54aa816df8fb394
514d91db0846cd35da9c64fa72720f03d62e9987
70e0c0741152cb9d4ac39ca288aae9fa555a215e752681ddba397861cf4e9f57

HTTP Headers

GET /current/promo/data/images/secondary/ClickSWITCH.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:19 GMT
Accept-Ranges: bytes
ETag: "86937835e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:51 GMT
Content-Length: 3750
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/secondary/learn.png

107.162.171.161

200 OK

3.0 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/learn.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (3001 bytes)
Hash
1a975fdc9ce6a5635d54c3d0de8133ff
9c92457d758510546625c105aca786366ef96243
23f614c53e35afae28a843e1ff6bde539f5c74b5725c62b3f6e2c8f439e4bc3c

HTTP Headers

GET /current/promo/data/images/secondary/learn.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:22 GMT
Accept-Ranges: bytes
ETag: "7811f436e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:51 GMT
Content-Length: 3001
Via: 1.1 dca1-bit9045

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6737
Expires: Fri, 30 Sep 2022 03:51:09 GMT
Date: Fri, 30 Sep 2022 01:58:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6737
Expires: Fri, 30 Sep 2022 03:51:09 GMT
Date: Fri, 30 Sep 2022 01:58:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6737
Expires: Fri, 30 Sep 2022 03:51:09 GMT
Date: Fri, 30 Sep 2022 01:58:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6737
Expires: Fri, 30 Sep 2022 03:51:09 GMT
Date: Fri, 30 Sep 2022 01:58:52 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14073 bytes)
Hash
11594ce7500d8776bfd5162b17f87d72
72603efba82d649ce5a7a0ca45dc830c0d9ef012
511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14073
x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnpEsJoAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dyDhatfeYzzSQpRY7JpOIu3VhjlI8IOWcKCLCBWYaxJ1CYgCxqdQjA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:49:47 GMT
age: 14945
etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7bce41c-9706-4324-8a06-1509b48a771d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6616 bytes)
Hash
92adf4a1167591fe092a2ee8871df6cf
2a6ac7433a03249398daa4b2cba3359e8d35f8f8
d01207d858c49c41779c64221cae37855c70ffe3dd9c0fab299bf20e23cd2cce

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7bce41c-9706-4324-8a06-1509b48a771d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6616
x-amzn-requestid: 40a8fe67-c47d-4337-a262-5ae47883b224
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPePpHJVIAMF8Bw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633610ca-51c57d2247517e3a71a2917c;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:40:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -WZNiveado-qJAyUINR0MrFtuEiMUl9SEJ0G8EbPW1A-4x_teOwXsg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:48:40 GMT
age: 15012
etag: "2a6ac7433a03249398daa4b2cba3359e8d35f8f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed1b116a-12f1-445b-8a5f-9353e3780e4f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6596 bytes)
Hash
3b5c947ae0b46d0d8891da8b91b299d6
6edbfb2ea042482253f7d3d75cb1bd0b6c6a5f1f
ec7f8e44224ac291a1d66d8d99dfb44122bc85762fb9351738ce6d1c6ab72d47

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed1b116a-12f1-445b-8a5f-9353e3780e4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6596
x-amzn-requestid: 0e130e37-9710-4fe9-a406-a26f4ed8650c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZASNPHSYIAMF0tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ffd87-39a73c5476ddd0b2112f5f07;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 07:04:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jhL_FzO_MIL5trbUJzod1scymtl7JZSRvwSW4RMD7l__4x4rejeIzg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 13:09:45 GMT
age: 46147
etag: "6edbfb2ea042482253f7d3d75cb1bd0b6c6a5f1f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8059 bytes)
Hash
d21d2bdcedbd619a80017054076319f9
86dd3bf133e9eddf8852f39e1ee695ee599ac886
fc5672d5a8e9c6a5ec531f7ba05b65c192af37edf6c3a48105df3685de44ec0d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8059
x-amzn-requestid: f8bb9e4b-9f3c-47ba-8524-de16155e536d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZNepwHAVoAMFvNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633544a4-5d884e29378635b60592b618;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 07:09:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NMiKZSkokVXNTV76vsVJ7VEu6YFfT9MqL7tHtT8CwZq0BwTbXOpm6Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 07:14:42 GMT
age: 67450
etag: "86dd3bf133e9eddf8852f39e1ee695ee599ac886"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71a33966-cff2-4544-a638-1c5553336f6f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10460 bytes)
Hash
3d493b47d1b8dd8dab16bf3a63a1077e
b75156a9249cda46c3225068a72699723b7dfed9
52335f41b0c95c1073ae25969e6ef1c39b3d67bc9636ec691c87237a8a635680

