r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8902
Expires: Fri, 27 Jan 2023 03:04:47 GMT
Date: Fri, 27 Jan 2023 00:36:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10799
Expires: Fri, 27 Jan 2023 03:36:24 GMT
Date: Fri, 27 Jan 2023 00:36:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3592
Expires: Fri, 27 Jan 2023 01:36:17 GMT
Date: Fri, 27 Jan 2023 00:36:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 23:42:57 GMT
content-type: application/json
age: 3208
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wzIJkTRHP45VFM1bHG6RY4RDXt0M3nJK/P1DVYyU79bA4hYpYcs6jOaKjA2Q6BBa1v47o/Fvcgw=
x-amz-request-id: A1JZB863XY9QSZK3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 00:20:19 GMT
age: 966
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 00:36:25 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.cidadania23pr.org.br/
191.252.51.11200 OK 218 B URL HTTP/1.1 www.cidadania23pr.org.br/
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 43cf1c7f0332e32882b11c920f64771a
9f6679e0a138cf1cac57dd82e6853d6fb1ea0fc5
9a9aa3f2432e75660b4129ec0d812e940e38b6649c5ea7da79cb69d71d897fda
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:25 GMT
Server: Apache
Content-Length: 218
Connection: close
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 23:41:40 GMT
age: 3285
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5234
Expires: Fri, 27 Jan 2023 02:03:40 GMT
Date: Fri, 27 Jan 2023 00:36:26 GMT
Connection: keep-alive
www.cidadania23pr.org.br/favicon.ico
191.252.51.11404 Not Found 1.2 kB URL HTTP/1.1 www.cidadania23pr.org.br/favicon.ico
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d6f211a42e643f99d3831ad10522ee90
7602ca7c5663eb3047994090ad96015329d1693b
f31052a9ccd15c46c33a1bd17954684a0702f09208476a0b5a7f2678865b6a80
GET /favicon.ico HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
HTTP/1.1 404 Not Found
Date: Fri, 27 Jan 2023 00:36:26 GMT
Server: Apache
Vary: accept-language,accept-charset
Accept-Ranges: bytes
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=iso-8859-1
Content-Language: en
push.services.mozilla.com/
35.80.120.72101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.80.120.72:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HQXTETyrJ6G67eRqao2CUQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: njVKWaRxWlaZxL8QiK6vsP0ffKo=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/charts/loader.js
142.250.74.35200 OK 20 kB URL HTTP/2 www.gstatic.com/charts/loader.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (2134)
Hash f3341efa0432876b1697ccec98c33b01
55044e79afbe25d119b7b87dc7b5d1b3ec0c607a
6672904faeb4f203e0109279aa99d88f9e8690d2d696d80309ef50a974f88c77
GET /charts/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 19937
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 00:09:59 GMT
expires: Fri, 27 Jan 2023 01:09:59 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 18:41:30 GMT
content-type: text/javascript
age: 1587
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cidadania23pr.org.br/cidadania23pr/
191.252.51.11200 OK 56 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1964)
Hash 66c39dc3d75675b51e9f67032dd9e2a8
e966d3db04007e462c771db54084a68882e92832
745273e67969d3636f58a8fe82f6f9ba4ff878f0a4479564a1ad311593b2ba33
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/ HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:25 GMT
Server: Apache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.flickr.com/badge_code_v2.gne?count=6&display=latest&size=m&layout=x&source=user&user=140459041@N04
54.230.241.124301 Moved Permanently 167 B URL HTTP/1.1 www.flickr.com/badge_code_v2.gne?count=6&display=latest&size=m&layout=x&source=user&user=140459041@N04
IP 54.230.241.124:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /badge_code_v2.gne?count=6&display=latest&size=m&layout=x&source=user&user=140459041@N04 HTTP/1.1
Host: www.flickr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 27 Jan 2023 00:36:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://www.flickr.com/badge_code_v2.gne?count=6&display=latest&size=m&layout=x&source=user&user=140459041@N04
X-Cache: Redirect from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VA6jJyn3t6vflYilW0XfYdMFJhq0VIKMKhasjDkTpQ59rSPhLOr0Wg==
www.cidadania23pr.org.br/cidadania23pr/public/css/core.css
191.252.51.11200 OK 5.1 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/css/core.css
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
Hash 0cfd923c5b1a0e38841600d5041c6d8f
2f77fd5549bb169d46ca99d401d510baf623576a
f8ad8a762590a993de77d000e8bf404253ba22567b4ddd468a20edb1abb6afde
GET /cidadania23pr/public/css/core.css HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:26 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:05:09 GMT
Content-Length: 5057
Content-Type: text/css
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50571862
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/css/uikit-site.css
191.252.51.11200 OK 2.2 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/css/uikit-site.css
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
Hash bc425b3c5d211e82c7ccbcbf1e01f580
227638ba475dc5be882e2ea338f94c57309da945
439f30588543d6e4fa299ea85a0f577068efc8b0781b28b0b2fbd94d0e897b21
GET /cidadania23pr/public/css/uikit-site.css HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:26 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:05:09 GMT
Content-Length: 2172
Content-Type: text/css
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 46488926
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/site/css/style.css
191.252.51.11200 OK 14 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/site/css/style.css
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type assembler source, ASCII text
Hash 7e808c830a7959ec1168507fa8f56f9d
47f139e6a697ee036b5962ac0b8078c1b3dc1f25
0f0130bc1b97d879d58f49d9483fb7d11243bd44aadd3634696dec84e67649fb
GET /cidadania23pr/public/modules/site/css/style.css HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:26 GMT
Server: Apache
Last-Modified: Wed, 17 Jul 2019 18:25:25 GMT
Content-Length: 13516
Content-Type: text/css
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50119063
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/uikit/js/components/slideshow.min.js
191.252.51.11200 OK 9.5 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/uikit/js/components/slideshow.min.js
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (9459)
Hash 782e797bfa7d186dbac94d8174bcf10e
a080576bab4c8b4291e97f0f35c97f1587269831
c130378deb2c4641f65512904e1aa92505e0be60cad278a1ebc01320b4f5d172
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/uikit/js/components/slideshow.min.js HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:27 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:08:01 GMT
Content-Length: 9539
Content-Type: application/x-javascript
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 38205534
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/calendario/css/core.css
191.252.51.11200 OK 677 B URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/calendario/css/core.css
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
Hash adee4804bf847deb8e12c9c08b213665
65c755a9fa0cf3a502650332a754905b8737f277
392982d2f70cf93a44f3dfdd3a6751bfdca284b53b9b4cb120bca8c9f148ffff
GET /cidadania23pr/public/modules/calendario/css/core.css HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:27 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:06:41 GMT
Content-Length: 677
Content-Type: text/css
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 48219436
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5494
Expires: Fri, 27 Jan 2023 02:08:01 GMT
Date: Fri, 27 Jan 2023 00:36:27 GMT
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/uikit/css/uikit.min.css
191.252.51.11200 OK 100 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/uikit/css/uikit.min.css
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (65456)
Size 100 kB (100007 bytes)
Hash 536df226db4eb76dbf2f7cc1c5e8b90e
4532b79143d0f7543b2049905a20e56863dbd5e9
aeea0bbcc01704e828069079bc365fcdc764b91b05d98dc3eb0abbb8f1085dba
GET /cidadania23pr/public/uikit/css/uikit.min.css HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:26 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:06:25 GMT
Content-Length: 100007
Content-Type: text/css
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50082056
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/site/js/index.js
191.252.51.11200 OK 541 B URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/site/js/index.js
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
Hash e9800733f7ce064ccdea3439dd20a5c0
206a83fcc74694bab3dc2411a37d854d606923c6
01f0d44390fa78932686ede3212ba79b9fc31c27831b7ab1ba104b45fe3f6841
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/modules/site/js/index.js HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:27 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:07:46 GMT
Content-Length: 541
Content-Type: application/x-javascript
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50664684
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5494
Expires: Fri, 27 Jan 2023 02:08:01 GMT
Date: Fri, 27 Jan 2023 00:36:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5494
Expires: Fri, 27 Jan 2023 02:08:01 GMT
Date: Fri, 27 Jan 2023 00:36:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1695371c247eedad65b4cac82f01215d
50510052f0e22e23f747c761d57cdf72910ac533
aadde426229f04f6a489b87d6949a485b19d4fd035cb244b6094549efc08013f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6394
x-amzn-requestid: 215e6698-30e7-45b0-8f8f-96a05c5f6992
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOirZG1doAMFW_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf4b15-3e1bec6759816cf84467339b;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 03:05:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tG3T0HguJWldw-LJ9SJSuuUT4ubLCWViwQFB-dZhNfEswMEexb7Tcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 04:23:28 GMT
age: 72779
etag: "50510052f0e22e23f747c761d57cdf72910ac533"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 869cdfba2637cc932ce387317a3c485e
51d87a5223d87c959bf27b2a825dce0a28f52ada
6dc4247dd3110836195f9962463bd8265be89633e9e589bf19955991751c26fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5669
