r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9687
Expires: Tue, 06 Dec 2022 13:49:21 GMT
Date: Tue, 06 Dec 2022 11:07:54 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1557
Cache-Control: max-age=85762
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:07:54 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 10:57:16 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9781
Expires: Tue, 06 Dec 2022 13:50:55 GMT
Date: Tue, 06 Dec 2022 11:07:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 10:18:38 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2956
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SLrSiBG5W0sUhHB/lmFCem0jYho7cNT1laIUYmVFv1KxmL0Qwt98npqcouTR3+DMFZpFE+EKP7Q=
x-amz-request-id: EJHX8G2K35XTJ2GA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 10:48:54 GMT
age: 1140
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 11:07:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.imperialadministradora.com.br/
186.202.153.3302 Found 226 B URL HTTP/1.1 www.imperialadministradora.com.br/
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c2f4e7b142e72a7252af84668dca8693
a8f0b146dad8ca14960479214d4c8095cd7a4c13
0d4db22b77b8d46fc413f0ee73f31163ad22b31e3b0b12af3fbec7c0d1741200
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Tue, 06 Dec 2022 11:07:54 GMT
Server: Apache
Location: https://www.imperialadministradora.com.br/
Content-Length: 226
Connection: close
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 10:08:58 GMT
cache-control: public,max-age=3600
age: 3537
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1511
Cache-Control: max-age=167046
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:07:55 GMT
Etag: "638f062a-1d7"
Expires: Thu, 08 Dec 2022 09:32:01 GMT
Last-Modified: Tue, 06 Dec 2022 09:06:50 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5b0d25de779a4588fc50d558d1fa6bef
f3b28b9cbcad94b4664448a5ed9980bebc3d2021
0c8b1c0166ce30c48d142af65fb1d6b0d497b254a04038b4caa090db2f2e1563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0C8B1C0166CE30C48D142AF65FB1D6B0D497B254A04038B4CAA090DB2F2E1563"
Last-Modified: Sun, 04 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 06 Dec 2022 17:07:55 GMT
Date: Tue, 06 Dec 2022 11:07:55 GMT
Connection: keep-alive
push.services.mozilla.com/
44.237.163.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.163.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hAF74rVVYFcHA+G7/pw+Fw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: U3O0CQKKjtxGv8jWqvb0wRed9DU=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:07:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:07:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Montserrat
142.250.74.106200 OK 972 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat
IP 142.250.74.106:0
Hash 2f5d84519fa253c265e2a7aceb3c20ea
9a36b4e25ed54796d1f1936bd7a3517e798aa5c8
5e0b2c8b1f8fbe83bfaec346b81c106837265aaf78e6f0f8f5d5c03970e763d4
GET /css?family=Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 11:07:56 GMT
date: Tue, 06 Dec 2022 11:07:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.imperialadministradora.com.br/
186.202.153.3200 OK 30 kB URL HTTP/1.1 www.imperialadministradora.com.br/
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3226)
Hash c4d34e7edcd9cb00ccfc443e2cb4c33b
4b314dad8a13036c0108598d3765fc1df342ca6c
63b8d2d4b2a3cc8ec928a33997808f749558cdd0f5e75acbf4de743291de4254
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:55 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7; path=/
Content-Length: 29576
Connection: close
Content-Type: text/html; charset=utf-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3ba864a4daffd79d4639e98e35cf5a8f
4e2dfdbff3ce773c1c39031bdf854e2b0a31131c
73a684466e34cc6ab4250dbab0c6afb73a92c4239e37076020b9e1c446b69b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:07:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-117268165-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-117268165-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash da25cb00442fd233525d4623039e0926