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71a33966-cff2-4544-a638-1c5553336f6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10460
x-amzn-requestid: 8478b281-7567-4a60-acc4-61d749f06168
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZNf0CGnnoAMFoXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63354680-40673e6f75d0a6055da2c749;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 07:17:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4yb5_kLFDk9wRcbODgdDsmkI2fujGgQ0wAKUcIf6YMyzg9E1njl1zQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 07:50:08 GMT
age: 65324
etag: "b75156a9249cda46c3225068a72699723b7dfed9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11dc66d9-c0dc-4009-bc21-1bc7de4d071d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7537 bytes)
Hash
cab91ea6d86b9d8af67590ec8638c35e
126d8bfe9e913c8ea665089270d0d524ed5a1234
cec04f205ed6397a11cea16a3370d1cbac52cf63f65742bea1a43232ea61a993

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11dc66d9-c0dc-4009-bc21-1bc7de4d071d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7537
x-amzn-requestid: e4f3306b-5d8c-4257-8b1c-042227c802d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdbFHE4oAMFc3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f79-691ce35a37178a0a189879c6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qLUYGKeXkYVpH-oleaqCadfIgRE66QXj-uK_YccpQUeJYnsFq7GaUQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:12:16 GMT
age: 13596
etag: "126d8bfe9e913c8ea665089270d0d524ed5a1234"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-green.png

107.162.171.161

200 OK

39 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-green.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 441 x 223, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (38758 bytes)
Hash
30a245fe4f83baa580a7182546bb3793
fa106ee448b7e43a64c22c86161bae8461dc0610
b7a47fb3710a0501d0833991bc2875a807f4705699d1ff3368b0b3ade6456a5b

HTTP Headers

GET /current/promo/data/images/primary/Q3-Floating-Banner-green.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:29 GMT
Accept-Ranges: bytes
ETag: "bc917c3be4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:56 GMT
Content-Length: 38758
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-yellow.png

107.162.171.161

200 OK

39 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-yellow.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 441 x 223, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (39081 bytes)
Hash
8b38eca8a44df22bab2fb3a90bc52b1c
934fd86ecc751828eb00a89253d5ab7ecd459350
2adbd54978e8c18e98f509b9c99d935c676faaa994f89aa3de66770a0f890206

HTTP Headers

GET /current/promo/data/images/primary/Q3-Floating-Banner-yellow.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:20 GMT
Accept-Ranges: bytes
ETag: "ae01f36e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:51 GMT
Content-Length: 39081
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Green.jpg

107.162.171.161

200 OK

50 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Green.jpg
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size
50 kB (49975 bytes)
Hash
90e2ed690e97b87a06985175a48237bd
cacad41f48c823280bed1f6d352a96f255956cf3
718e0970b2242e2b2ba6a58d0a1a3f0abb41b32e08fbd2e6c9c3029759ee2abe

HTTP Headers

GET /current/promo/data/images/primary/Q3-Background-Photos-Green.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Wed, 28 Sep 2022 02:44:29 GMT
Accept-Ranges: bytes
ETag: "c6ce773be4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:56 GMT
Content-Length: 49975
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/primary/billpay_float.png

107.162.171.161

200 OK

7.0 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/billpay_float.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 368 x 230, 8-bit/color RGBA, non-interlaced\012- data
Size
7.0 kB (6985 bytes)
Hash
36a692b72789608d44c9f0ff670bf25e
10e1ed53047c9564ec86ced96cb69c7427f1d079
1d27b37574d2d3dcad6a7dd41079ebe2fbe5faf71c63c5805fea3b7cd72ad754

HTTP Headers

GET /current/promo/data/images/primary/billpay_float.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:18 GMT
Accept-Ranges: bytes
ETag: "1a557e34e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:51 GMT
Content-Length: 6985
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Yellow.jpg

107.162.171.161

200 OK

59 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Yellow.jpg
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size
59 kB (58909 bytes)
Hash
f60b6cfc0c6dafca63644df1e13dc165
efe2abd8f2b3c0f2e72a088d4ad68780574b6f42
a010faad9f252201c7c5096a6e781f7a70add7237814ed08365a09f087270483