x-amzn-requestid: 17f6235c-d495-4813-9453-407331e0dcad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1ZSH4fIAMFxeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c3b-67ff5c7f416727670e7c3b21;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KGNpzuI2ny_1LH90atWa09SPYG7Ovolbv_KvL8nC6fUk59z-6TFsMQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 03:05:04 GMT
age: 77483
etag: "51d87a5223d87c959bf27b2a825dce0a28f52ada"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23169a26-33f3-4f92-9612-02bf2555d37c.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23169a26-33f3-4f92-9612-02bf2555d37c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d2506ac511dfbea29e29ab14ba10f85
b2e2972ffa82b103c62ffde0fca99454e12d95e6
fbe6f833114208d84033ba691a74da18d641e38f0f327c752333a339f1baae34
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23169a26-33f3-4f92-9612-02bf2555d37c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5263
x-amzn-requestid: d9ce236e-c2fa-42dc-b0ff-ffe53a03a5a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVr6RFnrIAMF3DA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d226a7-378aa8163ddd262944257578;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:07:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jbNIYT3pKuUF_8NaACEsgFv3KxUt5q_5tUqgsf1Bdtdsw7Oxf6kFfA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:38:46 GMT
age: 61061
etag: "b2e2972ffa82b103c62ffde0fca99454e12d95e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -_8PZoms7W6Lvw__KsoTwL_CzjfyWChzoSWDc9yCk9zCR8cTs87oNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 16:31:35 GMT
age: 29092
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48b381df-c118-4c63-bd08-99ac7a51ae39.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48b381df-c118-4c63-bd08-99ac7a51ae39.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06130c82b0c12aabc0cc9f920114e1c5
c2137e969f6eb3790923e1bc30d4288105fd1296
70b50dc9f7e76372b557da8d5188e86b4307e3d855619c5974d7830ab187cec1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48b381df-c118-4c63-bd08-99ac7a51ae39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11689
x-amzn-requestid: c72f71e2-e235-4611-826b-94b55c1a6a17
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1YDGl8oAMF2Lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c33-3e8a69900c1267e102d2c2bc;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Nsm2GhqSll0LCoSNRA6KjKZbee7frV0mgbS4z0yO9-DGrXvdZIM_2A==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 03:04:53 GMT
age: 77494
etag: "c2137e969f6eb3790923e1bc30d4288105fd1296"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 18:35:59 GMT
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
age: 21628
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.cidadania23pr.org.br/cidadania23pr/public/js/plugins/jquery.mask.min.js
191.252.51.11200 OK 5.9 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/js/plugins/jquery.mask.min.js
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (520)
Hash 600c6d8e203fed429efe97b175b3a797
a0f4fb2d819028015a1ac27beb65eb5cbf6d133e
787bb8431c6bbbeb1f60b7e8aa14bf0065da5dd008a5b21e35585bf189908989
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/js/plugins/jquery.mask.min.js HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:27 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:06:19 GMT
Content-Length: 5929
Content-Type: application/x-javascript
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 48219438
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/css/uikit.css
191.252.51.11200 OK 127 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/css/uikit.css
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (65536), with no line terminators
Size 127 kB (127413 bytes)
Hash 9f6e6a73fab8032bda238667df9e9a65
4913aca293c48a08382a6a64ff84b83bc8d3d5af
a712429bc2d578126f39b5c38d30f8c912156c9545b069ea1f51fb28cb35abb7
GET /cidadania23pr/public/css/uikit.css HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:26 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:05:10 GMT
Content-Length: 127413
Content-Type: text/css
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 49168741
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/uikit/js/components/notify.min.js
191.252.51.11200 OK 2.7 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/uikit/js/components/notify.min.js
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (2574)
Hash 8d19390d447b25215773d8406ff005ea
5cfda8268facb591708cb91ba5a1c71727701afc
280fac62c6aeab3f284b60b846c074844b628ec9dfa48ccf02f057aabf3ffe57
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/uikit/js/components/notify.min.js HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:27 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:07:59 GMT
Content-Length: 2654
Content-Type: application/x-javascript
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50664686
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/uikit/js/components/accordion.min.js
191.252.51.11200 OK 2.7 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/uikit/js/components/accordion.min.js
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (2667)
Hash c4ae200fb227b498b165cc8b147297e0
2edd3cdb03c1abd876984590935482bddfd3e60e
6dd009502e1778cda05ac9a8fa3151131a647ce9ff3bd0295144d12b9611487e
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/uikit/js/components/accordion.min.js HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:27 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:07:56 GMT
Content-Length: 2747
Content-Type: application/x-javascript
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 48219440
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/uikit/js/uikit.js
191.252.51.11200 OK 115 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/uikit/js/uikit.js
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
Size 115 kB (114565 bytes)
Hash a68536d818d353562e95d2bac34c92af
611d5084e3e35b88cea9e37f186a9593206b3322
6f2240d46c463bef9b1c899b7836a7c742e618c45e6920ce8274f427ac5de533
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/uikit/js/uikit.js HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:27 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:06:31 GMT
Content-Length: 114565
Content-Type: application/x-javascript
X-Pad: avoid browser bug
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 46488928
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/site/js/layout.js
191.252.51.11200 OK 694 B URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/site/js/layout.js
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
Hash 781f740737076d9628db2218766cb2fc
589e63cd72441b62103f05811166dfca519b5fb4
d8d9850093c2b597a35eafbd1f38bb9760eb3609358059c98074e00332a20470
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/modules/site/js/layout.js HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:27 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:07:46 GMT
Content-Length: 694
Content-Type: application/x-javascript
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 49168746
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/js/plugins/jquery-ui/jquery-ui.min.js
191.252.51.11200 OK 240 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/js/plugins/jquery-ui/jquery-ui.min.js
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (33392)
Size 240 kB (240422 bytes)
Hash c8b4ba00aaed33053ca2d0014995b910
6aaf0814b0b4eea270fdbbdba2f9dc6db9f9ac37
dc008bcaa12bb73ab3d1ad60fcd5ddda1c31795f0272d3ca04cac5252af00228
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/js/plugins/jquery-ui/jquery-ui.min.js HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:27 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:06:40 GMT
Content-Length: 240422
Content-Type: application/x-javascript
X-Pad: avoid browser bug
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 48855638
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/js/jquery.min.js
191.252.51.11200 OK 96 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/js/jquery.min.js
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (32086)
Hash 8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/js/jquery.min.js HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:27 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:06:17 GMT
Content-Length: 95786
Content-Type: application/x-javascript
X-Pad: avoid browser bug
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50571864
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 97ccaa279f6ade845b71b57615d40388
5186089108dca0136feab418da66a9e027c7e427
515128c713e98c9a0546c35d9a1e0719057136509b5b2312e4af56a9acc80ec2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 97ccaa279f6ade845b71b57615d40388
5186089108dca0136feab418da66a9e027c7e427
515128c713e98c9a0546c35d9a1e0719057136509b5b2312e4af56a9acc80ec2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 97ccaa279f6ade845b71b57615d40388
5186089108dca0136feab418da66a9e027c7e427
515128c713e98c9a0546c35d9a1e0719057136509b5b2312e4af56a9acc80ec2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/4248d311/www-player.css
142.250.74.110200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/4248d311/www-player.css
IP 142.250.74.110:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8a6331ed48be29c59230b0c7360068de
22a20436f427d6b8e26eb30ed9aab51a43d389bf
72f0818ab04697fc29d331b2add584f3cd5e269446c7297300701a4666c9d95e
GET /s/player/4248d311/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/_fSjejbVlSk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49911
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 17:26:43 GMT
expires: Fri, 26 Jan 2024 17:26:43 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/css
age: 25787
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 97ccaa279f6ade845b71b57615d40388
5186089108dca0136feab418da66a9e027c7e427
515128c713e98c9a0546c35d9a1e0719057136509b5b2312e4af56a9acc80ec2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js
142.250.74.110200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js
IP 142.250.74.110:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/_fSjejbVlSk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 17:46:05 GMT
expires: Thu, 25 Jan 2024 17:46:05 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/javascript
age: 111025
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_62e3f1c47a15f.png
191.252.51.11200 OK 48 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_62e3f1c47a15f.png
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 1150 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 0f28e9b786323eabbf1aa0a075073e22
8efc4ddaf519b14353a327fc022758876b9fde87