6049e4f864376c3232bf14c6ee1309b10bc21bdc
4b167d3c0da555fd6c75ba22ecc21d660a46ca6470d91f46039048e070db4075
GET /gtag/js?id=UA-117268165-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Dec 2022 11:07:56 GMT
expires: Tue, 06 Dec 2022 11:07:56 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43636
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3ba864a4daffd79d4639e98e35cf5a8f
4e2dfdbff3ce773c1c39031bdf854e2b0a31131c
73a684466e34cc6ab4250dbab0c6afb73a92c4239e37076020b9e1c446b69b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:07:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6868
Expires: Tue, 06 Dec 2022 13:02:24 GMT
Date: Tue, 06 Dec 2022 11:07:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6868
Expires: Tue, 06 Dec 2022 13:02:24 GMT
Date: Tue, 06 Dec 2022 11:07:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6868
Expires: Tue, 06 Dec 2022 13:02:24 GMT
Date: Tue, 06 Dec 2022 11:07:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e1b54923ba506fde6b21c5bfb51ccc8
366aa3ab0790c496ea51bc08d1f2ff3358530d9e
a993ca6dc9a1f854f4542f9221e4f90060825ea863974b5163a9d3e284dc4663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10594
x-amzn-requestid: eee9f193-eef5-44bf-997a-877fa206749e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSyIHpGoAMF1fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64da-0a9190f7698dbf2f73bb1575;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f-KQCOuDl461V8MBPsSOj1ILCU91Q0pCSENaldkMHR2oZdrEUnHeaA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:03:16 GMT
age: 47080
etag: "366aa3ab0790c496ea51bc08d1f2ff3358530d9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99d1ff8fa2e095dcf2bda3d1e1af1221
f914f04a0e1fb45a221d31d2105bfc73015b03e6
90325d4299a44dbd213857ada6f6880db8c33ad61685cfcb60c4a2455a84cf87
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10183
x-amzn-requestid: 557e6b38-7be9-4953-968b-2e5bd3491ef4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUDYEQbIAMFwRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e2-1fcd8fc4719bc0bc7d11abd2;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z1_zJTJMuk724WMOmIc660b54AyZK8ffNVF5N7ehZ00W2kaL3Lcd1A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:47:14 GMT
age: 48042
etag: "f914f04a0e1fb45a221d31d2105bfc73015b03e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b9928a3-5708-47a4-8d92-f3af8d54a81d.png
34.120.237.76200 OK 18 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b9928a3-5708-47a4-8d92-f3af8d54a81d.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4bbfe2037fd1658cad81b5b8e4d885c
9487451d24db59cc0f426410da2b55f94f3bb34b
2a124c75c6c90c5633f3538c8b84422262f81cb35d8f4cf4ed0032cc897a5ab9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b9928a3-5708-47a4-8d92-f3af8d54a81d.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 18490
x-amzn-requestid: f01c056f-b0bc-4833-9934-d0c37f4d701c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csS4wE5NIAMFQmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6504-1111ee0221c3c4165a9ef2ab;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:39:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8sBwcJAFNw2JBe2qoHD4ntHml-XB1ZMIELxC-rgfXwn5XTrg3-5R6A==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:45 GMT
age: 46931
etag: "9487451d24db59cc0f426410da2b55f94f3bb34b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38b97436af942d5eb1111ca7043259a0
0234fe32c84c4711f0619714f3ac6d3db1b717d3
a76a7721355abbaecd5c8cb5218e7e4626dc345eb26e7541c71bf4ceaa7ae5d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11175
x-amzn-requestid: 9c93ddca-1247-44af-a364-e617f69ace26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzYEnEoAMFa2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e2-7d38ea383725901524bc2ca0;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jqWuNfsDgPOsqxlX2HGJdhXm9GnGC-TBafSbSCrztICFgEwcyqc_iA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:22 GMT
age: 45934
etag: "0234fe32c84c4711f0619714f3ac6d3db1b717d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:23:09 GMT