HTTP Headers

GET /current/promo/data/images/primary/Q3-Background-Photos-Yellow.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Wed, 28 Sep 2022 02:44:31 GMT
Accept-Ranges: bytes
ETag: "eec8963ce4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:56 GMT
Content-Length: 58909
Via: 1.1 dca1-bit9045

www.alaskausa.org/current/promo/data/images/primary/billpay.jpg

107.162.171.161

200 OK

67 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/billpay.jpg
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size
67 kB (67249 bytes)
Hash
ad06dd998083e9b34012253af0e0cc9f
fb6e1f53ac9f3d74a76856651c7308b1355938b7
e366fcc3c86290a396c5997317c157dc86ed3a64481972d2381b0a5f97c94668

HTTP Headers

GET /current/promo/data/images/primary/billpay.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Wed, 28 Sep 2022 02:44:15 GMT
Accept-Ranges: bytes
ETag: "5c41c33e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:51 GMT
Content-Length: 67249
Via: 1.1 dca1-bit9045

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (19826 bytes)
Hash
cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Fri, 30 Sep 2022 00:41:09 GMT
expires: Fri, 30 Sep 2022 02:41:09 GMT
cache-control: public, max-age=7200
age: 4664
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
254cce7ebdf47f4c681ad3d5e22fee04
21ef3d38029b8c76262a70ff813dccce63434eda
a316352726e25710020ff342d7d907ee2a39d3f643a00e52b88b4b8cabbca9bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bat.bing.com/bat.js

204.79.197.200

200 OK

11 kB

URL HTTP/2
bat.bing.com/bat.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Size
11 kB (11367 bytes)
Hash
293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=2BAF86748CBD6E192D64945B8DEA6F16; domain=.bing.com; expires=Wed, 25-Oct-2023 01:58:53 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AB5C4FBD37A94C529BF231AEDE0E4F98 Ref B: OSL30EDGE0307 Ref C: 2022-09-30T01:58:53Z
date: Fri, 30 Sep 2022 01:58:53 GMT
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j97&a=1457957052&t=pageview&_s=1&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&ul=en-us&de=UTF-8&dt=Alaska%20USA%20services%20for%20you&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAAC~&jid=1573311660&gjid=724954571&cid=1256376323.1664503129&tid=UA-105087488-1&_gid=436823331.1664503130&_r=1&gtm=2wg9s0W942G3C&z=194788979

142.250.74.174

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j97&a=1457957052&t=pageview&_s=1&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&ul=en-us&de=UTF-8&dt=Alaska%20USA%20services%20for%20you&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAAC~&jid=1573311660&gjid=724954571&cid=1256376323.1664503129&tid=UA-105087488-1&_gid=436823331.1664503130&_r=1&gtm=2wg9s0W942G3C&z=194788979
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af

HTTP Headers

POST /j/collect?v=1&_v=j97&a=1457957052&t=pageview&_s=1&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&ul=en-us&de=UTF-8&dt=Alaska%20USA%20services%20for%20you&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAAC~&jid=1573311660&gjid=724954571&cid=1256376323.1664503129&tid=UA-105087488-1&_gid=436823331.1664503130&_r=1&gtm=2wg9s0W942G3C&z=194788979 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.primegestaoempresarial.com
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: http://www.primegestaoempresarial.com
date: Fri, 30 Sep 2022 01:58:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/pagead/conversion_async.js

142.250.74.164

200 OK

15 kB

URL HTTP/2
www.google.com/pagead/conversion_async.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1654)
Size
15 kB (15187 bytes)
Hash
8766c5a801f08afceca9b66ff9097e6a
ce7640d1d166eddeb9d40be642ec34652f790713
f448f99b4ad9a9b50daa9c38054cf16ab2b9fcb5d83ddad60571fb6a8a432a99

HTTP Headers

GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 30 Sep 2022 01:58:53 GMT
expires: Fri, 30 Sep 2022 01:58:53 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 17557423932572341828
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
68332d861224030707a1e197a1851d3b
8f94bee805e1d462bd22ff076890500aea641650
9dcf9756d49b596989a5025b18b21f105184acda7060f7f8556c5531b74789f1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.alaskausa.org/favicon.ico

107.162.171.161

200 OK

1.2 kB

URL HTTP/1.1
www.alaskausa.org/favicon.ico
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
a640140069c78a92f718c9fb63614d72
1418d5de4993b63c2b11a64df62a03ae8ebb8f95
5b8545b9cf60e23bd9c7eacef43e9b85e2843b1d90328b5b6fca9ef851347808