d495520a7433a3fdb92c3a9c4858ea9a3664521f2b9c762bc74eb6f08377a6ba
GET /cidadania23pr/public/modules/rotativo/imgs/rotativo_62e3f1c47a15f.png HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:29 GMT
Server: Apache
Last-Modified: Fri, 29 Jul 2022 14:42:11 GMT
Content-Length: 48439
Content-Type: image/png
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 49434829
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f368552be9.png
191.252.51.11200 OK 47 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f368552be9.png
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 1151 x 181, 8-bit/color RGBA, non-interlaced\012- data
Hash 280e5baa082235c96585642472609d60
d9c72061a836f8e5912cda58e1cda4fe778fe64a
96a75a6c1fd09f33987cf2f1f750d9817f520d269baa6abfb38954db460fe4b0
GET /cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f368552be9.png HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:29 GMT
Server: Apache
Last-Modified: Wed, 17 Jul 2019 14:53:55 GMT
Content-Length: 46919
Content-Type: image/png
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 48621180
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 28547
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 10107
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f3dc6e4bcb.png
191.252.51.11200 OK 64 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f3dc6e4bcb.png
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 1150 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f777d556986d1639baf4387d29bbc43
c0c6c84bd476e5569d76f8790f0afe00da15dfdf
ae6930eb22ec31d62bc3519fbcf1c0f81e6834b6dd0722a40b586587ac5f111b
GET /cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f3dc6e4bcb.png HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:29 GMT
Server: Apache
Last-Modified: Wed, 17 Jul 2019 15:24:53 GMT
Content-Length: 63469
Content-Type: image/png
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 48067104
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f3c871697f.png
191.252.51.11200 OK 52 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f3c871697f.png
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 1150 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 6fd7fe9027d5b5effc5ffd1078043fd9
a50fb4d8e80f9954daa2a7c1a10306df900ec894
51c2fc45762facb1fec9829ed787d2af54fe0e3350bc9585b9c00930baaff5dc
GET /cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f3c871697f.png HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:29 GMT
Server: Apache
Last-Modified: Wed, 17 Jul 2019 15:19:33 GMT
Content-Length: 52261
Content-Type: image/png
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 44546317
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/back-cabecalho.jpg
191.252.51.11200 OK 10 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/back-cabecalho.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=144, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=28], baseline, precision 8, 28x144, components 3\012- data
Hash 2830470af6012bb5d15d60c1c36941f9
5fd3c10acddd65ea7b0d886df1f63db5287b60bd
0a29988b474138b27eeb94b1f9f34e09f0ca80d2e0f8e8e17399e4a7122b4eac
GET /cidadania23pr/public/modules/site/imgs/back-cabecalho.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/public/modules/site/css/style.css
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:30 GMT
Server: Apache
Last-Modified: Wed, 17 Jul 2019 18:45:32 GMT
Content-Length: 10436
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 48621187
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20221222100123_63a45523b3680.jpg
191.252.51.11200 OK 50 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20221222100123_63a45523b3680.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3\012- data
Hash 26b4ed78c1583963243a0e9a11623eff
8b30f79fe1c5094d66e2f1345ee82592996a43e7
b804b5bc74cc82a2795cf4649d8b30ca6755ead1aad76e5cca24a4c8f6e7736b
GET /cidadania23pr/public/modules/noticias/imagens/20221222100123_63a45523b3680.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:30 GMT
Server: Apache
Last-Modified: Thu, 22 Dec 2022 13:01:22 GMT
Content-Length: 49816
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 46488945
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230108165549_63bb1fc5a4ded.jpg
191.252.51.11200 OK 187 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230108165549_63bb1fc5a4ded.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x853, components 3\012- data
Size 187 kB (187336 bytes)
Hash d9e86005d4ee8243ee9e7c319ac6df5d
7c30e3c92bd7ead7ec6d474ee8c552db2a2ed6fd
c41dd23e84d0bae9baf281588b6d7015d8c2c55405053e8e71955baeab1d24d1
GET /cidadania23pr/public/modules/noticias/imagens/20230108165549_63bb1fc5a4ded.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:30 GMT
Server: Apache
Last-Modified: Sun, 08 Jan 2023 19:55:48 GMT
Content-Length: 187336
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 48621189
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
widget.sndcdn.com/assets/images/logo-200x120-3190df52.png
54.230.111.7200 OK 3.7 kB URL HTTP/2 widget.sndcdn.com/assets/images/logo-200x120-3190df52.png
IP 54.230.111.7:0
File type PNG image data, 200 x 120, 8-bit gray+alpha, non-interlaced\012- data
Hash a1591e5274b36cfbae3e167dffe49970
ad535777f813aae6727b416f821d727c854646e6
a9e23dcec7b7d492b11006586bea4e4fe7de01f647f89c6aa84e186567b9da50
GET /assets/images/logo-200x120-3190df52.png HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3745
date: Tue, 29 Nov 2022 03:09:32 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 24 Nov 2022 13:01:44 GMT
etag: "a1591e5274b36cfbae3e167dffe49970"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: 6LsbYOQSWdcmylQzGCiF4lvrWHreg3Sc
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4TANbNAMpeyIRh5NUFM-bCMEHihLhedJH_7uQeE3ZaxG6SE3WE7xbQ==
age: 5088419
X-Firefox-Spdy: h2
www.cidadania23pr.org.br/cidadania23pr/public/fonts/fontawesome-webfont.woff2
191.252.51.11404 Not Found 3.5 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/fonts/fontawesome-webfont.woff2
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash c7c7fed3c8ffab87e252a0570665beb6
7a5fa2c476b45fef0c5a21831a57d7ee6da53d9a
05770396c21edca9ae8bdceeee3f8e962d14ee7988609f67fbd1f2040a6b6227
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/public/css/uikit.css
HTTP/1.1 404 Not Found
Date: Fri, 27 Jan 2023 00:36:30 GMT
Server: Apache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230110120000_63bd7d70b73ec.jpg
191.252.51.11200 OK 372 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230110120000_63bd7d70b73ec.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, xresolution=162, yresolution=170, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2019:12:02 21:55:22], baseline, precision 8, 2560x1707, components 3\012- data
Size 372 kB (371889 bytes)
Hash ff85ce2079666691d754f0eb6e1c8542
6c8e172f97dd205fb05d4391070ba13755fd8bac
090fb68ea3392c696e7c94aab1019cdae97c075734a7cd42177de28bc44543af
GET /cidadania23pr/public/modules/noticias/imagens/20230110120000_63bd7d70b73ec.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:29 GMT
Server: Apache
Last-Modified: Tue, 10 Jan 2023 15:00:00 GMT
Content-Length: 371889
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 38205536
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230110101629_63bd652d6b1e3.jpg
191.252.51.11200 OK 411 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230110101629_63bd652d6b1e3.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 1107x460, components 3\012- data
Size 411 kB (411008 bytes)
Hash 79343953cee8fbe30c8db60afb340a5c
526ecb3ab5ddfc636f70a27185449bcb069d9fb3
aa441d19c6ad4bfbe4e126cfc091e3df528c3ced5f39dbc4816809a72f116ae3
GET /cidadania23pr/public/modules/noticias/imagens/20230110101629_63bd652d6b1e3.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:30 GMT
Server: Apache
Last-Modified: Tue, 10 Jan 2023 13:16:28 GMT
Content-Length: 411008
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50408582
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/back-videos.jpg
191.252.51.11200 OK 2.6 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/back-videos.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 43x418, components 3\012- data
Hash a0f65418b7bf868a72139f992d77cc6e
6a87f26d88b38a3132e8c08aed13f699a6fd6559
a5a1a0af4966b22d72c4293c7eb3679f4304a4517a28e2c56dac27348f340a00
GET /cidadania23pr/public/modules/site/imgs/back-videos.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/public/modules/site/css/style.css
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:31 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:07:44 GMT
Content-Length: 2579
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 38205538
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/logo-pps.png
191.252.51.11200 OK 37 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/logo-pps.png
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 276 x 136, 8-bit/color RGBA, non-interlaced\012- data
Hash 65b21202d286dfb21f6d2863847f7e6a
d9a5dc153bc0acfa922481fa2424eb725c1ae0cc
09c3580dbbbe7df54c7992f5289e2367a92d2ebae9af741a2a4837e7bbd95646
GET /cidadania23pr/public/modules/site/imgs/logo-pps.png HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:31 GMT
Server: Apache
Last-Modified: Wed, 17 Jul 2019 18:46:33 GMT
Content-Length: 36652
Content-Type: image/png
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50408584
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a74494062e6a7972fc90481d1e630c64
ffe981a21eb348523070407acd3cdd38e3d2246c
d203fd0d814143acff3b5ffbe352337fb0e5d4c283b945ff74f9085b22d42840
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.flickr.com/badge_code_v2.gne?count=6&display=latest&size=m&layout=x&source=user&user=140459041@N04
54.230.241.124404 Not Found 27 kB URL HTTP/2 www.flickr.com/badge_code_v2.gne?count=6&display=latest&size=m&layout=x&source=user&user=140459041@N04
IP 54.230.241.124:0
Hash 76998fdbf2ce107a2a3f689a4ceda0b7
8213eb38fef5e0d4e2d25a72a168d6e6a6d45006
dc73a93381aa24a7f194811bf324bb3626da01b3c573dd15957ffaa89cdde801
GET /badge_code_v2.gne?count=6&display=latest&size=m&layout=x&source=user&user=140459041@N04 HTTP/1.1
Host: www.flickr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cidadania23pr.org.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
date: Fri, 27 Jan 2023 00:36:30 GMT
server: Apache/2.4.55 (Ubuntu)
set-cookie: xb=228765; expires=Mon, 24-Jan-2033 00:36:30 GMT; Max-Age=315360000; path=/; domain=.flickr.com
localization=en-us%3Bno%3Bno; expires=Fri, 24-Jan-2025 00:36:30 GMT; Max-Age=62899200; path=/; domain=.flickr.com
flrbp=1674779790-8f38fea32a7e36f95dfb3247d2305cb511317d93; expires=Wed, 26-Jul-2023 00:36:30 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrbgrp=1674779790-46fc9d36f4caf2fd7310f099d2270e9bed5e6c02; expires=Wed, 26-Jul-2023 00:36:30 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrbgdrp=1674779790-32e4ed0210bb7a10ec7f7e89723ae405432d0708; expires=Wed, 26-Jul-2023 00:36:30 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrbgmrp=1674779790-8041271cd260941ce0ed148137988f4689f2f9f8; expires=Wed, 26-Jul-2023 00:36:30 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrbrst=1674779790-0ee8d395f666290964d9f7100b6d328d0989b9e0; expires=Wed, 26-Jul-2023 00:36:30 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrtags=1674779790-88fd6cf36e54704d0daeaf567319ad89a77292c4; expires=Wed, 26-Jul-2023 00:36:30 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrbrp=1674779790-25f69e17106267811ebe83c8a1018513a46a8217; expires=Wed, 26-Jul-2023 00:36:30 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrb=35; expires=Fri, 27-Jan-2023 01:36:30 GMT; Max-Age=3600; path=/; domain=.flickr.com; HttpOnly
ccc=%7B%22needsConsent%22%3Afalse%2C%22managed%22%3A0%2C%22changed%22%3A0%2C%22info%22%3A%7B%22cookieBlock%22%3A%7B%22level%22%3A0%2C%22blockRan%22%3A0%7D%7D%7D; expires=Sun, 26-Feb-2023 00:36:30 GMT; Max-Age=2592000; path=/; domain=.flickr.com
content-security-policy: style-src 'unsafe-inline' https://*.flickr.com https://*.staticflickr.com https://*.flickr.net https://*.braintreegateway.com https://*.kaptcha.com https://*.paypal.com http://api.flickr.com https://*.pinterest.com https://connect.facebook.net https://*.facebook.com https://*.maps.api.here.com https://*.maps.cit.api.here.com https://cdn.siftscience.com https://tpc.googlesyndication.com https://securepubads.g.doubleclick.net https://adservice.google.com https://cdn.ampproject.org https://trustarc.mgr.consensu.org/ https://*.trustarc.com; default-src https://*.flickr.com https://*.staticflickr.com https://*.flickr.net https://*.braintreegateway.com https://*.kaptcha.com https://*.paypal.com http://api.flickr.com https://*.pinterest.com https://connect.facebook.net https://*.facebook.com https://*.maps.api.here.com https://*.maps.cit.api.here.com https://cdn.siftscience.com https://tpc.googlesyndication.com https://securepubads.g.doubleclick.net https://adservice.google.com https://cdn.ampproject.org https://trustarc.mgr.consensu.org/ https://*.trustarc.com; img-src data: blob: https://*.flickr.com https://*.flickr.net http://*.flickr.net https://*.staticflickr.com http://*.staticflickr.com https://*.yimg.com https://*.yahoo.com https://image.maps.api.here.com https://*.paypal.com https://*.pinterest.com http://*.static-alpha.flickr.com https://connect.facebook.net https://*.facebook.com https://*.maps.api.here.com https://*.maps.cit.api.here.com https://creativecommons.org https://hexagon-analytics.com https://*.2o7.net https://tagmanager.google.com https://www.googletagmanager.com https://*.google.com https://*.google-analytics.com https://*.googleadservices.com https://*.googlesyndication.com https://*.doubleclick.com https://*.doubleclick.de https://*.doubleclick.net https://*.googletagservices.com https://*.googleadservices.com https://*.googlesyndication.com https://*.googleapis.com https://api.mapbox.com https://*.trustarc.com; media-src https://*.flickr.com https://*.flickr.net http://*.flickr.net https://*.staticflickr.com https://*.yahoo.com; script-src 'unsafe-inline' 'unsafe-eval' 'nonce-2af535ab8ec6f675b6c87372c61ae0c5' https://*.flickr.com http://*.flickr.net https://*.flickr.net https://*.staticflickr.com https://*.analytics.yahoo.com https://yep.video.yahoo.com https://video.media.yql.yahoo.com https://*.yahooapis.com https://*.braintreegateway.com https://*.paypalobjects.com https://connect.facebook.net https://*.facebook.com https://*.maps.api.here.com https://*.maps.cit.api.here.com https://cdn.siftscience.com https://assets.adobedtm.com https://securepubads.g.doubleclick.net https://adservice.google.com https://cdn.ampproject.org https://*.google.com https://*.google-analytics.com https://*.googleadservices.com https://*.googlesyndication.com https://*.doubleclick.com https://*.doubleclick.de https://*.doubleclick.net https://*.googletagservices.com https://*.googleadservices.com https://*.googlesyndication.com https://*.googleapis.com https://consent.trustarc.com https://trustarc.mgr.consensu.org https://www.googletagmanager.com; connect-src https://*.flickr.com https://*.flickr.net http://*.flickr.net https://*.staticflickr.com https://geo.query.yahoo.com https://*.yahooapis.com http://api.flickr.com https://*.pinterest.com http://*.yahoo.com https://*.maps.api.here.com https://*.maps.cit.api.here.com https://cdn.siftscience.com https://*.demdex.net https://securepubads.g.doubleclick.net https://*.trustarc.com https://com-flickr-prod1.mini.snplow.net; frame-ancestors https://*.flickr.com;
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-cache: Error from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9LUi1qp7AC1Doo0VrE3elTw_oX1Nk9wbY2WlBZ5LqEvcyhV0M-SmqA==
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 00:27:52 GMT
expires: Fri, 27 Jan 2023 00:42:52 GMT
cache-control: public, max-age=900
age: 519
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 27 Jan 2023 00:36:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api-widget.soundcloud.com/assignments/639225-257592-934916-97021?layers=widget_listening&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1674475286
54.230.110.40200 OK 176 B URL HTTP/1.1 api-widget.soundcloud.com/assignments/639225-257592-934916-97021?layers=widget_listening&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1674475286
IP 54.230.110.40:0
File type JSON data\012- , ASCII text, with very long lines (651), with no line terminators
Hash 5db3ef6ba103e141f7a9ee381710a4ea
a6e4037036ce2611115784973d489b5c9d852c79
3594a8c30e07e576db30a3eabd8a939a9a4aae1f16fb1c2e3fb41f08407801b2
GET /assignments/639225-257592-934916-97021?layers=widget_listening&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1674475286 HTTP/1.1
Host: api-widget.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 176
Connection: keep-alive
Date: Fri, 27 Jan 2023 00:36:31 GMT
x-px-score: 0
x-datadome: protected
accept-ch: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=4j5xl6FYoia-Byxm3oPCThk_enyhOLyimjjk2mP77Q02f2zoigQM_irIl5zubKHsVX_UGw-ZWa48WlovOymHPRKXiLPYXXM6OBftySgYiaDHIUyGEwkHTqavHIonI-iD; Max-Age=31536000; Domain=.soundcloud.com; Path=/; Secure; SameSite=Lax
x-robots-tag: noindex
Cache-Control: private, max-age=0
referrer-policy: no-referrer
x-frame-options: DENY
access-control-max-age: 1728000
x-content-type-options: nosniff
access-control-allow-origin: https://w.soundcloud.com
access-control-allow-headers: Authorization, Content-Type, Device-Locale, X-CSRF-Token
access-control-allow-methods: DELETE, GET, PATCH, POST, PUT
access-control-expose-headers: Date
access-control-allow-credentials: true
Content-Encoding: gzip
strict-transport-security: max-age=63072000
Server: am/2
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: I29J9GScW3Emdd_o3DhAhksKTTi6aWMlOnhMxG-D9sMGMumdt1W1rA==
w.soundcloud.com/player/?url=https%3A//api.soundcloud.com/users/14339822&color=f40303&auto_play=false&hide_related=false&show_comments=true&show_user=true&show_reposts=false
54.230.111.26200 OK 1.2 kB URL HTTP/2 w.soundcloud.com/player/?url=https%3A//api.soundcloud.com/users/14339822&color=f40303&auto_play=false&hide_related=false&show_comments=true&show_user=true&show_reposts=false
IP 54.230.111.26:0
Hash fb2f4a61a03824463d60b6a8bf21dcbc
da9508a9ac780f59b34085ece178cf3448f3b693
c6caeeac8eb93a0421d8cc631bf33c4cb5dd747e18d54cd56139159f82c65ff6
GET /player/?url=https%3A//api.soundcloud.com/users/14339822&color=f40303&auto_play=false&hide_related=false&show_comments=true&show_user=true&show_reposts=false HTTP/1.1
Host: w.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
via: sssr, 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
p3p: policyref="https://w.soundcloud.com/player/w3c/p3p.xml", CP="NON DSP COR CUR ADM DEV TAI PSAo PSDo OUR STP CNT"
cache-control: public, max-age=300
date: Fri, 27 Jan 2023 00:36:30 GMT
strict-transport-security: max-age=63072000
server: am/2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hnu5mAvIJZb7yoIBfJ0TS4TqkmgL9LhjHJMp35JfoOVoi_4CLYQZMQ==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a74494062e6a7972fc90481d1e630c64
ffe981a21eb348523070407acd3cdd38e3d2246c
d203fd0d814143acff3b5ffbe352337fb0e5d4c283b945ff74f9085b22d42840
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230122090101_63cd257d9a840.jpg
191.252.51.11200 OK 59 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230122090101_63cd257d9a840.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, progressive, precision 8, 1110x740, components 3\012- data
Hash 70e2eb2a14b090c2d00de7548f9afa1b
9196c40c90461f858d4309dd765768bfb8fb7145
c7c221cde892f43014ed7ac373d1d94e8003b6061826d14dfdee0cc47101d6a0
GET /cidadania23pr/public/modules/noticias/imagens/20230122090101_63cd257d9a840.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:31 GMT
Server: Apache
Last-Modified: Sun, 22 Jan 2023 12:01:00 GMT
Content-Length: 59360
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50408586
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230117162916_63c6f70cb442c.jpg
191.252.51.11200 OK 42 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230117162916_63c6f70cb442c.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, datetime=2023:01:17 16:26:13], baseline, precision 8, 390x400, components 3\012- data
Hash b41806d516c2add66448a16d58c7eeaf
0dfec696177627f0d91d2ea947d68c230f8d030c
886a9563bd6e9fca4f081287dffc372fe01b30b4fd70a3eb7384818bc095ce00
GET /cidadania23pr/public/modules/noticias/imagens/20230117162916_63c6f70cb442c.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:31 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 19:29:16 GMT
Content-Length: 41615
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50342389
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 27 Jan 2023 00:36:31 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash b7a2807e1233c1b430c5df7dc1e43eee
98d3400a593c36807561dea4dc77dcd58e153b52
c2cb0c1487d19acf53b34cc96c71960f177cee1ddcc855c08d5f9d089af6a298
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 27 Jan 2023 00:36:31 GMT
server: ESF
cache-control: private
content-length: 31005