age: 45887
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ca09fa3-9c1c-4e27-b763-2de04564da9d.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ca09fa3-9c1c-4e27-b763-2de04564da9d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73b9f329cd3a39d0756de62dd5f190b7
0f1c7567b89cc3de60196e47e37879296359bc78
e15711efe27a3d302a9869cf01d27fd65bd0beca9d03a19d93bbf11e28f3e1d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ca09fa3-9c1c-4e27-b763-2de04564da9d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4827
x-amzn-requestid: 9091cc45-8fb1-4b07-8ef9-3f42b85fb81e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSuYH_KIAMFpMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c2-6bf3bf8659ef3feb27c1803f;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fxdYE-ftBwC_0KcBJBQqvUbVXM54TmsKR8QXIfLIhdLYsqtaxdx9tg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:26 GMT
age: 45930
etag: "0f1c7567b89cc3de60196e47e37879296359bc78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.imperialadministradora.com.br/js/FuncoesJavaScript.js
186.202.153.3404 Not Found 1.2 kB URL HTTP/1.1 www.imperialadministradora.com.br/js/FuncoesJavaScript.js
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash cbdd9a43afd5994ea824c1682cc1c8a4
e3a3af13f71eda696eff68fba3b96bbaca4e6fca
84bcdd058b4546b446ad983e752fbec22df0c0850fd1af99a11d003c6b389cbf
Analyzer Verdict Alert fortinet Phishing
GET /js/FuncoesJavaScript.js HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 11:07:56 GMT
Server: Apache
Vary: accept-language,accept-charset
Accept-Ranges: bytes
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=iso-8859-1
Content-Language: en
www.imperialadministradora.com.br/css/Geral.css?t=1
186.202.153.3200 OK 14 kB URL HTTP/1.1 www.imperialadministradora.com.br/css/Geral.css?t=1
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
Hash 18887cb0f255d1d2749b80e67c7e2ef8
f195076ddd1c69a4c3862e7e2a34062897f19b14
447e10f1201709c3f8f342a3efb86f64ce457354f22f42ce441e9e6b846f7306
GET /css/Geral.css?t=1 HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:56 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:38:46 GMT
ETag: "c3f473-3715-5d693ca4b0339"
Accept-Ranges: bytes
Content-Length: 14101
Connection: close
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:07:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.imperialadministradora.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:41 GMT
expires: Tue, 05 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 58516
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:07:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.imperialadministradora.com.br/Imagens/ico_cliente.png
186.202.153.3200 OK 1.3 kB URL HTTP/1.1 www.imperialadministradora.com.br/Imagens/ico_cliente.png
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 25 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash 59473033bf10a18c9405dad990bd198b
4d2398416dc437e272610b28bef2fa692b88195d
4b0031e1a78f21e0c964bd8d232f489c1146a2f22b5cef55e5b92f401d6db29a
GET /Imagens/ico_cliente.png HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:40:35 GMT
ETag: "c3e794-51f-5d693d0d88ba8"
Accept-Ranges: bytes
Content-Length: 1311
Connection: close
Content-Type: image/png
www.imperialadministradora.com.br/Imagens/ico-lista.png
186.202.153.3200 OK 357 B URL HTTP/1.1 www.imperialadministradora.com.br/Imagens/ico-lista.png
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 25 x 21, 8-bit colormap, non-interlaced\012- data
Hash 374c378ae5b9eb5bacbc398907482299
f0ecfbbbd89291c59e59d8e74cb6fcf88dec73dc
ad5e1de2ba8b6b5b1ab67f556a80a29083eda74c761604ea2235b77d78392e58
GET /Imagens/ico-lista.png HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:40:35 GMT
ETag: "c3e78f-165-5d693d0d2b856"
Accept-Ranges: bytes
Content-Length: 357
Connection: close
Content-Type: image/png
www.imperialadministradora.com.br/Imagens/Facebook.jpg
186.202.153.3200 OK 1.5 kB URL HTTP/1.1 www.imperialadministradora.com.br/Imagens/Facebook.jpg
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 30x30, components 3\012- data
Hash ecdadd71f90604083a228624015c594c
ed4256122b64f6219bda00dcb20012af79af5032
09775167d68a1a0f0fabb50b546741ea4b8fc255a7a5e3e3d27604c406f43eb6
GET /Imagens/Facebook.jpg HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:40:34 GMT
ETag: "c3e785-5c2-5d693d0c7efea"
Accept-Ranges: bytes
Content-Length: 1474
Connection: close
Content-Type: image/jpeg
www.imperialadministradora.com.br/Imagens/Logo.png
186.202.153.3200 OK 31 kB URL HTTP/1.1 www.imperialadministradora.com.br/Imagens/Logo.png
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 350 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a048bbb255250b6e72aaa0afea2574e
fa1f186863452fcea383cc4e2c90dcaea109623e
023656f7747e9627c8b98db0b66e3db523718bac7044bb905d5d0f6135513ebf
GET /Imagens/Logo.png HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:40:36 GMT
ETag: "c3e7d3-7883-5d693d0e7ec4b"
Accept-Ranges: bytes
Content-Length: 30851
Connection: close
Content-Type: image/png
fonts.googleapis.com/css?family=Open+Sans:300,400,700
142.250.74.106200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,700
IP 142.250.74.106:0
Hash 02c3ec27f0af5e53b00417b9d20899f2
fd61c92eabe45d9283ecd35b1056ad44bab67ba6
efb446eab50b9d047198de1e602977c8df36c4e8af5f1f0b6cb6f96ffbde45dd
GET /css?family=Open+Sans:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 11:07:56 GMT
date: Tue, 06 Dec 2022 11:07:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.imperialadministradora.com.br/Imagens/ico-setadireita.png
186.202.153.3200 OK 182 B URL HTTP/1.1 www.imperialadministradora.com.br/Imagens/ico-setadireita.png
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 15 x 7, 4-bit colormap, non-interlaced\012- data
Hash 2d3975342c4be8e3aeb989b309b6716c
9a80d95ed464fca4e5c23382d6edf522e3c2a9c4
359cbc904a3e68efe092af7842d5ddcc1f5d8c086c744a393fe5c9e753de1a13
GET /Imagens/ico-setadireita.png HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:40:35 GMT
ETag: "c3e791-b6-5d693d0d3cb86"
Accept-Ranges: bytes
Content-Length: 182
Connection: close
Content-Type: image/png
www.imperialadministradora.com.br/Imagens/ico-message.png
186.202.153.3200 OK 245 B URL HTTP/1.1 www.imperialadministradora.com.br/Imagens/ico-message.png
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 9d88a6c4baddae11e4f681c464561f6e
056399c67b1e8b605dd9552d5bf58eae1c09bfa3
4f6e89693452ca718083a8a425bff9cc3e25e8477662b27aa6c627dc3f2ac96d
GET /Imagens/ico-message.png HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:40:35 GMT
ETag: "c3e790-f5-5d693d0d24880"
Accept-Ranges: bytes
Content-Length: 245
Connection: close
Content-Type: image/png
www.imperialadministradora.com.br/Imagens/ico-tel.png
186.202.153.3200 OK 182 B URL HTTP/1.1 www.imperialadministradora.com.br/Imagens/ico-tel.png
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 32a475d0a789b88b382301f80125e7ca
9ebf7dd4083f8001966293e511c088beba198cb6
733f99f65fd89c4613a5decce4e1c422a212148dc94b2c1fb0310d6bcb5db64e
GET /Imagens/ico-tel.png HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:40:36 GMT
ETag: "c3e792-b6-5d693d0d99678"
Accept-Ranges: bytes
Content-Length: 182
Connection: close
Content-Type: image/png
www.imperialadministradora.com.br/Imagens/LogoRodape.png
186.202.153.3200 OK 6.6 kB URL HTTP/1.1 www.imperialadministradora.com.br/Imagens/LogoRodape.png
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 1befc89a6bc2f7676d90e346fff146be
19aeebfc288533e088c0ace6bdb4056170f5d542
2408550483d70ac6e45c5517077ddbe4f6aed39455901fe4ec57571cd0abff19
GET /Imagens/LogoRodape.png HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:40:36 GMT
ETag: "c3e7d5-199d-5d693d0e6fce0"
Accept-Ranges: bytes
Content-Length: 6557
Connection: close
Content-Type: image/png
www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID024448No0008-apartamento-alto-da-serra-petropolis--1600969353665.jpg
179.188.53.212200 OK 11 kB URL HTTP/1.1 www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID024448No0008-apartamento-alto-da-serra-petropolis--1600969353665.jpg
IP 179.188.53.212:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 65", baseline, precision 8, 380x285, components 3\012- data
Hash d379122abc694e097c0ff3d0990d965b
b2c7dbeb25ff1dfcc246fda6d365a2b3bf61038b
5b453bd098764c2ed6e7fcd6651fe881cf867cf04691be10f65e4a84f204797d
GET /TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID024448No0008-apartamento-alto-da-serra-petropolis--1600969353665.jpg HTTP/1.1
Host: www.trustimovel.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 24 Sep 2020 17:42:53 GMT
Content-Length: 11066
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 530556077
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive
www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID027620No0015-apartamento-centro-petropolis--16226585018377.jpg
179.188.53.212200 OK 7.9 kB URL HTTP/1.1 www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID027620No0015-apartamento-centro-petropolis--16226585018377.jpg
IP 179.188.53.212:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 65", baseline, precision 8, 380x285, components 3\012- data
Hash c2ca3dbcd8a89589b0b763e59a4dd0b1
e16f96ccb54d421d8838994bd54b49d77e198ed4
1ae190560e81eb175e5d0df77a771cc7d07ca9351b709c4f6a6d30b95c2d9883
GET /TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID027620No0015-apartamento-centro-petropolis--16226585018377.jpg HTTP/1.1
Host: www.trustimovel.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Wed, 02 Jun 2021 18:31:20 GMT
Content-Length: 7895
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 531006659
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive
www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID029915No0004-apartamento-centro-petropolis--16395029081435.jpeg
179.188.53.212200 OK 10 kB URL HTTP/1.1 www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID029915No0004-apartamento-centro-petropolis--16395029081435.jpeg
IP 179.188.53.212:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 65", baseline, precision 8, 380x285, components 3\012- data
Hash ab98484f2aff8b509477c6aef7d653de
d1aa648828a6629d1b716c50236328dee83ef2df
a9d1b868d15da12f870a1e311fa5b2e0aef891cf67997423505f68618dce40e0
Analyzer Verdict Alert fortinet Phishing
GET /TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID029915No0004-apartamento-centro-petropolis--16395029081435.jpeg HTTP/1.1
Host: www.trustimovel.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Tue, 14 Dec 2021 17:29:45 GMT
Content-Length: 10180
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 531365890
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive
www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID029437No0049-casa-praia-do-gaviao-araruama--16357878566239.jpg
179.188.53.212200 OK 20 kB URL HTTP/1.1 www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID029437No0049-casa-praia-do-gaviao-araruama--16357878566239.jpg
IP 179.188.53.212:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 65", baseline, precision 8, 380x285, components 3\012- data
Hash 83613d2c8686c601b95cd164bbc0d2cf
86d0f0dc14cff141a6bfab3eb6dae72658b2f98f
bd80d57ff7cb764f61cfe96b7041fe91dce9d5059f49a64060c2cbe97de00f90
GET /TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID029437No0049-casa-praia-do-gaviao-araruama--16357878566239.jpg HTTP/1.1
Host: www.trustimovel.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 24 Mar 2022 14:16:26 GMT
Content-Length: 20427
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 530944041
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive
www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID016633No0009-casa-samambaia-petropolis--15342502556095.jpg
179.188.53.212200 OK 19 kB URL HTTP/1.1 www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID016633No0009-casa-samambaia-petropolis--15342502556095.jpg
IP 179.188.53.212:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 65", baseline, precision 8, 380x285, components 3\012- data
Hash 34625987d5f13bacf9f658b301f36b8e
9b6b112951aef29c927bde15da021087c9a5080b
d64a6b502eff5bce8bdd804914d6f707059d522681449e05a031d8ed768ba948
GET /TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID016633No0009-casa-samambaia-petropolis--15342502556095.jpg HTTP/1.1
Host: www.trustimovel.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 13 May 2021 14:21:18 GMT
Content-Length: 18979
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 531136868
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive
www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID050013No0001-terreno-residencial-quitandinha-petropolis--16668842944714.jpg
179.188.53.212200 OK 26 kB URL HTTP/1.1 www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID050013No0001-terreno-residencial-quitandinha-petropolis--16668842944714.jpg
IP 179.188.53.212:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 65", baseline, precision 8, 380x285, components 3\012- data
Hash ed8f0edd754ca2e62b57bbe704ba8b03
9d4d890b26b980ec2838053878ae2eebde6747cc
06f45db0b238ce90ab7f3467f44957863e2d2343e5d3359e277655f813a62697
GET /TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID050013No0001-terreno-residencial-quitandinha-petropolis--16668842944714.jpg HTTP/1.1
Host: www.trustimovel.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:57 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 15:25:08 GMT
Content-Length: 26446
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 531170145
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive
www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID048563No0001-apartamento-bingen-petropolis--16573097164168.jpg
179.188.53.212200 OK 16 kB URL HTTP/1.1 www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID048563No0001-apartamento-bingen-petropolis--16573097164168.jpg
IP 179.188.53.212:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 65", baseline, precision 8, 380x285, components 3\012- data
Hash f6f08da4ff066c696fd1a2cb9d0a0271
bb2a05cd23ec787852f6d585112abc6e096f73d7
c2fe0d77796059bcb40972d95f13fc78ea7414b5c5afe2414a64e3f94e6bda59
GET /TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID048563No0001-apartamento-bingen-petropolis--16573097164168.jpg HTTP/1.1
Host: www.trustimovel.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:58 GMT
Server: Apache
Last-Modified: Fri, 08 Jul 2022 19:54:22 GMT
Content-Length: 16021
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 531006661
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive
www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID047914No0001-apartamento-centro-petropolis--16524683155877.jpg
179.188.53.212200 OK 18 kB URL HTTP/1.1 www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID047914No0001-apartamento-centro-petropolis--16524683155877.jpg
IP 179.188.53.212:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 65", baseline, precision 8, 380x285, components 3\012- data
Hash ee3a0e956e2418b98514b133e8b48a54
0ae3a41ca423968eec5d4998db059557b2fa199e
21abdaa5c86518cc1d2dbc444d51181f8b2d3e6f53d7eb36ecac12a9349a97e7
GET /TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID047914No0001-apartamento-centro-petropolis--16524683155877.jpg HTTP/1.1
Host: www.trustimovel.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:58 GMT
Server: Apache
Last-Modified: Fri, 13 May 2022 18:58:55 GMT
Content-Length: 18106
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 531136870
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive
www.imperialadministradora.com.br/Imagens/Instagram.jpg
186.202.153.3200 OK 1.9 kB URL HTTP/1.1 www.imperialadministradora.com.br/Imagens/Instagram.jpg
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 30x30, components 3\012- data
Hash 3dcd33cb074aa4af75515f09492ecdfd
b59fcfd1f16fc713617f3f1824d7617659af3f39
28e4fc7aa7501292332e8cd061b45924cb1fdaf356bd9b0d1c455ee82daecb94
GET /Imagens/Instagram.jpg HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:58 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:40:36 GMT
ETag: "c3e7d0-77c-5d693d0e1a440"
Accept-Ranges: bytes
Content-Length: 1916
Connection: close
Content-Type: image/jpeg
www.imperialadministradora.com.br/Imagens/Whatsapp.png
186.202.153.3200 OK 1.8 kB URL HTTP/1.1 www.imperialadministradora.com.br/Imagens/Whatsapp.png
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f1c17d7beab84c057ca699a26a30dc8
2a367527ec5bb31d47cf8d590c4d87e1d62004f6
8a552d001f8f97eecb7317046b80e3f115a0abda3e65ec25f7d2d2add2011cb1
GET /Imagens/Whatsapp.png HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:58 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:40:37 GMT
ETag: "c3e7e4-6f6-5d693d0f44615"
Accept-Ranges: bytes
Content-Length: 1782
Connection: close
Content-Type: image/png
www.imperialadministradora.com.br/Imagens/LogoTrustImovel.png
186.202.153.3200 OK 26 kB URL HTTP/1.1 www.imperialadministradora.com.br/Imagens/LogoTrustImovel.png
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type PNG image data, 280 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash eb59483bbe8cb3ac91d77682eb4e7bd2
3393b56cc55f66d49be76268b681b4f62be47781
a439e6833f0da6469583192f77cac046981dc4793d903c6ba994a303a4beed65
GET /Imagens/LogoTrustImovel.png HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:58 GMT
Server: Apache
Last-Modified: Thu, 27 Jan 2022 17:40:37 GMT
ETag: "c3e7d8-6455-5d693d0ea7f3a"
Accept-Ranges: bytes
Content-Length: 25685
Connection: close
Content-Type: image/png
www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID029975No0001-apartamento-retiro-petropolis--164003293065.jpg
179.188.53.212200 OK 15 kB URL HTTP/1.1 www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID029975No0001-apartamento-retiro-petropolis--164003293065.jpg
IP 179.188.53.212:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 65", baseline, precision 8, 380x285, components 3\012- data
Hash ef9345457088b7a1ab25218e0dd0ef32
760045f9142ac1dbb1b7545e9f80f96fea2745fb
ab216b0fb1f4affc8d70fde77cc768371bf0ee5d86edc91d95d38792223ab59e
GET /TrustImovel/ImperialAdministradora/Upload/Mini-Foto-Imovel-ID029975No0001-apartamento-retiro-petropolis--164003293065.jpg HTTP/1.1
Host: www.trustimovel.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:58 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 20:42:40 GMT
Content-Length: 14668
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 531006663
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 06 Dec 2022 10:46:55 GMT
expires: Tue, 06 Dec 2022 12:46:55 GMT
cache-control: public, max-age=7200
age: 1263
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/FotoTopo-21-20170725171404.jpg
179.188.53.212200 OK 201 kB URL HTTP/1.1 www.trustimovel.com.br/TrustImovel/ImperialAdministradora/Upload/FotoTopo-21-20170725171404.jpg
IP 179.188.53.212:0
ASN #27715 Locaweb Servicos de Internet SA
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x400, components 3\012- data
Size 201 kB (201184 bytes)
Hash 49c0808d5cc7ca66f605071a08466c56
441ffa09ac05d77408e54d71f7ad342bd90af835
d3af2f020fb6c05f91cc73ed34480000ad6bde7ac7098e5d73baa983d973ea14
GET /TrustImovel/ImperialAdministradora/Upload/FotoTopo-21-20170725171404.jpg HTTP/1.1
Host: www.trustimovel.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:07:58 GMT
Server: Apache
Last-Modified: Fri, 05 Jun 2020 13:06:07 GMT
Content-Length: 201184
Content-Type: image/jpeg
Cache-Control: No-Cache
Pragma: no-cache
X-Varnish: 531365892
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Connection: keep-alive
www.imperialadministradora.com.br/favicon.ico
186.202.153.3404 Not Found 1.2 kB URL HTTP/1.1 www.imperialadministradora.com.br/favicon.ico
IP 186.202.153.3:0
ASN #27715 Locaweb Servicos de Internet SA
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash ce727188a63efa43ad3ca6e6809c64b9
0e21283adcd8254c9b352800a4a0ecf0176d90ee
6c2806f749857eaaa3925e1a8e1f3157b6e1e5f49b3a3865391418db014d108b
GET /favicon.ico HTTP/1.1
Host: www.imperialadministradora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.imperialadministradora.com.br/
Cookie: PHPSESSID=egaaplaps1mm9me3r2flpq60k7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 11:07:59 GMT
Server: Apache
Vary: accept-language,accept-charset
Accept-Ranges: bytes
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=iso-8859-1
Content-Language: en