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Wed, 28 Sep 2022 02:44:34 GMT
Accept-Ranges: bytes
ETag: "129533ee4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:52 GMT
Content-Length: 1150
Via: 1.1 dca1-bit9045

www.alaskausa.org/images/icon-76@2x.png

107.162.171.161

200 OK

22 kB

URL HTTP/1.1
www.alaskausa.org/images/icon-76@2x.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced\012- data
Size
22 kB (21833 bytes)
Hash
aa361a75d2fd36154747173a3a6cd422
8c14f2c0a0f3b2e1a265313239d6b9f7383808f9
31079b4bcec10fbd6e7530a766c97d05b5bc5e143af55a7599633fe3fd1c955e

HTTP Headers

GET /images/icon-76@2x.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 28 Sep 2022 02:44:35 GMT
Accept-Ranges: bytes
ETag: "a135c43ee4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 01:58:52 GMT
Content-Length: 21833
Via: 1.1 dca1-bit9045

www.primegestaoempresarial.com/agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=fxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=61429273&vs=614292731664503130&_=885296&v=040

192.185.223.116

301 Moved Permanently

0 B

URL HTTP/1.1
www.primegestaoempresarial.com/agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=fxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=61429273&vs=614292731664503130&_=885296&v=040
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=fxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=61429273&vs=614292731664503130&_=885296&v=040 HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?fxf=liihf_twetkh&eb=015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e&waoybsj=057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f
Cookie: _gcl_au=1.1.1876373404.1664503128; _ga_R11FYFZ8HF=GS1.1.1664503128.1.0.1664503128.0.0.0; _ga=GA1.1.1256376323.1664503129; agft=74122dd32c8db8d54f418604dff41ce4.61429273; agfs=74122dd32c8db8d54f418604dff41ce4.61429273&1664503130&1664503130&direct&(none)&&&&&

HTTP/1.1 301 Moved Permanently
Date: Fri, 30 Sep 2022 01:58:52 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: http://primegestaoempresarial.com/agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=fxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=61429273&vs=614292731664503130&_=885296&v=040
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/ajax-loader.gif

192.185.223.116

301 Moved Permanently

0 B

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/ajax-loader.gif
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /trade/alaska/alaskausa/css/ajax-loader.gif HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/slick.css
Cookie: _gcl_au=1.1.1876373404.1664503128; _ga_R11FYFZ8HF=GS1.1.1664503128.1.0.1664503128.0.0.0; _ga=GA1.1.1256376323.1664503129; agft=74122dd32c8db8d54f418604dff41ce4.61429273; agfs=74122dd32c8db8d54f418604dff41ce4.61429273&1664503130&1664503130&direct&(none)&&&&&

HTTP/1.1 301 Moved Permanently
Date: Fri, 30 Sep 2022 01:58:52 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: http://primegestaoempresarial.com/trade/alaska/alaskausa/css/ajax-loader.gif
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 0
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

bat.bing.com/action/0?ti=134612163&tm=gtm002&Ver=2&mid=80ea17de-3dfb-4ed9-a4a6-81b4ad22b4d0&sid=6db2d9a0406311ed8da8d9273da32d57&vid=6db2e220406311edba48a7da93d9a94c&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alaska%20USA%20services%20for%20you&kw=AlaskaUSA,%20Alaska,%20Arizona,%20Washington,%20USA,%20San%20Bernardino%20California,%20Victor%20Valley,%20High%20Desert,%20Anchorage,%20Credit%20Union,%20Bank,%20Financial,%20Finance,%20Loan,%20Credit,%20Lending,%20Insurance,%20Mortgage,%20Refinance,%20home,%20Online%20banking,%20by%20phone,%20UltraBranch,%20Saving,%20Checking,%20Account,%20Money,%20Service,%20Relocate,%20Moving,%20Real%20Estate,%20business,%20AKUSA&p=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&r=&lt=2471&evt=pageLoad&sv=1&rn=200932