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3ebf9d7211aba4c70b84fb470a61b414
28fe29a24e47d6abda88eeeb5e22eddda03c7fca
a8276e099d9d8452b65b70d161a459fae25afb37cea7eff9cc5563b7de972acc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/x4UJj8gT6CtT5_PZSB2sMkWT7oT3ONYvYheI_Vl_kb0.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/x4UJj8gT6CtT5_PZSB2sMkWT7oT3ONYvYheI_Vl_kb0.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36171)
Hash a13a76dd17af226d4a24bd16ef702377
c364171cd0f66eb4a1a8dde04e1e083154d81dbd
1dd3352cbdb7561b142954006a2bb94008486c22760c3d5ebb1b6fffeb325173
GET /js/th/x4UJj8gT6CtT5_PZSB2sMkWT7oT3ONYvYheI_Vl_kb0.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14250
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Jan 2023 18:38:28 GMT
expires: Sat, 20 Jan 2024 18:38:28 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Jan 2023 15:00:00 GMT
content-type: text/javascript
age: 539883
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/embed/86XmoJCMy98
142.250.74.110200 OK 28 kB URL HTTP/2 www.youtube.com/embed/86XmoJCMy98
IP 142.250.74.110:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58640)
Hash b7a52027d4a345b919281eeb9d0d8a88
251691fee7e90718c6e621a0502a3b28c79d1073
44b648ac2eee3386abf69c5688b917ec3761863ed0d385deda5e39f7583c772d
GET /embed/86XmoJCMy98 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 27 Jan 2023 00:36:30 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Rmflq9bHy5g; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TXpFeU5EUXlOemM1TkRjMk5ETXpOUT09EI65zJ4GGI65zJ4G; Domain=.youtube.com; Expires=Wed, 26-Jul-2023 00:36:30 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=7aP7WK-AnzY; Domain=.youtube.com; Expires=Wed, 26-Jul-2023 00:36:30 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+948; expires=Sun, 26-Jan-2025 00:36:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cidadania23pr.org.br/cidadania23pr/enquetes
191.252.51.11200 OK 1.8 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/enquetes
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document text\012- HTML document, Unicode text, UTF-8 text
Hash 653b3263337c250024dd6800883079bd
b8d3e6447737d7c374c415b2a69baf1ba8686b7a
4ec32d069133271745913944220b0470dcb5b3543c5e9b85d6c2af0a88809d14
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/enquetes HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:30 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=p1548ksve4u1bhs5cgb1vthh73; path=/
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/icone-avisos.png
191.252.51.11200 OK 6.8 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/icone-avisos.png
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 1aed4e4533b1b4c4c63265b8c419611a
bf1d057e3c21a69430667d6a7fd933658dbce27e
1f7da8fb2298de708bebf2c8920a36fb58d813bc90d234a7188c5c93a52ceb55
GET /cidadania23pr/public/modules/site/imgs/icone-avisos.png HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:31 GMT
Server: Apache
Last-Modified: Wed, 17 Jul 2019 17:40:15 GMT
Content-Length: 6803
Content-Type: image/png
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50408588
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/calendario/calendario
191.252.51.11200 OK 3.7 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/calendario/calendario
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 27cbd7b77b2da750f4ea8b039dea4b52
4414dbcd04ddfe6e8e6197b04ccc30951e749b02
d6f9b3f40c3bcc813ee4ba2e39113443645ca57221b37704863a54612a6cbcab
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/calendario/calendario HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:31 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=65orlrid095lgsc16hiokp2q52; path=/
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 0e90e545dbdc0e7fad1989082611d85f
98c665a2e2897c3b488cfec71a48f52cda921724
db23a6b3439358fcec995992056633afed6ba60e0dd0a1f75be508328c407d5e
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 27 Jan 2023 00:36:31 GMT
server: ESF
cache-control: private
content-length: 30740
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/86XmoJCMy98/sddefault.webp
142.250.74.182200 OK 30 kB URL HTTP/2 i.ytimg.com/vi_webp/86XmoJCMy98/sddefault.webp
IP 142.250.74.182:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0be85d6276e49472f33a9167e368b736
e455c66b638695447ba328b32f254aa52ec4c741
9f35f370221fa7e4dd4ffa1d6a8c5612f55776487ee1a342d984837d89ffb9fe
GET /vi_webp/86XmoJCMy98/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 30016
date: Fri, 27 Jan 2023 00:36:31 GMT
expires: Fri, 27 Jan 2023 02:36:31 GMT
cache-control: public, max-age=7200
etag: "1572876104"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5f57a83befb5510821576265e691190f
136d15f2cbbc6416d808afcb8f48a19b346937fc
b3d3b78aaea9273c95224d6242a3817bac9be7fc46800e741da32bba13db5fa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a4154f9780d4ef7c61b45ccfff91e5ee
fa97c53e69a2e72e10ee12627c31b5201d36c14c
73f37cd9a981be0d639f75cb30582ab2d7a4e92ce1c47cee30856b2f7d7e8207
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cidadania23pr.org.br/cidadania23pr/public/modules/calendario/imgs/ajax-loader.gif
191.252.51.11200 OK 2.5 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/calendario/imgs/ajax-loader.gif
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type GIF image data, version 89a, 24 x 24\012- data
Hash bbb30c05e2d35075b3eb15b715042750
bd02b3e691623902163a816ce5eaa6cd4f1c12ff
d993e0b503ac0ef0b972c335de328bba66ad8a33e34dcf8b5bd7b622ba181ef7
GET /cidadania23pr/public/modules/calendario/imgs/ajax-loader.gif HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:31 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:06:51 GMT
Content-Length: 2545
Content-Type: image/gif
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50342391
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
i.ytimg.com/vi_webp/_fSjejbVlSk/sddefault.webp
142.250.74.182200 OK 25 kB URL HTTP/2 i.ytimg.com/vi_webp/_fSjejbVlSk/sddefault.webp
IP 142.250.74.182:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b38c2d44fdd11938779a0df75a7c2e8d
096ccb4145c6f165ee62c5d0aa52e49b94f3450d
c21d945f457db629d894a34d452965deae79b1081793ec80ba419ef8f3e2e2c4
GET /vi_webp/_fSjejbVlSk/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 25190
date: Fri, 27 Jan 2023 00:36:31 GMT
expires: Fri, 27 Jan 2023 02:36:31 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_62e3f1a0d1092.png
191.252.51.11200 OK 20 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_62e3f1a0d1092.png
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 296 x 126, 8-bit/color RGBA, non-interlaced\012- data
Hash e40c0040549ce694364e55403a1b43b7
a27f44822135c52024d21199e1eb52fdc6b1b230
58d68112992d7e7486339bcad820a5c95abe3c70d4ea1cd6b550647aa1edf4b4
GET /cidadania23pr/public/modules/rotativo/imgs/rotativo_62e3f1a0d1092.png HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:31 GMT
Server: Apache
Last-Modified: Fri, 29 Jul 2022 14:41:36 GMT
Content-Length: 20019
Content-Type: image/png
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50408590
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/fonts/fontawesome-webfont.woff
191.252.51.11404 Not Found 3.5 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/fonts/fontawesome-webfont.woff
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash c7c7fed3c8ffab87e252a0570665beb6
7a5fa2c476b45fef0c5a21831a57d7ee6da53d9a
05770396c21edca9ae8bdceeee3f8e962d14ee7988609f67fbd1f2040a6b6227
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/fonts/fontawesome-webfont.woff HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/public/css/uikit.css
HTTP/1.1 404 Not Found
Date: Fri, 27 Jan 2023 00:36:31 GMT
Server: Apache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f64ad5e35c.png
191.252.51.11200 OK 22 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f64ad5e35c.png
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 295 x 125, 8-bit/color RGBA, non-interlaced\012- data
Hash e424d913f5443c71dced0acc7747cc0b
ba707efaa11e22d0ec169fc7f57e4af3543d1aee
344e65c45f2b4800f8664973392c3dd097ae0fbbc6a7eccbf855339b43c9de10
GET /cidadania23pr/public/modules/rotativo/imgs/rotativo_5d2f64ad5e35c.png HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:32 GMT
Server: Apache
Last-Modified: Wed, 17 Jul 2019 18:10:46 GMT
Content-Length: 22104
Content-Type: image/png
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 48621193
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/coordenacao-estadual-de-mulheres.jpg
191.252.51.11200 OK 42 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/coordenacao-estadual-de-mulheres.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=510, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1182], baseline, precision 8, 294x127, components 3\012- data
Hash 780d0f4f41f387b2a1f800d7c91a34de
aff0b74316dde0cdcd7b77e869b371fa55848ffa
93c9bd1c5398e64d5ab6ae44e2a15ccb5438b378f410472cf3d0bda6667d9ba4
GET /cidadania23pr/public/modules/site/imgs/coordenacao-estadual-de-mulheres.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:32 GMT
Server: Apache
Last-Modified: Tue, 22 Oct 2019 20:04:22 GMT
Content-Length: 42162
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50408592
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
yt3.ggpht.com/ytc/AL5GRJWnaKr6kZD6OCm_Jx0U0zJoyAmJ8E4DyL6xg15BeA=s68-c-k-c0x00ffffff-no-rj
142.250.74.129200 OK 3.4 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJWnaKr6kZD6OCm_Jx0U0zJoyAmJ8E4DyL6xg15BeA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash ac11aa1524bedfdd983efe3247ffc0e9
f10dc84b9d4198d4e110df3fd5ab80fea09ffffe
d05f2c4c07ce9e95a3bf8365b794b791b1385b3687fbb716eea6fb36a806ccf2
GET /ytc/AL5GRJWnaKr6kZD6OCm_Jx0U0zJoyAmJ8E4DyL6xg15BeA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vb7"
expires: Sat, 28 Jan 2023 00:36:32 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 00:36:32 GMT
server: fife
content-length: 3377
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5f57a83befb5510821576265e691190f
136d15f2cbbc6416d808afcb8f48a19b346937fc
b3d3b78aaea9273c95224d6242a3817bac9be7fc46800e741da32bba13db5fa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/_ciwV4C-UQW1UoenwCNU8wv-6ghu718XlEGuxfocGM0bWcu3msm8Qme9rvbXQv8TUgOfvngbfA=s68-c-k-c0x00ffffff-no-rj
142.250.74.129200 OK 4.5 kB URL HTTP/2 yt3.ggpht.com/_ciwV4C-UQW1UoenwCNU8wv-6ghu718XlEGuxfocGM0bWcu3msm8Qme9rvbXQv8TUgOfvngbfA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash dc0c33a082f0545573941dcd208a3fb0
2725bdfbb9323c584ac25a462c54cabeb4e60f6c
a4e20922e4d7da760d2447edbe5981eb7ca62f1c071bc9bd48ce5e25df20dd66
GET /_ciwV4C-UQW1UoenwCNU8wv-6ghu718XlEGuxfocGM0bWcu3msm8Qme9rvbXQv8TUgOfvngbfA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sat, 28 Jan 2023 00:36:32 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 00:36:32 GMT
server: fife
content-length: 4531
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.cidadania23pr.org.br/cidadania23pr/public/img/assinatura_escuro.png
191.252.51.11200 OK 4.5 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/img/assinatura_escuro.png
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 145 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash b223b431aa19ba958767f5b866a5ef88
3ee6f7d9aa0c710c975647310234d556d0dd485f
52eb743ccfd50e35c042531a357a0504e074fb0e7a9c2d8e70106f0215330eaa
GET /cidadania23pr/public/img/assinatura_escuro.png HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:32 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:05:15 GMT
Content-Length: 4538
Content-Type: image/png
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 49168750
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_5a2fcef2283eb.png
191.252.51.11200 OK 20 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/rotativo/imgs/rotativo_5a2fcef2283eb.png
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 295 x 125, 8-bit/color RGBA, non-interlaced\012- data
Hash 44636a6ef153809ee8ec29889eb41616
4ad7f7276ebc2f8c12cb5c5257b1d0f215c5a48b
cc974efefa6f80bd70f228795aa529c90bb06551533cf7734b6f14c61e3f5bfa
GET /cidadania23pr/public/modules/rotativo/imgs/rotativo_5a2fcef2283eb.png HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:32 GMT
Server: Apache
Last-Modified: Tue, 12 Dec 2017 12:43:19 GMT
Content-Length: 20010
Content-Type: image/png
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50664700
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/tv-pps.jpg
191.252.51.11200 OK 58 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/tv-pps.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 828x602, components 3\012- data
Hash 4fac6dd8adf0598cc5a31dfa95183b7d
41128b5f963382f7604f8db4594fa7636d69690d
4683680ffe464432c75b490a2bd285a0af651660e2dbd330897d442b715190fe
GET /cidadania23pr/public/modules/site/imgs/tv-pps.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:32 GMT
Server: Apache
Last-Modified: Tue, 22 Oct 2019 21:47:29 GMT
Content-Length: 58408
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 46488950
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
widget.sndcdn.com/widget-0-6877eba4e735.js
54.230.111.7200 OK 57 kB URL HTTP/2 widget.sndcdn.com/widget-0-6877eba4e735.js
IP 54.230.111.7:0
File type Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
Hash 0e05fd264c0e5582892aa079182d90b5
0edcb172582b312cc3e927f22ad6e104eddc90f4
69fb30a331c52e046115138ca29f3588f7e55fb6b4b8bed62d27f11d183ce7ce
GET /widget-0-6877eba4e735.js HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Mon, 23 Jan 2023 12:06:42 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 23 Jan 2023 12:01:47 GMT
etag: W/"473aed1ed9ac9846be4bf9d37692fc58"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: QY7umRKHdE0oiYOE9MNnE0ch6flUMmg2
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fR1cKEH7Fu-RWlCDG3B3-YXEYOAeMmmzEdOP9zz0ybEo60qRtJf51A==
age: 304191
X-Firefox-Spdy: h2
www.cidadania23pr.org.br/cidadania23pr/public/fonts/fontawesome-webfont.ttf
191.252.51.11404 Not Found 3.5 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/fonts/fontawesome-webfont.ttf
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash c7c7fed3c8ffab87e252a0570665beb6
7a5fa2c476b45fef0c5a21831a57d7ee6da53d9a
05770396c21edca9ae8bdceeee3f8e962d14ee7988609f67fbd1f2040a6b6227
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/fonts/fontawesome-webfont.ttf HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/public/css/uikit.css
Cookie: PHPSESSID=65orlrid095lgsc16hiokp2q52
HTTP/1.1 404 Not Found
Date: Fri, 27 Jan 2023 00:36:32 GMT
Server: Apache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.youtube.com/embed/_fSjejbVlSk
142.250.74.110200 OK 32 kB URL HTTP/2 www.youtube.com/embed/_fSjejbVlSk
IP 142.250.74.110:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58636)
Hash 3bc2b35c5395ee9d1d1fc1620b49709b
22355abb6f9f2643a8cab06995a6eeecb208bb0b
9a30fd5ea7acc119505a416f1d5135998f5f182faf3de8446ca14e8b768fd359
GET /embed/_fSjejbVlSk HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 27 Jan 2023 00:36:29 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Qxb4KMO5p3A; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=it17oebBNW8; Domain=.youtube.com; Expires=Wed, 26-Jul-2023 00:36:29 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TXpFeU5EUXlNemd3TmpBM01UQXlOUT09EI25zJ4GGI25zJ4G; Domain=.youtube.com; Expires=Wed, 26-Jul-2023 00:36:29 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+549; expires=Sun, 26-Jan-2025 00:36:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/jornal-23.jpg
191.252.51.11200 OK 48 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/jornal-23.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=544, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1182], baseline, precision 8, 276x127, components 3\012- data
Hash 03eb9568859e41dc83100cbcf5df86ee
a04d1b2cfa3f3f82cee70a4228417028c6242715
9bf74941aa27679cfa6ddc0e3be2cb586dee3ed9c628a10ba0754fbd996f1d4b
GET /cidadania23pr/public/modules/site/imgs/jornal-23.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:32 GMT
Server: Apache
Last-Modified: Tue, 22 Oct 2019 19:20:02 GMT
Content-Length: 48275
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 47175999
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
api-widget.soundcloud.com/users/14339822/tracks?limit=20&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1674475286
54.230.110.40200 OK 2.3 kB URL HTTP/1.1 api-widget.soundcloud.com/users/14339822/tracks?limit=20&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1674475286
IP 54.230.110.40:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (12649), with no line terminators
Hash 93e69b563d60b9a83ae5c621f2f8de8d
e6a608c01e058f308c939f071f93e2c92fe10d91
1e0c5edd04e9c7afcc648d0464f634767710204716a174ba116387a629be16ae
GET /users/14339822/tracks?limit=20&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1674475286 HTTP/1.1
Host: api-widget.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 2307
Connection: keep-alive
Date: Fri, 27 Jan 2023 00:36:33 GMT
x-px-score: 0
x-datadome: protected
accept-ch: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=2piC4aDJy3jT~yCj5JX7Z9UJ9EJEEtaPcmPUgIrtg9DHDAhTIjnmaWDMNoyRJ8dbZtj8WjZya6YJSkBk476Q_4jK-3A6MO_sBOQKvdOFqqz5cDGR00Eb7ZKhHn~cPmU-; Max-Age=31536000; Domain=.soundcloud.com; Path=/; Secure; SameSite=Lax
x-robots-tag: noindex
Cache-Control: private, max-age=0
referrer-policy: no-referrer
x-frame-options: DENY
access-control-max-age: 1728000
x-content-type-options: nosniff
access-control-allow-origin: https://w.soundcloud.com
access-control-allow-headers: Authorization, Content-Type, Device-Locale, X-CSRF-Token
access-control-allow-methods: DELETE, GET, PATCH, POST, PUT
access-control-expose-headers: Date
access-control-allow-credentials: true
Content-Encoding: gzip
strict-transport-security: max-age=63072000
Server: am/2
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mfugks_SwjGevX8i2ABmPlQgx6RAQUk01KBVJRajNVzglDS1cTdtYw==
www.cidadania23pr.org.br/cidadania23pr/public/uikit/js/core/modal.min.js?_=1674779789639
191.252.51.11200 OK 6.6 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/uikit/js/core/modal.min.js?_=1674779789639
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type ASCII text, with very long lines (6470)
Hash e2ed2d8e32e5cfb10a4ebf4ae2ffdf74
a0d13ddd5c2fc5d63fe804c5feadfc37d1e9c247
70169be68b64e8424ba9eefe5e8b985d66590ae0721258e1c71002fe6d719241
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/uikit/js/core/modal.min.js?_=1674779789639 HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
Cookie: PHPSESSID=65orlrid095lgsc16hiokp2q52
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:33 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:08:04 GMT
Content-Length: 6550
Content-Type: application/x-javascript
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 46488952
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
widget.sndcdn.com/widget-2-ed5f595f228b.js
54.230.111.7200 OK 20 kB URL HTTP/2 widget.sndcdn.com/widget-2-ed5f595f228b.js
IP 54.230.111.7:0
Hash 9460c2976f94ddd8d080a3adffac24f2
0ed29906bc1774901622dbe0daec35fa6c2b5762
a6e2eaa24aa8584a62928d18a00dea3c142d7277845421dbed42b0b028ab76d6
GET /widget-2-ed5f595f228b.js HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 30 Nov 2022 06:38:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 24 Nov 2022 13:01:40 GMT
etag: W/"e5d3ced174a397326da8f5f186af0f35"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: _ybg8WQwLeGP_w1nhcRxWz9NJA2drjkx
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9UcVf6ljiPs7NJBa6C91_oFzvvZc_DgrcEEkLCQ4-QbKqlb7xZ_mZg==
age: 4989459
X-Firefox-Spdy: h2
i1.sndcdn.com/avatars-000711279250-qsecv7-t50x50.jpg
54.230.111.47200 OK 1.0 kB URL HTTP/2 i1.sndcdn.com/avatars-000711279250-qsecv7-t50x50.jpg
IP 54.230.111.47:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash d14f7d07ca56f9164db6183daa23272f
8cde7c72fa9ee83788769a88c9551be56db83bc5
2b07bfdb174cae9d98a7005f4c2fec0bf35e411dc6179bb0f2226ddffc8504db
GET /avatars-000711279250-qsecv7-t50x50.jpg HTTP/1.1
Host: i1.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1008
access-control-allow-headers: Accept, Accept-Encoding, Authorization, Content-Type, Origin
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public,max-age=173083
date: Thu, 26 Jan 2023 16:31:14 GMT
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UEeIPwZftlPaTIiq8_rw_kjWj7PA5ClaC5HOKQdWjw4pKl_ADtOCmA==
age: 29119
X-Firefox-Spdy: h2
www.youtube.com/embed/oeRstmV4Ixo
142.250.74.110200 OK 28 kB URL HTTP/2 www.youtube.com/embed/oeRstmV4Ixo
IP 142.250.74.110:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58640)
Hash 7a45c16ed1bb393c9b890d2a73e2c8fe
9490f4dba5f97dab4e1dde2b9fdcca77db47dcca
24a450e68e55f7962b6489770bbb4df51c8dd85345398432ebca301943ba079d
GET /embed/oeRstmV4Ixo HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 27 Jan 2023 00:36:30 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=XKHwb-YABW4; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TXpFeU5EUXlOek0yTnpBMU9URXpOdz09EI65zJ4GGI65zJ4G; Domain=.youtube.com; Expires=Wed, 26-Jul-2023 00:36:30 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=wruOXGi_J7k; Domain=.youtube.com; Expires=Wed, 26-Jul-2023 00:36:30 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+126; expires=Sun, 26-Jan-2025 00:36:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i1.sndcdn.com/avatars-000711279250-qsecv7-t20x20.jpg
54.230.111.47200 OK 494 B URL HTTP/2 i1.sndcdn.com/avatars-000711279250-qsecv7-t20x20.jpg
IP 54.230.111.47:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 20x20, components 3\012- data
Hash 7485298c0486af8fd8d2cad74af2d4dd
361a73906c99e22cb9006492cf81b8c241c6527b
3416ff20021be7c30e3e99dda1d20358316483aa9c383788895b8557bca59767
GET /avatars-000711279250-qsecv7-t20x20.jpg HTTP/1.1
Host: i1.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 494
access-control-allow-headers: Accept, Accept-Encoding, Authorization, Content-Type, Origin
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public,max-age=447213
date: Thu, 26 Jan 2023 16:31:14 GMT
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XUgINqM7RdoszbNjSKG0j1GctYwazQoa9dIBBH4jqtlneBBoM6f8SQ==
age: 29119
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 28 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash 8aa708f5eebf10bd82e942dabf1623a5
326a6d469222302a80ecf29039e7837d8870ee47
fcfdc2930fdd7f4b3c7f0c1308ce2e89fcc5082ae6a0a1e16ecf0f7e417f1368
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 554
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Fri, 27 Jan 2023 00:36:33 GMT
Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71E)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 27630
connect.facebook.net/pt_BR/sdk.js
157.240.205.11301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/pt_BR/sdk.js
IP 157.240.205.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pt_BR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/pt_BR/sdk.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Fri, 27 Jan 2023 00:36:33 GMT
Connection: keep-alive
Content-Length: 0
www.cidadania23pr.org.br/cidadania23pr/public/uikit/fonts/fontawesome-webfont.woff2
191.252.51.11200 OK 67 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/uikit/fonts/fontawesome-webfont.woff2
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/uikit/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/public/uikit/css/uikit.min.css
Cookie: PHPSESSID=65orlrid095lgsc16hiokp2q52
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:33 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 21:06:29 GMT
ETag: "533907-10440-5343ddd007f40"
Accept-Ranges: bytes
Content-Length: 66624
Connection: close
Content-Type: text/plain
i1.sndcdn.com/avatars-000711279250-qsecv7-t200x200.jpg
54.230.111.47200 OK 6.6 kB URL HTTP/2 i1.sndcdn.com/avatars-000711279250-qsecv7-t200x200.jpg
IP 54.230.111.47:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 7384dc8e00102a4f67e8bfe723ff60fc
22515ff57b1920c1cde46332e60d45df812ac1f1
4891d29dd5ca8a004f697918093e577ee644a9a5b3453577baec631e360c0224
GET /avatars-000711279250-qsecv7-t200x200.jpg HTTP/1.1
Host: i1.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6600
access-control-allow-headers: Accept, Accept-Encoding, Authorization, Content-Type, Origin
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public,max-age=3032919
date: Thu, 26 Jan 2023 16:31:14 GMT
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pZowLNsk6lbqQxuyoYK64KG62sCOA6yxf5zUh3KEgP_B2rFaG7bjJg==
age: 29119
X-Firefox-Spdy: h2
widget.sndcdn.com/assets/images/share-4d6d0315.svg
54.230.111.7200 OK 1.3 kB URL HTTP/2 widget.sndcdn.com/assets/images/share-4d6d0315.svg
IP 54.230.111.7:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (449), with CRLF line terminators
Hash e2febe1dffc89eedc7a4173da09ae49b
f757088bb16835fdd416e6055c1fcf4c8e70c201
a9124b42036eed86e375c7acfa9bf6756fc829cd36f863d2163523edec375950
GET /assets/images/share-4d6d0315.svg HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1270
date: Mon, 28 Nov 2022 13:53:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 24 Nov 2022 13:01:44 GMT
etag: "e2febe1dffc89eedc7a4173da09ae49b"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: k9DKKZGhmsBwTR2tfdga6DFLORuUTk6P
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RZQT3_qKBlMuL5OE0qfeAG9ERIE26NbuZBernlF4oXkbQ3vp5nRn1A==
age: 5136175
X-Firefox-Spdy: h2
www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/icon-pps.ico
191.252.51.11200 OK 4.1 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/site/imgs/icon-pps.ico
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type MS Windows icon resource - 1 icon, 50x50\012- data
Hash 873efeab564dcb07c44b1c9fc5319660
f42f40e5f6ac18d810d55d480195b2b6816e7edb
a6cad2c37236ef4ba61fc2e587a3121b8ddec8c01788077cfa42e98e1388c685
Analyzer Verdict Alert fortinet Phishing
GET /cidadania23pr/public/modules/site/imgs/icon-pps.ico HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
Cookie: PHPSESSID=65orlrid095lgsc16hiokp2q52
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:33 GMT
Server: Apache
Last-Modified: Mon, 15 Jul 2019 20:53:41 GMT
ETag: "53d663-ff6-58dbe74812bd8"
Accept-Ranges: bytes
Content-Length: 4086
Connection: close
Content-Type: image/x-icon
wave.sndcdn.com/EN7gdce4UhXG_m.json
54.230.111.119200 OK 1.9 kB URL HTTP/1.1 wave.sndcdn.com/EN7gdce4UhXG_m.json
IP 54.230.111.119:0
File type JSON data\012- , ASCII text, with very long lines (6485)
Hash 4e8bf35b40eaca20adfef23ae93cfe2b
2e05e49203aba2e8a583ee74f3375da4688ae5ff
ba14422b576c664fd3be7a30311418b0d3e46078392be60aeb67fb34ad8619a8
GET /EN7gdce4UhXG_m.json HTTP/1.1
Host: wave.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1905
Connection: keep-alive
access-control-allow-headers: Accept, Accept-Encoding, Authorization, Content-Type, Origin
access-control-allow-methods: GET
access-control-allow-origin: *
Cache-Control: public, max-age=155520000
Content-Encoding: gzip
Date: Wed, 25 Jan 2023 14:11:42 GMT
Server: am/2
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8iMYI9dHo_yvYog9m8XkAoiyEq3Z04aWQ98VB9DXuK5MGtSH8u4vpw==
Age: 123891
platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Fwww.cidadania23pr.org.br
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Fwww.cidadania23pr.org.br
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166)
Size 105 kB (105435 bytes)
Hash 58f06e7d628e7e207cad8e48c9cc76be
9042f057d52be00c9535ce93b0ce4c03707e0c41
ea6c34f2e7acfea93ba722fe283f2704392dc518c9a0d1eeca0ba03a0b63d789
GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Fwww.cidadania23pr.org.br HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 183198
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 27 Jan 2023 00:36:33 GMT
Etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105435
api-widget.soundcloud.com/tracks/869999329/comments?filter_replies=1&threaded=0&limit=100&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1674475286
54.230.110.40200 OK 73 B URL HTTP/1.1 api-widget.soundcloud.com/tracks/869999329/comments?filter_replies=1&threaded=0&limit=100&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1674475286
IP 54.230.110.40:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e1749856880b8ec0697525b699df09b4
47f1428570f9417136aaea576de46339030e0db2
46eeeec2a4e21c9912ddb687ceb62e3e323e915fe9b4777027a80bc7ca8f1042
GET /tracks/869999329/comments?filter_replies=1&threaded=0&limit=100&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1674475286 HTTP/1.1
Host: api-widget.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 73
Connection: keep-alive
Date: Fri, 27 Jan 2023 00:36:33 GMT
x-px-score: 0
x-datadome: protected
accept-ch: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=0MhzEAiKFNNz06T70piS8n3ObFkrdYZct3hkV2DlDwpuJfLtpx9U_ir4xtuowjkOg8-b5gOrxSxD3hCQOg-PmbW5Sk1cS-lQAn91j8eID8nuq~Spcyfzt5~2850zAhPL; Max-Age=31536000; Domain=.soundcloud.com; Path=/; Secure; SameSite=Lax
x-robots-tag: noindex
Cache-Control: private, max-age=0
referrer-policy: no-referrer
x-frame-options: DENY
access-control-max-age: 1728000
x-content-type-options: nosniff
access-control-allow-origin: https://w.soundcloud.com
access-control-allow-headers: Authorization, Content-Type, Device-Locale, X-CSRF-Token
access-control-allow-methods: DELETE, GET, PATCH, POST, PUT
access-control-expose-headers: Date
access-control-allow-credentials: true
Content-Encoding: gzip
strict-transport-security: max-age=63072000
Server: am/2
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ai0tSaax54jNBDIsfruxTn-kIPBCc8Pl3p5M1Pl3n5RUBNq99hoNPA==
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 37dce3efd55b962e0d26fdc3a1033e22
6453d72e70e36bd37ca1744d85ec9ca549629cf2
0b8f3eab1044d6159677c241e96e244f10d78fe339d37c94e65f8495b216f3bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3502
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:33 GMT
Last-Modified: Thu, 26 Jan 2023 23:38:11 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/pt_BR/sdk.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/pt_BR/sdk.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash 709302e3a1119b9e8e6f7f47c89e6926
e44903cd6d1f31505668329b78934674d439817b
1d519447d68a8b95d7ffd784273c5a262aa114fc7532c663f57bb750b824c05b
GET /pt_BR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cidadania23pr.org.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 463157793f8f113c88acb4d0265cf732
etag: "31cb1fdc1fc0ee457bf5e800ad6acfea"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 27 Jan 2023 00:36:53 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: cJMC46ERm56Ob39HyJ5pJg==
x-fb-debug: /IuEU7gOVzqkITIxKZPDS4fxVHBLAbnmhYb7j9/XyjLyVChICpYDzJP4Lrp4kyA0oAp64nmFbCOOUtotdv5J4A==
content-length: 1687
x-fb-trip-id: 1679558926
date: Fri, 27 Jan 2023 00:36:33 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 594cb8522bea0b5309300fba4197a08c
c350a87d21f9605a28f95be4e2967e59910fcb4a
de43ad5284129bca3af6fe93daef19c72ba44ebe012e2cd8d3a1bcae66675180
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5720
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:33 GMT
Last-Modified: Thu, 26 Jan 2023 23:01:13 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 37dce3efd55b962e0d26fdc3a1033e22
6453d72e70e36bd37ca1744d85ec9ca549629cf2
0b8f3eab1044d6159677c241e96e244f10d78fe339d37c94e65f8495b216f3bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3502
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:36:33 GMT
Last-Modified: Thu, 26 Jan 2023 23:38:11 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230118134545_63c8223a105bf.jpg
191.252.51.11200 OK 50 kB URL HTTP/1.1 www.cidadania23pr.org.br/cidadania23pr/public/modules/noticias/imagens/20230118134545_63c8223a105bf.jpg
IP 191.252.51.11:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x1280, components 3\012- data
Hash 26b4ed78c1583963243a0e9a11623eff
8b30f79fe1c5094d66e2f1345ee82592996a43e7
b804b5bc74cc82a2795cf4649d8b30ca6755ead1aad76e5cca24a4c8f6e7736b
GET /cidadania23pr/public/modules/noticias/imagens/20230118134545_63c8223a105bf.jpg HTTP/1.1
Host: www.cidadania23pr.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/cidadania23pr/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 00:36:29 GMT
Server: Apache
Last-Modified: Wed, 18 Jan 2023 16:45:44 GMT
Content-Length: 49816
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 50571875
Age: 0
Via: 1.1 varnish-v4
Accept-Ranges: bytes
Connection: keep-alive
connect.facebook.net/pt_BR/sdk.js?hash=9877415e50cd6a746a18d33828ecf46a
157.240.205.11200 OK 88 kB URL HTTP/2 connect.facebook.net/pt_BR/sdk.js?hash=9877415e50cd6a746a18d33828ecf46a
IP 157.240.205.11:0
File type ASCII text, with very long lines (18530)
Hash 9452d55909db4df7abd76d0851959f95
ecc64bd26064bda887d1f7dc412380a55af12ad9
5b8c657ea0212693810e51ba5ab4618aac488b3b46532ae35a9bd28839c2f75a
GET /pt_BR/sdk.js?hash=9877415e50cd6a746a18d33828ecf46a HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.cidadania23pr.org.br
Connection: keep-alive
Referer: http://www.cidadania23pr.org.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 29eb35f90504a330eedf9c4da56fe037
etag: "4409b6ff9e11e75dd5e86b631b02a3ca"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 26 Jan 2024 22:17:02 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: lFLVWQnbTfer120IUZWflQ==
x-fb-debug: IaTSvbOcDcMLo7wurjuzDTf9EIC/A3kkQf73kBlWsxwiMNsCvIgDYjv3pgOl/8jKH/KbvTIbGcJ2dS3Q84JquQ==
content-length: 88454
x-fb-trip-id: 1679558926
date: Fri, 27 Jan 2023 00:36:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=f2ddbe9757e19c5d4b2c2b6aac8675e355c4be86
104.244.42.200200 OK 326 B URL HTTP/2 syndication.twitter.com/settings?session_id=f2ddbe9757e19c5d4b2c2b6aac8675e355c4be86
IP 104.244.42.200:0
File type JSON data\012- , ASCII text, with very long lines (919), with no line terminators
Hash 11f6a2d6bb52340b52d53f9cf72973e8
ea0c3e5d850a2659b3344d84957b691a6f7942b8
a0b2545f4adeaf91f7a23b95f43c682557bdfd1e59d2cf394d10a01f97c886ff
GET /settings?session_id=f2ddbe9757e19c5d4b2c2b6aac8675e355c4be86 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 00:36:33 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Fri, 27 Jan 2023 00:36:33 GMT
content-length: 326
content-encoding: gzip
x-transaction-id: dc67ed0f366860cd
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 107
x-connection-hash: 6f2abc4a788d2ac82e94ed5188175953d83376f5e7eba7dc55695b21773f03fb
X-Firefox-Spdy: h2
widget.sndcdn.com/widget-8-d3b6814c549b.js
54.230.111.7200 OK 0 B URL HTTP/2 widget.sndcdn.com/widget-8-d3b6814c549b.js
IP 54.230.111.7:0
GET /widget-8-d3b6814c549b.js HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Mon, 23 Jan 2023 12:06:40 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 23 Jan 2023 12:01:48 GMT
etag: W/"436e714eca582a976cb14e21e7555b83"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: yU8og9.ju8zmryuAcZOCQwk.CsTavo0P
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yPgyNTgEnM2L4clw5rQwHd2In3iH2fhKXikYcoTu_c8MvDpHUP8wUw==
age: 304190
X-Firefox-Spdy: h2
widget.sndcdn.com/widget-9-56b3a2c663db.js
54.230.111.7200 OK 0 B URL HTTP/2 widget.sndcdn.com/widget-9-56b3a2c663db.js
IP 54.230.111.7:0
GET /widget-9-56b3a2c663db.js HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Mon, 23 Jan 2023 12:06:41 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 23 Jan 2023 12:01:48 GMT
etag: W/"0fe159c6b9cdb825016b13e24c0140d5"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: m2SrB4n3eUkRtSSDf_tG0c7nffO03e3V
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xVMZAuyDi-EnSlkJSie6XNqHWDX_SAyjA8BavN65tr0dMxL19vNthg==
age: 304190
X-Firefox-Spdy: h2
www.flickr.com/badge_code_v2.gne?count=6&display=latest&size=m&layout=x&source=user&user=140459041@N04
54.230.241.124404 Not Found 0 B URL HTTP/2 www.flickr.com/badge_code_v2.gne?count=6&display=latest&size=m&layout=x&source=user&user=140459041@N04
IP 54.230.241.124:0
GET /badge_code_v2.gne?count=6&display=latest&size=m&layout=x&source=user&user=140459041@N04 HTTP/1.1
Host: www.flickr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cidadania23pr.org.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
date: Fri, 27 Jan 2023 00:36:27 GMT
server: Apache/2.4.55 (Ubuntu)
set-cookie: xb=503210; expires=Mon, 24-Jan-2033 00:36:27 GMT; Max-Age=315360000; path=/; domain=.flickr.com
localization=en-us%3Bno%3Bno; expires=Fri, 24-Jan-2025 00:36:27 GMT; Max-Age=62899200; path=/; domain=.flickr.com
flrbp=1674779787-8dffb37daea997180d359e71700a0abae4d458b6; expires=Wed, 26-Jul-2023 00:36:27 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrbgrp=1674779787-c7755b7970ab4a4f68e8dad5c3c12bd34d54fc5a; expires=Wed, 26-Jul-2023 00:36:27 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrbgdrp=1674779787-187d819a1fbba946063209b8c0dd2d339bc70a77; expires=Wed, 26-Jul-2023 00:36:27 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrbgmrp=1674779787-ffcff0f8d06ae7f88675b6c6e9a8c85f9a5c78ff; expires=Wed, 26-Jul-2023 00:36:27 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrbrst=1674779787-bb7547e3f95f7de38befd09935f05536afbf80aa; expires=Wed, 26-Jul-2023 00:36:27 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrtags=1674779787-85316be89db5ef991494b0cf6a35182ca49668ee; expires=Wed, 26-Jul-2023 00:36:27 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrbrp=1674779787-75e9ba667f4a97c8e56ceb6e2655cb32e7ee7dd9; expires=Wed, 26-Jul-2023 00:36:27 GMT; Max-Age=15552000; path=/; domain=.flickr.com; HttpOnly
flrb=48; expires=Fri, 27-Jan-2023 01:36:27 GMT; Max-Age=3600; path=/; domain=.flickr.com; HttpOnly
ccc=%7B%22needsConsent%22%3Afalse%2C%22managed%22%3A0%2C%22changed%22%3A0%2C%22info%22%3A%7B%22cookieBlock%22%3A%7B%22level%22%3A0%2C%22blockRan%22%3A0%7D%7D%7D; expires=Sun, 26-Feb-2023 00:36:27 GMT; Max-Age=2592000; path=/; domain=.flickr.com
content-security-policy: style-src 'unsafe-inline' https://*.flickr.com https://*.staticflickr.com https://*.flickr.net https://*.braintreegateway.com https://*.kaptcha.com https://*.paypal.com http://api.flickr.com https://*.pinterest.com https://connect.facebook.net https://*.facebook.com https://*.maps.api.here.com https://*.maps.cit.api.here.com https://cdn.siftscience.com https://tpc.googlesyndication.com https://securepubads.g.doubleclick.net https://adservice.google.com https://cdn.ampproject.org https://trustarc.mgr.consensu.org/ https://*.trustarc.com; default-src https://*.flickr.com https://*.staticflickr.com https://*.flickr.net https://*.braintreegateway.com https://*.kaptcha.com https://*.paypal.com http://api.flickr.com https://*.pinterest.com https://connect.facebook.net https://*.facebook.com https://*.maps.api.here.com https://*.maps.cit.api.here.com https://cdn.siftscience.com https://tpc.googlesyndication.com https://securepubads.g.doubleclick.net https://adservice.google.com https://cdn.ampproject.org https://trustarc.mgr.consensu.org/ https://*.trustarc.com; img-src data: blob: https://*.flickr.com https://*.flickr.net http://*.flickr.net https://*.staticflickr.com http://*.staticflickr.com https://*.yimg.com https://*.yahoo.com https://image.maps.api.here.com https://*.paypal.com https://*.pinterest.com http://*.static-alpha.flickr.com https://connect.facebook.net https://*.facebook.com https://*.maps.api.here.com https://*.maps.cit.api.here.com https://creativecommons.org https://hexagon-analytics.com https://*.2o7.net https://tagmanager.google.com https://www.googletagmanager.com https://*.google.com https://*.google-analytics.com https://*.googleadservices.com https://*.googlesyndication.com https://*.doubleclick.com https://*.doubleclick.de https://*.doubleclick.net https://*.googletagservices.com https://*.googleadservices.com https://*.googlesyndication.com https://*.googleapis.com https://api.mapbox.com https://*.trustarc.com; media-src https://*.flickr.com https://*.flickr.net http://*.flickr.net https://*.staticflickr.com https://*.yahoo.com; script-src 'unsafe-inline' 'unsafe-eval' 'nonce-4ba9f8e9a8956d5d681ff29162770334' https://*.flickr.com http://*.flickr.net https://*.flickr.net https://*.staticflickr.com https://*.analytics.yahoo.com https://yep.video.yahoo.com https://video.media.yql.yahoo.com https://*.yahooapis.com https://*.braintreegateway.com https://*.paypalobjects.com https://connect.facebook.net https://*.facebook.com https://*.maps.api.here.com https://*.maps.cit.api.here.com https://cdn.siftscience.com https://assets.adobedtm.com https://securepubads.g.doubleclick.net https://adservice.google.com https://cdn.ampproject.org https://*.google.com https://*.google-analytics.com https://*.googleadservices.com https://*.googlesyndication.com https://*.doubleclick.com https://*.doubleclick.de https://*.doubleclick.net https://*.googletagservices.com https://*.googleadservices.com https://*.googlesyndication.com https://*.googleapis.com https://consent.trustarc.com https://trustarc.mgr.consensu.org https://www.googletagmanager.com; connect-src https://*.flickr.com https://*.flickr.net http://*.flickr.net https://*.staticflickr.com https://geo.query.yahoo.com https://*.yahooapis.com http://api.flickr.com https://*.pinterest.com http://*.yahoo.com https://*.maps.api.here.com https://*.maps.cit.api.here.com https://cdn.siftscience.com https://*.demdex.net https://securepubads.g.doubleclick.net https://*.trustarc.com https://com-flickr-prod1.mini.snplow.net; frame-ancestors https://*.flickr.com;
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-cache: Error from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GTT-4i_7bSWAd0HjMLQQYy2hpT-HlgDTXi9ALkPsLNSds5E3d05DGQ==
X-Firefox-Spdy: h2
www.youtube.com/s/player/4248d311/player_ias.vflset/en_US/base.js
142.250.74.110200 OK 0 B URL HTTP/2 www.youtube.com/s/player/4248d311/player_ias.vflset/en_US/base.js
IP 142.250.74.110:0
GET /s/player/4248d311/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/_fSjejbVlSk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 611243
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 09:27:07 GMT
expires: Wed, 24 Jan 2024 09:27:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/javascript
age: 227363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2