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=134612163&tm=gtm002&Ver=2&mid=80ea17de-3dfb-4ed9-a4a6-81b4ad22b4d0&sid=6db2d9a0406311ed8da8d9273da32d57&vid=6db2e220406311edba48a7da93d9a94c&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alaska%20USA%20services%20for%20you&kw=AlaskaUSA,%20Alaska,%20Arizona,%20Washington,%20USA,%20San%20Bernardino%20California,%20Victor%20Valley,%20High%20Desert,%20Anchorage,%20Credit%20Union,%20Bank,%20Financial,%20Finance,%20Loan,%20Credit,%20Lending,%20Insurance,%20Mortgage,%20Refinance,%20home,%20Online%20banking,%20by%20phone,%20UltraBranch,%20Saving,%20Checking,%20Account,%20Money,%20Service,%20Relocate,%20Moving,%20Real%20Estate,%20business,%20AKUSA&p=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&r=&lt=2471&evt=pageLoad&sv=1&rn=200932
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=134612163&tm=gtm002&Ver=2&mid=80ea17de-3dfb-4ed9-a4a6-81b4ad22b4d0&sid=6db2d9a0406311ed8da8d9273da32d57&vid=6db2e220406311edba48a7da93d9a94c&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alaska%20USA%20services%20for%20you&kw=AlaskaUSA,%20Alaska,%20Arizona,%20Washington,%20USA,%20San%20Bernardino%20California,%20Victor%20Valley,%20High%20Desert,%20Anchorage,%20Credit%20Union,%20Bank,%20Financial,%20Finance,%20Loan,%20Credit,%20Lending,%20Insurance,%20Mortgage,%20Refinance,%20home,%20Online%20banking,%20by%20phone,%20UltraBranch,%20Saving,%20Checking,%20Account,%20Money,%20Service,%20Relocate,%20Moving,%20Real%20Estate,%20business,%20AKUSA&p=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&r=&lt=2471&evt=pageLoad&sv=1&rn=200932 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=25A897D973E8661A290485F672BF6770; domain=.bing.com; expires=Wed, 25-Oct-2023 01:58:53 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E1E74C3EC40849D4B996AF9678F6D578 Ref B: OSL30EDGE0307 Ref C: 2022-09-30T01:58:53Z
date: Fri, 30 Sep 2022 01:58:53 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f4cac07a6b43c2c45dbdd3dcbf8856e4
985130ebc2d64abc30a0673061e6f73e5a4f02a4
8945a690f41c23b6411950f9bbdb51becf8c48e363a715af38984d45085f9904

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/viewthroughconversion/831978068/?random=1664503130492&cv=9&fst=1664503130492&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9s0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&tiba=Alaska%20USA%20services%20for%20you&auid=1876373404.1664503128&hn=www.google.com&async=1&rfmt=3&fmt=4

142.250.74.66

200 OK

1.2 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/831978068/?random=1664503130492&cv=9&fst=1664503130492&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9s0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&tiba=Alaska%20USA%20services%20for%20you&auid=1876373404.1664503128&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2648), with no line terminators
Size
1.2 kB (1183 bytes)
Hash
a5df3ccc2828f502ebf362f6fe2f9237
4d51dcb4120592de995409d6e8f019070baeaa25
683d7c9a95a098d307fbeec621a73e6a99b8cfe489b55b69cd7af9d24fd82d9c

HTTP Headers

GET /pagead/viewthroughconversion/831978068/?random=1664503130492&cv=9&fst=1664503130492&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9s0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&tiba=Alaska%20USA%20services%20for%20you&auid=1876373404.1664503128&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 30 Sep 2022 01:58:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1183
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 30-Sep-2022 02:13:53 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-105087488-1&cid=1256376323.1664503129&jid=1573311660&gjid=724954571&_gid=436823331.1664503130&_u=YADAAEAAAAAAAC~&z=1206254387

64.233.165.155

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-105087488-1&cid=1256376323.1664503129&jid=1573311660&gjid=724954571&_gid=436823331.1664503130&_u=YADAAEAAAAAAAC~&z=1206254387
IP
64.233.165.155:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-105087488-1&cid=1256376323.1664503129&jid=1573311660&gjid=724954571&_gid=436823331.1664503130&_u=YADAAEAAAAAAAC~&z=1206254387 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.primegestaoempresarial.com
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: http://www.primegestaoempresarial.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 30 Sep 2022 01:58:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f4cac07a6b43c2c45dbdd3dcbf8856e4
985130ebc2d64abc30a0673061e6f73e5a4f02a4
8945a690f41c23b6411950f9bbdb51becf8c48e363a715af38984d45085f9904

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bat.bing.com/p/action/134612163.js

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/134612163.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/134612163.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=2A5BDF9A8AA06018380DCDB58BF761BA; domain=.bing.com; expires=Wed, 25-Oct-2023 01:58:53 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DF51CC282644495C9F5A57D3631F46C2 Ref B: OSL30EDGE0307 Ref C: 2022-09-30T01:58:53Z
date: Fri, 30 Sep 2022 01:58:53 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6e45ed0e014d302b7e4d21520228f1ef
86e935f08f4217126f75d13a516ac049f23637a8
22366c353b6dbdd94f0efdf1163318b4e12476c8d7360c70e56b58650004a84c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6e45ed0e014d302b7e4d21520228f1ef
86e935f08f4217126f75d13a516ac049f23637a8
22366c353b6dbdd94f0efdf1163318b4e12476c8d7360c70e56b58650004a84c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-user-list/831978068/?random=1664503130492&cv=9&fst=1664499600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9s0&sendb=1&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&tiba=Alaska%20USA%20services%20for%20you&async=1&fmt=3&is_vtc=1&random=2884715429&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/831978068/?random=1664503130492&cv=9&fst=1664499600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9s0&sendb=1&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&tiba=Alaska%20USA%20services%20for%20you&async=1&fmt=3&is_vtc=1&random=2884715429&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/831978068/?random=1664503130492&cv=9&fst=1664499600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9s0&sendb=1&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Ffxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&tiba=Alaska%20USA%20services%20for%20you&async=1&fmt=3&is_vtc=1&random=2884715429&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 30 Sep 2022 01:58:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-105087488-1&cid=1256376323.1664503129&jid=1573311660&_u=YADAAEAAAAAAAC~&z=1175065454

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-105087488-1&cid=1256376323.1664503129&jid=1573311660&_u=YADAAEAAAAAAAC~&z=1175065454
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-105087488-1&cid=1256376323.1664503129&jid=1573311660&_u=YADAAEAAAAAAAC~&z=1175065454 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 30 Sep 2022 01:58:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6e45ed0e014d302b7e4d21520228f1ef
86e935f08f4217126f75d13a516ac049f23637a8
22366c353b6dbdd94f0efdf1163318b4e12476c8d7360c70e56b58650004a84c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Sep 2022 01:58:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

primegestaoempresarial.com/agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=fxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=61429273&vs=614292731664503130&_=885296&v=040

192.185.223.116

404 Not Found

0 B

URL HTTP/1.1
primegestaoempresarial.com/agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=fxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=61429273&vs=614292731664503130&_=885296&v=040
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=fxf%3Dliihf_twetkh%26eb%3D015e99df1a650779b606331e9b21088d322d44fb0c557978d461871b0d22674e%26waoybsj%3D057d19de4f316543f977791e7f36151a115d84fa3a869354b398183f1e02079f&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=61429273&vs=614292731664503130&_=885296&v=040 HTTP/1.1
Host: primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.primegestaoempresarial.com
Referer: http://www.primegestaoempresarial.com/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Fri, 30 Sep 2022 01:58:53 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://primegestaoempresarial.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

primegestaoempresarial.com/trade/alaska/alaskausa/css/ajax-loader.gif

192.185.223.116

404 Not Found

0 B

URL HTTP/1.1
primegestaoempresarial.com/trade/alaska/alaskausa/css/ajax-loader.gif
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /trade/alaska/alaskausa/css/ajax-loader.gif HTTP/1.1
Host: primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.primegestaoempresarial.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.1876373404.1664503128; _ga_R11FYFZ8HF=GS1.1.1664503128.1.0.1664503128.0.0.0; _ga=GA1.2.1256376323.1664503129; _gid=GA1.2.436823331.1664503130; _gat_UA-105087488-1=1; _uetsid=6db2d9a0406311ed8da8d9273da32d57; _uetvid=6db2e220406311edba48a7da93d9a94c

HTTP/1.1 404 Not Found
Date: Fri, 30 Sep 2022 01:58:53 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://primegestaoempresarial.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

diffuser-cdn.app-us1.com/diffuser/diffuser.js

104.17.145.91

200 OK

0 B

URL HTTP/2
diffuser-cdn.app-us1.com/diffuser/diffuser.js
IP
104.17.145.91:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /diffuser/diffuser.js HTTP/1.1
Host: diffuser-cdn.app-us1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 30 Sep 2022 01:58:51 GMT
content-type: application/javascript
last-modified: Thu, 21 Oct 2021 17:42:06 GMT
etag: W/"4d482a43613d3966f353ec9d97452e0c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 059f85e5e664bc876c915622803d9e28.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: LYgb7O-05A19YisedsHdW7Gqa3Bw46pjlPKvIkZSVBpaULKohYEzzQ==
cf-cache-status: HIT
age: 145
server: cloudflare
cf-ray: 75295b1beaf7fac4-OSL
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations