Overview

URLrevista-66524.blogspot.com/?m=1
IP 142.250.74.161 (United States)
ASN#15169 GOOGLE
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-09-24 18:44:51 UTC
StatusLoading report..
IDS alerts0
Blocklist alert2
urlquery alerts No alerts detected
Tags None

Domain Summary (24)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-09-24 10:11:12 UTC 142.250.74.174
adservice.google.no (1) 96969 2017-09-26 14:23:08 UTC 2022-09-24 04:21:44 UTC 142.250.74.162
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-24 04:22:23 UTC 34.117.237.239
ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-24 12:29:46 UTC 93.184.220.29
www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-24 04:22:33 UTC 142.250.74.72
cdnjs.cloudflare.com (2) 235 2020-10-20 10:17:36 UTC 2022-09-24 11:29:42 UTC 104.17.24.14
www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-24 13:42:18 UTC 142.250.74.164
s3-sa-east-1.amazonaws.com (1) 0 2017-11-01 17:45:05 UTC 2022-09-24 05:27:01 UTC 52.95.163.10 Unknown ranking
adservice.google.com (1) 76 2021-02-20 16:10:48 UTC 2022-09-24 17:33:45 UTC 142.250.74.66
ocsp.pki.goog (16) 175 2017-06-14 07:23:31 UTC 2022-09-24 04:23:20 UTC 142.250.74.3
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-24 05:36:42 UTC 44.242.41.15
img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-24 04:22:29 UTC 34.120.237.76
revista-66524.blogspot.com (2) 0 No data No data 142.250.74.161 Unknown ranking
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-24 04:26:56 UTC 34.160.144.191
ocsp.sca1b.amazontrust.com (3) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.118
bf73995led.bf.dynatrace.com (1) 150040 2018-06-11 15:32:15 UTC 2022-09-23 22:07:52 UTC 107.20.158.97
js-cdn.dynatrace.com (1) 8478 2019-07-18 09:34:10 UTC 2022-09-24 08:54:18 UTC 54.230.111.96
googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-09-24 18:16:35 UTC 142.250.74.2
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-24 15:49:37 UTC 143.204.55.35
r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-09-24 04:21:50 UTC 23.36.77.32
realizando-sonhos-204810.azurewebsites.net (26) 0 No data No data 20.118.40.5 Unknown ranking
www.gstatic.com (2) 0 2016-07-26 09:37:06 UTC 2022-09-24 13:20:05 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
cdn.pmweb.com.br (1) 88781 2016-05-30 20:36:05 UTC 2022-09-23 22:07:50 UTC 54.207.135.96
df.pmweb.com.br (1) 85780 2016-05-30 20:36:05 UTC 2022-09-23 22:08:08 UTC 18.229.129.250

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-24 2 revista-66524.blogspot.com/?m=1 Phishing
2022-09-24 2 revista-66524.blogspot.com/?m=1 Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.161
Date UQ / IDS / BL URL IP
2023-03-20 18:44:34 +0000 0 - 0 - 8 ngwcscyd.page.link/KrvS7LqTXrouZ8fK7 142.250.74.161
2023-03-20 15:11:24 +0000 0 - 0 - 8 ngwcscyd.page.link/KrvS7LqTXrouZ8fK7 142.250.74.161
2023-03-19 00:09:33 +0000 0 - 0 - 8 ngwcscyd.page.link/KrvS7LqTXrouZ8fK7 142.250.74.161
2023-03-17 09:54:51 +0000 0 - 0 - 0 5ntxc389.page.link/DQbR 142.250.74.161
2023-03-16 16:06:17 +0000 0 - 0 - 8 ngwcscyd.page.link/KrvS7LqTXrouZ8fK7 142.250.74.161


Last 5 reports on ASN: GOOGLE
Date UQ / IDS / BL URL IP
2023-03-21 13:45:13 +0000 0 - 0 - 4 www.nibirdokan.com/dFRh/a1b2c3/c8c07a8305db79 (...) 172.217.21.179
2023-03-21 13:40:08 +0000 0 - 1 - 0 eshopism.com/onlinebanking/support/sso/login.php 34.98.99.30
2023-03-21 13:38:33 +0000 0 - 3 - 0 covidanswers.com/login.php?online_id=4cafa7e7 (...) 216.239.38.21
2023-03-21 13:38:34 +0000 0 - 0 - 1 wbj359.keap-link006.com/v2/click/c68c00ec8e3a (...) 34.149.35.41
2023-03-21 13:38:25 +0000 0 - 0 - 1 aliva.ca/cgibin/Kleine/Schatz/x1x/v2/685a998c (...) 34.102.136.180


Last 1 reports on domain: revista-66524.blogspot.com
Date UQ / IDS / BL URL IP
2022-09-24 18:44:51 +0000 0 - 0 - 2 revista-66524.blogspot.com/?m=1 142.250.74.161


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-12-06 18:29:37 +0000 0 - 0 - 1 dripster-santos.azurewebsites.net/renner/inic (...) 20.118.56.8
2022-12-04 10:54:34 +0000 0 - 0 - 4 dripster-santos.azurewebsites.net/renner/inic (...) 20.118.56.8
2022-11-24 16:48:01 +0000 0 - 0 - 1 dripster-santos.azurewebsites.net/renner/inic (...) 20.118.56.8
2022-11-24 15:36:30 +0000 0 - 0 - 2 dripster-santos.azurewebsites.net/renner/inic (...) 20.118.56.8
2022-11-24 12:50:39 +0000 0 - 0 - 2 dripster-santos.azurewebsites.net/renner/inic (...) 20.118.56.8

JavaScript

Executed Scripts (31)

Executed Evals (6)
#1 JavaScript::Eval (size: 22) - SHA256: f2eead9b8c258f71b9b23b43d9a8cf400c72342d7be7a5b6f16a70dddc5f9196
0,
function(C) {
    Ze(2, C)
}
#2 JavaScript::Eval (size: 31) - SHA256: 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1
(a = 0) => {
    let b;
    const c = class {};
}
#3 JavaScript::Eval (size: 22397) - SHA256: 409ee4d6db152971ba8ff9d78164613498615d610d7142f92425adf4a8a57983
(function() {
    var M = function(D, J) {
            D.Y.splice(0, 0, J)
        },
        E = {
            passive: true,
            capture: true
        },
        De = function(D, J) {
            return [(D(function(u) {
                u(J)
            }), function() {
                return J
            })]
        },
        JC = function(D, J, u) {
            if ("object" == (u = typeof D, u))
                if (D) {
                    if (D instanceof Array) return "array";
                    if (D instanceof Object) return u;
                    if (J = Object.prototype.toString.call(D), "[object Window]" == J) return "object";
                    if ("[object Array]" == J || "number" == typeof D.length && "undefined" != typeof D.splice && "undefined" != typeof D.propertyIsEnumerable && !D.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == J || "undefined" != typeof D.call && "undefined" != typeof D.propertyIsEnumerable && !D.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == u && "undefined" == typeof D.call) return "object";
            return u
        },
        p = function(D) {
            return D.u ? Cz(D.S, D) : d(true, 8, D)
        },
        um = function(D) {
            return D
        },
        Pj = function(D, J) {
            J.push(D[0] << 24 | D[1] << 16 | D[2] << 8 | D[3]), J.push(D[4] << 24 | D[5] << 16 | D[6] << 8 | D[7]), J.push(D[8] << 24 | D[9] << 16 | D[10] << 8 | D[11])
        },
        mM = function(D, J, u, P, g) {
            y(D, (((u = X(D, (P = (u = x((g = J & 3, J &= 4, D)), x(D)), u)), J) && (u = O4("" + u)), g) && y(D, P, N(2, u.length)), P), u)
        },
        E4 = function(D, J, u, P, g) {
            if ((P = D[0], P) == Z) J.v = 25, J.i(D);
            else if (P == l) {
                u = D[1];
                try {
                    g = J.K || J.i(D)
                } catch (C) {
                    r(J, C), g = J.K
                }
                u(g)
            } else if (P == hC) J.i(D);
            else if (P == e) J.i(D);
            else if (P == gc) {
                try {
                    for (g = 0; g < J.o.length; g++) try {
                        u = J.o[g], u[0][u[1]](u[2])
                    } catch (C) {}
                } catch (C) {}(0, D[J.o = [], 1])(function(C, m) {
                    J.H(C, true, m)
                }, function(C) {
                    (M(J, (C = !J.Y.length, [oq])), C) && Q(false, J, true)
                })
            } else {
                if (P == V) return g = D[2], W(J, 149, D[6]), W(J, 138, g), J.i(D);
                P == oq ? (J.O = [], J.W = null, J.J = []) : P == Sy && "loading" === b.document.readyState && (J.C = function(C, m) {
                    function O() {
                        m || (m = true, C())
                    }
                    b.document.addEventListener("DOMContentLoaded", (m = false, O), E), b.addEventListener("load", O, E)
                })
            }
        },
        jy = function(D, J) {
            return R[D](R.prototype, {
                stack: J,
                pop: J,
                splice: J,
                call: J,
                length: J,
                document: J,
                console: J,
                propertyIsEnumerable: J,
                prototype: J,
                floor: J,
                replace: J,
                parent: J
            })
        },
        A = function(D, J, u, P, g, C, m, O, h) {
            if (D.A += (D.V = ((h = (O = (J || D.s++, 0 < D.F) && D.U && D.YJ && 1 >= D.B && !D.u && !D.C && (!J || 1 < D.G - P) && 0 == document.hidden, (m = 4 == D.s) || O ? D.P() : D.I), C = h - D.I, g = C >> 14, D.l) && (D.l ^= g * (C << 2)), g) || D.V, g), m || O) D.s = 0, D.I = h;
            if (!O || h - D.N < D.F - (u ? 255 : J ? 5 : 2)) return false;
            return D.C = ((W(D, (u = X(D, (D.G = P, J ? 330 : 41)), 41), D.R), D.Y).push([hC, u, J ? P + 1 : P]), Y), true
        },
        dc = function(D, J, u, P) {
            for (; J.Y.length;) {
                P = (J.C = null, J.Y).pop();
                try {
                    u = E4(P, J)
                } catch (g) {
                    r(J, g)
                }
                if (D && J.C) {
                    D = J.C, D(function() {
                        Q(true, J, true)
                    });
                    break
                }
            }
            return u
        },
        z$ = function(D, J, u) {
            return u = R[D.L](D.P$), u[D.L] = function() {
                return J
            }, u.concat = function(P) {
                J = P
            }, u
        },
        Hj = function(D, J, u, P, g, C) {
            for (u = (g = (J = ((P = (C = D[pz] || {}, x(D)), C).EB = x(D), C.g = [], D.V == D) ? (p(D) | 0) - 1 : 1, x)(D), 0); u < J; u++) C.g.push(x(D));
            for (C.Z = X(D, P); J--;) C.g[J] = X(D, C.g[J]);
            return C.W$ = X(D, g), C
        },
        Q = function(D, J, u, P, g, C) {
            if (J.Y.length) {
                (J.U = !(J.U && 0(), 0), J).YJ = u;
                try {
                    P = J.P(), J.N = P, J.I = P, J.s = 0, C = dc(u, J), g = J.P() - J.N, J.T += g, g < (D ? 0 : 10) || 0 >= J.v-- || (g = Math.floor(g), J.J.push(254 >= g ? g : 254))
                } finally {
                    J.U = false
                }
                return C
            }
        },
        n = function(D, J, u, P, g, C) {
            if (!D.j) {
                if ((u = X(D, (J = ((P = X(D, ((C = void 0, u) && u[0] === L && (C = u[2], J = u[1], u = void 0), 334)), 0 == P.length) && (g = X(D, 330) >> 3, P.push(J, g >> 8 & 255, g & 255), void 0 != C && P.push(C & 255)), ""), u && (u.message && (J += u.message), u.stack && (J += ":" + u.stack)), 199)), 3) < u) {
                    D.V = (C = (J = O4((u -= (J = J.slice(0, (u | 0) - 3), (J.length | 0) + 3), J)), D).V, D);
                    try {
                        y(D, 325, N(2, J.length).concat(J), 9)
                    } finally {
                        D.V = C
                    }
                }
                W(D, 199, u)
            }
        },
        N = function(D, J, u, P) {
            for (P = (D | 0) - (u = [], 1); 0 <= P; P--) u[(D | 0) - 1 - (P | 0)] = J >> 8 * P & 255;
            return u
        },
        $N = function(D, J, u, P) {
            return (P = T[D.substring(0, 3) + "_"]) ? P(D.substring(3), J, u) : De(J, D)
        },
        t, qt = function(D, J, u, P) {
            try {
                P = D[((J | 0) + 2) % 3], D[J] = (D[J] | 0) - (D[((J | 0) + 1) % 3] | 0) - (P | 0) ^ (1 == J ? P << u : P >>> u)
            } catch (g) {
                throw g;
            }
        },
        x = function(D, J) {
            if (D.u) return Cz(D.S, D);
            return J = d(true, 8, D), J & 128 && (J ^= 128, D = d(true, 2, D), J = (J << 2) + (D | 0)), J
        },
        U4 = function(D, J) {
            W(((J.Kr.push(J.W.slice()), J.W)[41] = void 0, J), 41, D)
        },
        y = function(D, J, u, P, g, C) {
            if (D.V == D)
                for (C = X(D, J), 325 == J ? (J = function(m, O, h, S) {
                        if ((S = (O = C.length, (O | 0) - 4) >> 3, C.nr) != S) {
                            C.nr = S, S = (h = [0, 0, g[1], g[2]], (S << 3) - 4);
                            try {
                                C.Rw = wc(h, vj((S | 0) + 4, C), vj(S, C))
                            } catch (z) {
                                throw z;
                            }
                        }
                        C.push(C.Rw[O & 7] ^ m)
                    }, g = X(D, 269)) : J = function(m) {
                        C.push(m)
                    }, P && J(P & 255), D = 0, P = u.length; D < P; D++) J(u[D])
        },
        W = function(D, J, u) {
            if (41 == J || 330 == J) D.W[J] ? D.W[J].concat(u) : D.W[J] = z$(D, u);
            else {
                if (D.j && 504 != J) return;
                498 == J || 325 == J || 294 == J || 334 == J || 269 == J ? D.W[J] || (D.W[J] = xN(D, 110, u, J)) : D.W[J] = xN(D, 89, u, J)
            }
            504 == J && (D.l = d(false, 32, D), D.X = void 0)
        },
        d = function(D, J, u, P, g, C, m, O, h, S, z, H, U, q) {
            if ((g = X(u, 41), g) >= u.R) throw [L, 31];
            for (z = (h = (O = 0, U = J, u.Xu.length), g); 0 < U;) S = z % 8, H = 8 - (S | 0), H = H < U ? H : U, q = z >> 3, m = u.O[q], D && (C = u, C.X != z >> 6 && (C.X = z >> 6, P = X(C, 504), C.D = wc([0, 0, P[1], P[2]], C.X, C.l)), m ^= u.D[q & h]), z += H, O |= (m >> 8 - (S | 0) - (H | 0) & (1 << H) - 1) << (U | 0) - (H | 0), U -= H;
            return W(u, 41, (D = O, (g | 0) + (J | 0))), D
        },
        XY = function(D, J) {
            return (J = p(D), J) & 128 && (J = J & 127 | p(D) << 7), J
        },
        yP = function(D, J, u, P, g, C) {
            function m() {
                if (P.V == P) {
                    if (P.W) {
                        var O = [V, J, u, void 0, g, C, arguments];
                        if (2 == D) var h = Q(false, (M(P, O), P), false);
                        else if (1 == D) {
                            var S = !P.Y.length;
                            (M(P, O), S) && Q(false, P, false)
                        } else h = E4(O, P);
                        return h
                    }
                    g && C && g.removeEventListener(C, m, E)
                }
            }
            return m
        },
        rc = function(D, J, u, P, g) {
            for (D.P$ = (D.Xu = (D.Sq = fz, D.iS = Nt, D[l]), D.Vv = jy(D.L, {get: function() {
                        return this.concat()
                    }
                }), R[D.L](D.Vv, {
                    value: {
                        value: {}
                    }
                })), g = 0, P = []; 128 > g; g++) P[g] = String.fromCharCode(g);
            (M(D, (M(D, (M(D, (W(D, (a(D, function(C) {
                lm(4, C)
            }, (a((a(D, (a((a(D, function(C, m, O, h) {
                W(C, (h = X(C, (m = (O = (h = x(C), x)(C), x(C)), h)), O = X(C, O), m), +(h == O))
            }, (W(D, 199, (a(D, (a(D, function(C, m, O, h) {
                W(C, (O = (h = x(C), m = p(C), x(C)), O), X(C, h) >>> m)
            }, (W(D, 485, (W(D, (W(D, 269, (W(D, 334, (a(D, (a(D, function(C, m, O, h, S, z) {
                if (!A(C, true, true, m)) {
                    if ("object" == JC((C = (S = X((h = (h = (z = (m = (S = x(C), x(C)), x(C)), x)(C), m = X(C, m), X(C, h)), C), S), X(C, z)), S))) {
                        for (O in z = [], S) z.push(O);
                        S = z
                    }
                    for (z = (C = (O = 0, 0 < C ? C : 1), S.length); O < z; O += C) m(S.slice(O, (O | 0) + (C | 0)), h)
                }
            }, (W(D, (a(D, function(C, m, O, h) {
                if (O = C.Kr.pop()) {
                    for (h = p(C); 0 < h; h--) m = x(C), O[m] = C.W[m];
                    C.W = (O[199] = (O[334] = C.W[334], C.W)[199], O)
                } else W(C, 41, C.R)
            }, (a(D, function() {}, (D.B$ = (W(D, 498, [160, (a((W(D, (a(D, function(C, m, O) {
                A(C, true, false, m) || (m = x(C), O = x(C), W(C, O, function(h) {
                    return eval(h)
                }(FY(X(C.V, m)))))
            }, (W(D, (a(D, function(C, m, O, h, S, z) {
                A(C, true, false, m) || (h = Hj(C.V), z = h.Z, S = h.W$, m = h.EB, h = h.g, O = h.length, z = 0 == O ? new S[z] : 1 == O ? new S[z](h[0]) : 2 == O ? new S[z](h[0], h[1]) : 3 == O ? new S[z](h[0], h[1], h[2]) : 4 == O ? new S[z](h[0], h[1], h[2], h[3]) : 2(), W(C, m, z))
            }, (a(D, function(C, m, O) {
                W((m = (O = x(C), x(C)), C), m, "" + X(C, O))
            }, (a(D, function(C, m, O, h) {
                !A(C, true, false, m) && (m = Hj(C), h = m.Z, O = m.W$, C.V == C || h == C.Lr && O == C) && (W(C, m.EB, h.apply(O, m.g)), C.I = C.P())
            }, (((a(D, function(C, m, O, h, S) {
                W(C, (O = X(C, (S = X(C, (h = X(C, (S = (h = (O = (m = x(C), x(C)), x(C)), x(C)), h)), S)), O)), m), yP(S, O, h, C))
            }, (a(D, (a(D, function(C, m, O, h, S) {
                (m = X(C, (h = (S = X(C, (O = (m = (O = x(C), S = x(C), h = x(C), x)(C), X(C.V, O)), S)), X(C, h)), m)), 0 !== O) && (m = yP(1, h, m, C, O, S), O.addEventListener(S, m, E), W(C, 298, [O, S, m]))
            }, (((a(D, function(C, m, O) {
                W(C, (m = (O = x((m = x(C), C)), X(C, m)), m = JC(m), O), m)
            }, (a(D, function(C, m, O, h) {
                O = X(C, (h = X(C, (m = x((O = x(C), C)), m)), O)), W(C, m, h + O)
            }, (a((a((a(D, function(C, m, O, h, S, z, H) {
                for (H = X(C, (m = (h = x(C), XY)(C), O = "", 245)), S = H.length, z = 0; m--;) z = ((z | 0) + (XY(C) | 0)) % S, O += P[H[z]];
                W(C, h, O)
            }, (D.xJ = (W((D.tf = (D.YJ = (D.OB = 0, D.v = 25, (D.J = [], D.X = void 0, D).G = 8001, (D.Lr = function(C) {
                this.V = C
            }, D).N = (D.D = (D.s = void 0, D.C = null, void 0), D.O = [], D.W = (D.F = 0, g = ((D.Y = [], D).I = 0, window.performance || {}), []), D.B = 0, D.S = void 0, D.T = 0, 0), D.l = (D.R = 0, D.j = false, void 0), D.Kr = ((D.o = [], D.A = 1, D).u = void 0, []), false), D.K = void 0, D.U = (D.V = D, false), g.timeOrigin || (g.timing || {}).navigationStart) || 0, W(D, 41, 0), D), 330, 0), a(D, function(C) {
                mM(C, 4)
            }, 128), 0), 259)), D), function(C, m, O, h, S, z, H, U, q, v, f, w) {
                function B(F, k) {
                    for (; U < F;) S |= p(C) << U, U += 8;
                    return S >>= (U -= F, k = S & (1 << F) - 1, F), k
                }
                for (f = (z = (S = U = (m = x(C), 0), (B(3) | 0) + 1), q = B(5), []), O = v = 0; v < q; v++) w = B(1), f.push(w), O += w ? 0 : 1;
                for (H = (O = (v = ((O | 0) - 1).toString(2).length, 0), []); O < q; O++) f[O] || (H[O] = B(v));
                for (v = 0; v < q; v++) f[v] && (H[v] = x(C));
                for (h = []; z--;) h.push(X(C, x(C)));
                a(C, function(F, k, c, Mt, G) {
                    for (G = (Mt = (c = 0, []), []); c < q; c++) {
                        if (!(k = H[c], f)[c]) {
                            for (; k >= G.length;) G.push(x(F));
                            k = G[k]
                        }
                        Mt.push(k)
                    }
                    F.S = (F.u = z$(F, h.slice()), z$)(F, Mt)
                }, m)
            }, 224), D), function(C) {
                mM(C, 3)
            }, 349), 307)), 273)), W)(D, 138, {}), W)(D, 132, 173), 321)), function(C, m, O, h) {
                W(C, (O = x((h = (m = x(C), x)(C), C)), O), X(C, m) || X(C, h))
            }), 236), 455)), a)(D, function(C) {
                Ze(4, C)
            }, 487), D).NU = 0, 210)), a(D, function(C, m) {
                U4((m = X(C, x(C)), m), C.V)
            }, 85), 198)), 46)), 294), []), 70)), 298), 0), D), function(C, m, O) {
                (O = (O = x((m = x(C), C)), X)(C, O), 0 != X(C, m)) && W(C, 41, O)
            }, 474), 0), 0]), a(D, function(C, m, O, h, S) {
                for (O = (h = (m = x(C), XY(C)), []), S = 0; S < h; S++) O.push(p(C));
                W(C, m, O)
            }, 176), 0), 462)), 171)), 117), b), 178)), function(C, m, O, h) {
                W((m = X(C, (O = X(C, (h = x((m = x((O = x(C), C)), C)), O)), m)), C), h, O[m])
            }), 303), [])), [0, 0, 0])), 67), D), 0)), 119)), function(C, m) {
                (C = (m = x(C), X(C.V, m)), C[0]).removeEventListener(C[1], C[2], E)
            }), 322), 2048)), 59)), D), function(C) {
                lm(1, C)
            }, 410), function(C, m, O, h) {
                h = x((O = x((m = x(C), C)), C)), C.V == C && (h = X(C, h), O = X(C, O), X(C, m)[O] = h, 504 == m && (C.X = void 0, 2 == O && (C.l = d(false, 32, C), C.X = void 0)))
            }), 509), D), function(C, m, O, h) {
                W(C, (h = X(C, (O = X(C, (O = x((h = x(C), C)), m = x(C), O)), h)), m), h in O | 0)
            }, 364), 94)), 325), K(4)), [Sy])), [e, u])), [gc, J])), Q)(true, D, true)
        },
        b = this || self,
        Cz = function(D, J) {
            return (D = D.create().shift(), J.u.create()).length || J.S.create().length || (J.S = void 0, J.u = void 0), D
        },
        xN = function(D, J, u, P, g, C, m, O) {
            return m = (u = [60, 14, -7, (g = (O = kN, J & 7), -88), 72, 42, u, 25, -3, 34], R[D.L](D.Vv)), m[D.L] = function(h) {
                g += 6 + 7 * J, C = h, g &= 7
            }, m.concat = function(h) {
                return (h = (C = (h = -476 * P * C + g - (h = P % 16 + 1, h * C) + u[g + 19 & 7] * P * h + (O() | 0) * h + 4 * P * P * h + 34 * C * C - -1496 * C - 136 * P * P * C, void 0), u[h]), u[(g + 29 & 7) + (J & 2)] = h, u)[g + (J & 2)] = 14, h
            }, m
        },
        X = function(D, J) {
            if (void 0 === (D = D.W[J], D)) throw [L, 30, J];
            if (D.value) return D.create();
            return (D.create(4 * J * J + 14 * J + -44), D).prototype
        },
        O4 = function(D, J, u, P, g) {
            for (g = (J = (D = D.replace(/\r\n/g, "\n"), []), u = 0); g < D.length; g++) P = D.charCodeAt(g), 128 > P ? J[u++] = P : (2048 > P ? J[u++] = P >> 6 | 192 : (55296 == (P & 64512) && g + 1 < D.length && 56320 == (D.charCodeAt(g + 1) & 64512) ? (P = 65536 + ((P & 1023) << 10) + (D.charCodeAt(++g) & 1023), J[u++] = P >> 18 | 240, J[u++] = P >> 12 & 63 | 128) : J[u++] = P >> 12 | 224, J[u++] = P >> 6 & 63 | 128), J[u++] = P & 63 | 128);
            return J
        },
        Ze = function(D, J, u, P) {
            for (P = x(J), u = 0; 0 < D; D--) u = u << 8 | p(J);
            W(J, P, u)
        },
        lm = function(D, J, u, P) {
            y(J, (u = x(J), P = x(J), P), N(D, X(J, u)))
        },
        K = function(D, J) {
            for (J = []; D--;) J.push(255 * Math.random() | 0);
            return J
        },
        ey = function(D, J, u) {
            if (3 == D.length) {
                for (u = 0; 3 > u; u++) J[u] += D[u];
                for (u = [13, 8, 13, 12, (D = 0, 16), 5, 3, 10, 15]; 9 > D; D++) J[3](J, D % 3, u[D])
            }
        },
        a = function(D, J, u) {
            (W(D, u, J), J)[Sy] = 2796
        },
        wc = function(D, J, u, P, g) {
            for (D = D[g = 0, P = D[2] | 0, 3] | 0; 14 > g; g++) J = J >>> 8 | J << 24, D = D >>> 8 | D << 24, D += P | 0, J += u | 0, J ^= P + 3261, u = u << 3 | u >>> 29, D ^= g + 3261, P = P << 3 | P >>> 29, u ^= J, P ^= D;
            return [u >>> 24 & 255, u >>> 16 & 255, u >>> 8 & 255, u >>> 0 & 255, J >>> 24 & 255, J >>> 16 & 255, J >>> 8 & 255, J >>> 0 & 255]
        },
        r = function(D, J) {
            D.K = ((D.K ? D.K + "~" : "E:") + J.message + ":" + J.stack).slice(0, 2048)
        },
        QP = function(D, J, u, P, g, C) {
            if (!D.K) {
                D.B++;
                try {
                    for (g = (P = (u = 0, void 0), D.R); --J;) try {
                        if (C = void 0, D.u) P = Cz(D.u, D);
                        else {
                            if ((u = X(D, 41), u) >= g) break;
                            P = (C = (W(D, 330, u), x(D)), X(D, C))
                        }
                        A(D, (P && P[oq] & 2048 ? P(D, J) : n(D, 0, [L, 21, C]), false), false, J)
                    } catch (m) {
                        X(D, 132) ? n(D, 22, m) : W(D, 132, m)
                    }
                    if (!J) {
                        if (D.aw) {
                            (D.B--, QP)(D, 439541719848);
                            return
                        }
                        n(D, 0, [L, 33])
                    }
                } catch (m) {
                    try {
                        n(D, 22, m)
                    } catch (O) {
                        r(D, O)
                    }
                }
                D.B--
            }
        },
        im = function(D, J, u) {
            return D.H(function(P) {
                u = P
            }, false, J), u
        },
        Y = b.requestIdleCallback ? function(D) {
            requestIdleCallback(function() {
                D()
            }, {
                timeout: 4
            })
        } : b.setImmediate ? function(D) {
            setImmediate(D)
        } : function(D) {
            setTimeout(D, 0)
        },
        vj = function(D, J) {
            return J[D] << 24 | J[(D | 0) + 1] << 16 | J[(D | 0) + 2] << 8 | J[(D | 0) + 3]
        },
        I = function(D, J, u) {
            u = this;
            try {
                rc(this, J, D)
            } catch (P) {
                r(this, P), J(function(g) {
                    g(u.K)
                })
            }
        },
        VP = function(D, J, u, P) {
            function g() {}
            return P = $N(D, function(C) {
                g && (J && Y(J), u = C, g(), g = void 0)
            }, (u = void 0, !!J))[0], {
                invoke: function(C, m, O, h) {
                    function S() {
                        u(function(z) {
                            Y(function() {
                                C(z)
                            })
                        }, O)
                    }
                    if (!m) return m = P(O), C && C(m), m;
                    u ? S() : (h = g, g = function() {
                        h(), Y(S)
                    })
                }
            }
        },
        Bj = function(D, J) {
            if ((D = (J = b.trustedTypes, null), !J) || !J.createPolicy) return D;
            try {
                D = J.createPolicy("bg", {
                    createHTML: um,
                    createScript: um,
                    createScriptURL: um
                })
            } catch (u) {
                b.console && b.console.error(u.message)
            }
            return D
        },
        T, Wj = function(D, J, u, P) {
            return X(u, (W(u, 41, (QP(u, (P = X(u, 41), u.O && P < u.R ? (W(u, 41, u.R), U4(D, u)) : W(u, 41, D), J)), P)), 138))
        },
        pz = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        hC = [],
        L = {},
        gc = (I.prototype.zn = void 0, I.prototype.m3 = void 0, I.prototype.h = "toString", []),
        oq = [],
        Sy = [],
        Z = [],
        l = (I.prototype.aw = false, []),
        V = [],
        e = [],
        R = (((((t = (Pj, K, qt, ey, I).prototype, t).H = function(D, J, u, P, g) {
            if (u = "array" === JC(u) ? u : [u], this.K) D(this.K);
            else try {
                g = !this.Y.length, P = [], M(this, [Z, P, u]), M(this, [l, D, P]), J && !g || Q(true, this, J)
            } catch (C) {
                r(this, C), D(this.K)
            }
        }, t.P = (window.performance || {}).now ? function() {
            return this.tf + window.performance.now()
        } : function() {
            return +new Date
        }, t).Iw = function(D, J, u, P, g, C) {
            for (u = (C = [], P = 0); u < D.length; u++)
                for (P += J, g = g << J | D[u]; 7 < P;) P -= 8, C.push(g >> P & 255);
            return C
        }, t).Qv = function() {
            return Math.floor(this.P())
        }, t.lS = function(D, J, u) {
            return D ^ (J ^= J << 13, J ^= J >> 17, (J = (J ^ J << 5) & u) || (J = 1), J)
        }, I.prototype).L = "create", t.wy = function(D, J, u, P, g) {
            for (P = g = 0; g < D.length; g++) P += D.charCodeAt(g), P += P << 10, P ^= P >> 6;
            return D = (P += P << 3, P ^= P >> 11, P + (P << 15)) >>> 0, g = new Number(D & (1 << J) - 1), g[0] = (D >>> J) % u, g
        }, L.constructor),
        kN = (t.gy = function() {
            return Math.floor(this.T + (this.P() - this.N))
        }, void 0),
        Nt = (I.prototype.i = function(D, J) {
            return D = (kN = function() {
                    return D == J ? -44 : -78
                }, J = {}, {}),
                function(u, P, g, C, m, O, h, S, z, H, U, q, v, f, w) {
                    D = (m = D, J);
                    try {
                        if (f = u[0], f == e) {
                            O = u[1];
                            try {
                                for (w = (q = (P = g = 0, atob(O)), []); P < q.length; P++) h = q.charCodeAt(P), 255 < h && (w[g++] = h & 255, h >>= 8), w[g++] = h;
                                W(this, (this.R = (this.O = w, this).O.length << 3, 504), [0, 0, 0])
                            } catch (B) {
                                n(this, 17, B);
                                return
                            }
                            QP(this, 8001)
                        } else if (f == Z) u[1].push(X(this, 199), X(this, 294).length, X(this, 498).length, X(this, 325).length), W(this, 138, u[2]), this.W[217] && Wj(X(this, 217), 8001, this);
                        else {
                            if (f == l) {
                                this.V = (z = (C = N(2, ((g = u[2], X)(this, 498).length | 0) + 2), this.V), this);
                                try {
                                    H = X(this, 334), 0 < H.length && y(this, 498, N(2, H.length).concat(H), 10), y(this, 498, N(1, this.A), 109), y(this, 498, N(1, this[l].length)), q = 0, q += X(this, 485) & 2047, U = X(this, 325), q -= (X(this, 498).length | 0) + 5, 4 < U.length && (q -= (U.length | 0) + 3), 0 < q && y(this, 498, N(2, q).concat(K(q)), 15), 4 < U.length && y(this, 498, N(2, U.length).concat(U), 156)
                                } finally {
                                    this.V = z
                                }
                                if (v = ((((w = K(2).concat(X(this, 498)), w)[1] = w[0] ^ 6, w)[3] = w[1] ^ C[0], w)[4] = w[1] ^ C[1], this.uS(w))) v = "!" + v;
                                else
                                    for (q = 0, v = ""; q < w.length; q++) S = w[q][this.h](16), 1 == S.length && (S = "0" + S), v += S;
                                return X((X(this, (X(this, ((P = v, W)(this, 199, g.shift()), 294)).length = g.shift(), 498)).length = g.shift(), this), 325).length = g.shift(), P
                            }
                            if (f == hC) Wj(u[1], u[2], this);
                            else if (f == V) return Wj(u[1], 8001, this)
                        }
                    } finally {
                        D = m
                    }
                }
        }(), /./),
        fz, bm = (I.prototype.Cr = (I.prototype[gc] = [0, 0, 1, 1, 0, 1, 1], (I.prototype.uS = function(D, J, u, P) {
            if (J = window.btoa) {
                for (P = (u = 0, ""); u < D.length; u += 8192) P += String.fromCharCode.apply(null, D.slice(u, u + 8192));
                D = J(P).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else D = void 0;
            return D
        }, I.prototype).UB = 0, 0), e).pop.bind(I.prototype[Z]),
        FY = ((fz = jy(I.prototype.L, (Nt[I.prototype.h] = bm, {get: bm
        })), I).prototype.MU = void 0, function(D, J) {
            return (J = Bj()) && 1 === D.eval(J.createScript("1")) ? function(u) {
                return J.createScript(u)
            } : function(u) {
                return "" + u
            }
        })(b);
    40 < (T = b.botguard || (b.botguard = {}), T.m) || (T.m = 41, T.bg = VP, T.a = $N), T.fBW_ = function(D, J, u) {
        return [(u = new I(D, J), function(P) {
            return im(u, P)
        })]
    };
}).call(this);
#4 JavaScript::Eval (size: 22) - SHA256: 174af6e6016c1e590f8d4e7351950a0e963b9bdd76053aa4cf08d101e5ff2e3e
0,
function(C) {
    Ze(1, C)
}
#5 JavaScript::Eval (size: 64) - SHA256: fa8cf4d758bc351b80d58fb3adc340342d4662dec22de0db7b51e1a5348972c7
0,
function(C, m, O) {
    W(C, (O = (m = x((O = x(C), C)), C).W[O] && X(C, O), m), O)
}
#6 JavaScript::Eval (size: 15551) - SHA256: 391dcf6365f4c1166d6427eab30eae9c2e563c7d7f62f24d01005a2d9976fdde
/* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var u = function(D) {
            return D
        },
        O = function(D, J) {
            if (J = (D = null, P.trustedTypes), !J || !J.createPolicy) return D;
            try {
                D = J.createPolicy("bg", {
                    createHTML: u,
                    createScript: u,
                    createScriptURL: u
                })
            } catch (C) {
                P.console && P.console.error(C.message)
            }
            return D
        },
        P = this || self;
    (0, eval)(function(D, J) {
        return (J = O()) && 1 === D.eval(J.createScript("1")) ? function(C) {
            return J.createScript(C)
        } : function(C) {
            return "" + C
        }
    }(P)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var M=function(D,J){D.Y.splice(0,0,J)},E={passive:true,capture:true},De=function(D,J){return[(D(function(u){u(J)}),function(){return J})]},JC=function(D,J,u){if("object"==(u=typeof D,u))if(D){if(D instanceof Array)return"array";if(D instanceof Object)return u;if(J=Object.prototype.toString.call(D),"[object Window]"==J)return"object";if("[object Array]"==J||"number"==typeof D.length&&"undefined"!=typeof D.splice&&"undefined"!=typeof D.propertyIsEnumerable&&!D.propertyIsEnumerable("splice"))return"array";if("[object Function]"==J||"undefined"!=typeof D.call&&"undefined"!=typeof D.propertyIsEnumerable&&!D.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==u&&"undefined"==typeof D.call)return"object";return u},p=function(D){return D.u?Cz(D.S,D):d(true,8,D)},um=function(D){return D},Pj=function(D,J){J.push(D[0]<<24|D[1]<<16|D[2]<<8|D[3]),J.push(D[4]<<24|D[5]<<16|D[6]<<8|D[7]),J.push(D[8]<<24|D[9]<<16|D[10]<<8|D[11])},mM=function(D,J,u,P,g){y(D,(((u=X(D,(P=(u=x((g=J&3,J&=4,D)),x(D)),u)),J)&&(u=O4(""+u)),g)&&y(D,P,N(2,u.length)),P),u)},E4=function(D,J,u,P,g){if((P=D[0],P)==Z)J.v=25,J.i(D);else if(P==l){u=D[1];try{g=J.K||J.i(D)}catch(C){r(J,C),g=J.K}u(g)}else if(P==hC)J.i(D);else if(P==e)J.i(D);else if(P==gc){try{for(g=0;g<J.o.length;g++)try{u=J.o[g],u[0][u[1]](u[2])}catch(C){}}catch(C){}(0,D[J.o=[],1])(function(C,m){J.H(C,true,m)},function(C){(M(J,(C=!J.Y.length,[oq])),C)&&Q(false,J,true)})}else{if(P==V)return g=D[2],W(J,149,D[6]),W(J,138,g),J.i(D);P==oq?(J.O=[],J.W=null,J.J=[]):P==Sy&&"loading"===b.document.readyState&&(J.C=function(C,m){function O(){m||(m=true,C())}b.document.addEventListener("DOMContentLoaded",(m=false,O),E),b.addEventListener("load",O,E)})}},jy=function(D,J){return R[D](R.prototype,{stack:J,pop:J,splice:J,call:J,length:J,document:J,console:J,propertyIsEnumerable:J,prototype:J,floor:J,replace:J,parent:J})},A=function(D,J,u,P,g,C,m,O,h){if(D.A+=(D.V=((h=(O=(J||D.s++,0<D.F)&&D.U&&D.YJ&&1>=D.B&&!D.u&&!D.C&&(!J||1<D.G-P)&&0==document.hidden,(m=4==D.s)||O?D.P():D.I),C=h-D.I,g=C>>14,D.l)&&(D.l^=g*(C<<2)),g)||D.V,g),m||O)D.s=0,D.I=h;if(!O||h-D.N<D.F-(u?255:J?5:2))return false;return D.C=((W(D,(u=X(D,(D.G=P,J?330:41)),41),D.R),D.Y).push([hC,u,J?P+1:P]),Y),true},dc=function(D,J,u,P){for(;J.Y.length;){P=(J.C=null,J.Y).pop();try{u=E4(P,J)}catch(g){r(J,g)}if(D&&J.C){D=J.C,D(function(){Q(true,J,true)});break}}return u},z$=function(D,J,u){return u=R[D.L](D.P$),u[D.L]=function(){return J},u.concat=function(P){J=P},u},Hj=function(D,J,u,P,g,C){for(u=(g=(J=((P=(C=D[pz]||{},x(D)),C).EB=x(D),C.g=[],D.V==D)?(p(D)|0)-1:1,x)(D),0);u<J;u++)C.g.push(x(D));for(C.Z=X(D,P);J--;)C.g[J]=X(D,C.g[J]);return C.W$=X(D,g),C},Q=function(D,J,u,P,g,C){if(J.Y.length){(J.U=!(J.U&&0(),0),J).YJ=u;try{P=J.P(),J.N=P,J.I=P,J.s=0,C=dc(u,J),g=J.P()-J.N,J.T+=g,g<(D?0:10)||0>=J.v--||(g=Math.floor(g),J.J.push(254>=g?g:254))}finally{J.U=false}return C}},n=function(D,J,u,P,g,C){if(!D.j){if((u=X(D,(J=((P=X(D,((C=void 0,u)&&u[0]===L&&(C=u[2],J=u[1],u=void 0),334)),0==P.length)&&(g=X(D,330)>>3,P.push(J,g>>8&255,g&255),void 0!=C&&P.push(C&255)),""),u&&(u.message&&(J+=u.message),u.stack&&(J+=":"+u.stack)),199)),3)<u){D.V=(C=(J=O4((u-=(J=J.slice(0,(u|0)-3),(J.length|0)+3),J)),D).V,D);try{y(D,325,N(2,J.length).concat(J),9)}finally{D.V=C}}W(D,199,u)}},N=function(D,J,u,P){for(P=(D|0)-(u=[],1);0<=P;P--)u[(D|0)-1-(P|0)]=J>>8*P&255;return u},$N=function(D,J,u,P){return(P=T[D.substring(0,3)+"_"])?P(D.substring(3),J,u):De(J,D)},t,qt=function(D,J,u,P){try{P=D[((J|0)+2)%3],D[J]=(D[J]|0)-(D[((J|0)+1)%3]|0)-(P|0)^(1==J?P<<u:P>>>u)}catch(g){throw g;}},x=function(D,J){if(D.u)return Cz(D.S,D);return J=d(true,8,D),J&128&&(J^=128,D=d(true,2,D),J=(J<<2)+(D|0)),J},U4=function(D,J){W(((J.Kr.push(J.W.slice()),J.W)[41]=void 0,J),41,D)},y=function(D,J,u,P,g,C){if(D.V==D)for(C=X(D,J),325==J?(J=function(m,O,h,S){if((S=(O=C.length,(O|0)-4)>>3,C.nr)!=S){C.nr=S,S=(h=[0,0,g[1],g[2]],(S<<3)-4);try{C.Rw=wc(h,vj((S|0)+4,C),vj(S,C))}catch(z){throw z;}}C.push(C.Rw[O&7]^m)},g=X(D,269)):J=function(m){C.push(m)},P&&J(P&255),D=0,P=u.length;D<P;D++)J(u[D])},W=function(D,J,u){if(41==J||330==J)D.W[J]?D.W[J].concat(u):D.W[J]=z$(D,u);else{if(D.j&&504!=J)return;498==J||325==J||294==J||334==J||269==J?D.W[J]||(D.W[J]=xN(D,110,u,J)):D.W[J]=xN(D,89,u,J)}504==J&&(D.l=d(false,32,D),D.X=void 0)},d=function(D,J,u,P,g,C,m,O,h,S,z,H,U,q){if((g=X(u,41),g)>=u.R)throw[L,31];for(z=(h=(O=0,U=J,u.Xu.length),g);0<U;)S=z%8,H=8-(S|0),H=H<U?H:U,q=z>>3,m=u.O[q],D&&(C=u,C.X!=z>>6&&(C.X=z>>6,P=X(C,504),C.D=wc([0,0,P[1],P[2]],C.X,C.l)),m^=u.D[q&h]),z+=H,O|=(m>>8-(S|0)-(H|0)&(1<<H)-1)<<(U|0)-(H|0),U-=H;return W(u,41,(D=O,(g|0)+(J|0))),D},XY=function(D,J){return(J=p(D),J)&128&&(J=J&127|p(D)<<7),J},yP=function(D,J,u,P,g,C){function m(){if(P.V==P){if(P.W){var O=[V,J,u,void 0,g,C,arguments];if(2==D)var h=Q(false,(M(P,O),P),false);else if(1==D){var S=!P.Y.length;(M(P,O),S)&&Q(false,P,false)}else h=E4(O,P);return h}g&&C&&g.removeEventListener(C,m,E)}}return m},rc=function(D,J,u,P,g){for(D.P$=(D.Xu=(D.Sq=fz,D.iS=Nt,D[l]),D.Vv=jy(D.L,{get:function(){return this.concat()}}),R[D.L](D.Vv,{value:{value:{}}})),g=0,P=[];128>g;g++)P[g]=String.fromCharCode(g);(M(D,(M(D,(M(D,(W(D,(a(D,function(C){lm(4,C)},(a((a(D,(a((a(D,function(C,m,O,h){W(C,(h=X(C,(m=(O=(h=x(C),x)(C),x(C)),h)),O=X(C,O),m),+(h==O))},(W(D,199,(a(D,(a(D,function(C,m,O,h){W(C,(O=(h=x(C),m=p(C),x(C)),O),X(C,h)>>>m)},(W(D,485,(W(D,(W(D,269,(W(D,334,(a(D,(a(D,function(C,m,O,h,S,z){if(!A(C,true,true,m)){if("object"==JC((C=(S=X((h=(h=(z=(m=(S=x(C),x(C)),x(C)),x)(C),m=X(C,m),X(C,h)),C),S),X(C,z)),S))){for(O in z=[],S)z.push(O);S=z}for(z=(C=(O=0,0<C?C:1),S.length);O<z;O+=C)m(S.slice(O,(O|0)+(C|0)),h)}},(W(D,(a(D,function(C,m,O,h){if(O=C.Kr.pop()){for(h=p(C);0<h;h--)m=x(C),O[m]=C.W[m];C.W=(O[199]=(O[334]=C.W[334],C.W)[199],O)}else W(C,41,C.R)},(a(D,function(){},(D.B$=(W(D,498,[160,(a((W(D,(a(D,function(C,m,O){A(C,true,false,m)||(m=x(C),O=x(C),W(C,O,function(h){return eval(h)}(FY(X(C.V,m)))))},(W(D,(a(D,function(C,m,O,h,S,z){A(C,true,false,m)||(h=Hj(C.V),z=h.Z,S=h.W$,m=h.EB,h=h.g,O=h.length,z=0==O?new S[z]:1==O?new S[z](h[0]):2==O?new S[z](h[0],h[1]):3==O?new S[z](h[0],h[1],h[2]):4==O?new S[z](h[0],h[1],h[2],h[3]):2(),W(C,m,z))},(a(D,function(C,m,O){W((m=(O=x(C),x(C)),C),m,""+X(C,O))},(a(D,function(C,m,O,h){!A(C,true,false,m)&&(m=Hj(C),h=m.Z,O=m.W$,C.V==C||h==C.Lr&&O==C)&&(W(C,m.EB,h.apply(O,m.g)),C.I=C.P())},(((a(D,function(C,m,O,h,S){W(C,(O=X(C,(S=X(C,(h=X(C,(S=(h=(O=(m=x(C),x(C)),x(C)),x(C)),h)),S)),O)),m),yP(S,O,h,C))},(a(D,(a(D,function(C,m,O,h,S){(m=X(C,(h=(S=X(C,(O=(m=(O=x(C),S=x(C),h=x(C),x)(C),X(C.V,O)),S)),X(C,h)),m)),0!==O)&&(m=yP(1,h,m,C,O,S),O.addEventListener(S,m,E),W(C,298,[O,S,m]))},(((a(D,function(C,m,O){W(C,(m=(O=x((m=x(C),C)),X(C,m)),m=JC(m),O),m)},(a(D,function(C,m,O,h){O=X(C,(h=X(C,(m=x((O=x(C),C)),m)),O)),W(C,m,h+O)},(a((a((a(D,function(C,m,O,h,S,z,H){for(H=X(C,(m=(h=x(C),XY)(C),O="",245)),S=H.length,z=0;m--;)z=((z|0)+(XY(C)|0))%S,O+=P[H[z]];W(C,h,O)},(D.xJ=(W((D.tf=(D.YJ=(D.OB=0,D.v=25,(D.J=[],D.X=void 0,D).G=8001,(D.Lr=function(C){this.V=C},D).N=(D.D=(D.s=void 0,D.C=null,void 0),D.O=[],D.W=(D.F=0,g=((D.Y=[],D).I=0,window.performance||{}),[]),D.B=0,D.S=void 0,D.T=0,0),D.l=(D.R=0,D.j=false,void 0),D.Kr=((D.o=[],D.A=1,D).u=void 0,[]),false),D.K=void 0,D.U=(D.V=D,false),g.timeOrigin||(g.timing||{}).navigationStart)||0,W(D,41,0),D),330,0),a(D,function(C){mM(C,4)},128),0),259)),D),function(C,m,O,h,S,z,H,U,q,v,f,w){function B(F,k){for(;U<F;)S|=p(C)<<U,U+=8;return S>>=(U-=F,k=S&(1<<F)-1,F),k}for(f=(z=(S=U=(m=x(C),0),(B(3)|0)+1),q=B(5),[]),O=v=0;v<q;v++)w=B(1),f.push(w),O+=w?0:1;for(H=(O=(v=((O|0)-1).toString(2).length,0),[]);O<q;O++)f[O]||(H[O]=B(v));for(v=0;v<q;v++)f[v]&&(H[v]=x(C));for(h=[];z--;)h.push(X(C,x(C)));a(C,function(F,k,c,Mt,G){for(G=(Mt=(c=0,[]),[]);c<q;c++){if(!(k=H[c],f)[c]){for(;k>=G.length;)G.push(x(F));k=G[k]}Mt.push(k)}F.S=(F.u=z$(F,h.slice()),z$)(F,Mt)},m)},224),D),function(C){mM(C,3)},349),307)),273)),W)(D,138,{}),W)(D,132,173),321)),function(C,m,O,h){W(C,(O=x((h=(m=x(C),x)(C),C)),O),X(C,m)||X(C,h))}),236),455)),a)(D,function(C){Ze(4,C)},487),D).NU=0,210)),a(D,function(C,m){U4((m=X(C,x(C)),m),C.V)},85),198)),46)),294),[]),70)),298),0),D),function(C,m,O){(O=(O=x((m=x(C),C)),X)(C,O),0!=X(C,m))&&W(C,41,O)},474),0),0]),a(D,function(C,m,O,h,S){for(O=(h=(m=x(C),XY(C)),[]),S=0;S<h;S++)O.push(p(C));W(C,m,O)},176),0),462)),171)),117),b),178)),function(C,m,O,h){W((m=X(C,(O=X(C,(h=x((m=x((O=x(C),C)),C)),O)),m)),C),h,O[m])}),303),[])),[0,0,0])),67),D),0)),119)),function(C,m){(C=(m=x(C),X(C.V,m)),C[0]).removeEventListener(C[1],C[2],E)}),322),2048)),59)),D),function(C){lm(1,C)},410),function(C,m,O,h){h=x((O=x((m=x(C),C)),C)),C.V==C&&(h=X(C,h),O=X(C,O),X(C,m)[O]=h,504==m&&(C.X=void 0,2==O&&(C.l=d(false,32,C),C.X=void 0)))}),509),D),function(C,m,O,h){W(C,(h=X(C,(O=X(C,(O=x((h=x(C),C)),m=x(C),O)),h)),m),h in O|0)},364),94)),325),K(4)),[Sy])),[e,u])),[gc,J])),Q)(true,D,true)},b=this||self,Cz=function(D,J){return(D=D.create().shift(),J.u.create()).length||J.S.create().length||(J.S=void 0,J.u=void 0),D},xN=function(D,J,u,P,g,C,m,O){return m=(u=[60,14,-7,(g=(O=kN,J&7),-88),72,42,u,25,-3,34],R[D.L](D.Vv)),m[D.L]=function(h){g+=6+7*J,C=h,g&=7},m.concat=function(h){return(h=(C=(h=-476*P*C+g-(h=P%16+1,h*C)+u[g+19&7]*P*h+(O()|0)*h+4*P*P*h+34*C*C- -1496*C-136*P*P*C,void 0),u[h]),u[(g+29&7)+(J&2)]=h,u)[g+(J&2)]=14,h},m},X=function(D,J){if(void 0===(D=D.W[J],D))throw[L,30,J];if(D.value)return D.create();return(D.create(4*J*J+14*J+-44),D).prototype},O4=function(D,J,u,P,g){for(g=(J=(D=D.replace(/\\r\\n/g,"\\n"),[]),u=0);g<D.length;g++)P=D.charCodeAt(g),128>P?J[u++]=P:(2048>P?J[u++]=P>>6|192:(55296==(P&64512)&&g+1<D.length&&56320==(D.charCodeAt(g+1)&64512)?(P=65536+((P&1023)<<10)+(D.charCodeAt(++g)&1023),J[u++]=P>>18|240,J[u++]=P>>12&63|128):J[u++]=P>>12|224,J[u++]=P>>6&63|128),J[u++]=P&63|128);return J},Ze=function(D,J,u,P){for(P=x(J),u=0;0<D;D--)u=u<<8|p(J);W(J,P,u)},lm=function(D,J,u,P){y(J,(u=x(J),P=x(J),P),N(D,X(J,u)))},K=function(D,J){for(J=[];D--;)J.push(255*Math.random()|0);return J},ey=function(D,J,u){if(3==D.length){for(u=0;3>u;u++)J[u]+=D[u];for(u=[13,8,13,12,(D=0,16),5,3,10,15];9>D;D++)J[3](J,D%3,u[D])}},a=function(D,J,u){(W(D,u,J),J)[Sy]=2796},wc=function(D,J,u,P,g){for(D=D[g=0,P=D[2]|0,3]|0;14>g;g++)J=J>>>8|J<<24,D=D>>>8|D<<24,D+=P|0,J+=u|0,J^=P+3261,u=u<<3|u>>>29,D^=g+3261,P=P<<3|P>>>29,u^=J,P^=D;return[u>>>24&255,u>>>16&255,u>>>8&255,u>>>0&255,J>>>24&255,J>>>16&255,J>>>8&255,J>>>0&255]},r=function(D,J){D.K=((D.K?D.K+"~":"E:")+J.message+":"+J.stack).slice(0,2048)},QP=function(D,J,u,P,g,C){if(!D.K){D.B++;try{for(g=(P=(u=0,void 0),D.R);--J;)try{if(C=void 0,D.u)P=Cz(D.u,D);else{if((u=X(D,41),u)>=g)break;P=(C=(W(D,330,u),x(D)),X(D,C))}A(D,(P&&P[oq]&2048?P(D,J):n(D,0,[L,21,C]),false),false,J)}catch(m){X(D,132)?n(D,22,m):W(D,132,m)}if(!J){if(D.aw){(D.B--,QP)(D,439541719848);return}n(D,0,[L,33])}}catch(m){try{n(D,22,m)}catch(O){r(D,O)}}D.B--}},im=function(D,J,u){return D.H(function(P){u=P},false,J),u},Y=b.requestIdleCallback?function(D){requestIdleCallback(function(){D()},{timeout:4})}:b.setImmediate?function(D){setImmediate(D)}:function(D){setTimeout(D,0)},vj=function(D,J){return J[D]<<24|J[(D|0)+1]<<16|J[(D|0)+2]<<8|J[(D|0)+3]},I=function(D,J,u){u=this;try{rc(this,J,D)}catch(P){r(this,P),J(function(g){g(u.K)})}},VP=function(D,J,u,P){function g(){}return P=$N(D,function(C){g&&(J&&Y(J),u=C,g(),g=void 0)},(u=void 0,!!J))[0],{invoke:function(C,m,O,h){function S(){u(function(z){Y(function(){C(z)})},O)}if(!m)return m=P(O),C&&C(m),m;u?S():(h=g,g=function(){h(),Y(S)})}}},Bj=function(D,J){if((D=(J=b.trustedTypes,null),!J)||!J.createPolicy)return D;try{D=J.createPolicy("bg",{createHTML:um,createScript:um,createScriptURL:um})}catch(u){b.console&&b.console.error(u.message)}return D},T,Wj=function(D,J,u,P){return X(u,(W(u,41,(QP(u,(P=X(u,41),u.O&&P<u.R?(W(u,41,u.R),U4(D,u)):W(u,41,D),J)),P)),138))},pz=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),hC=[],L={},gc=(I.prototype.zn=void 0,I.prototype.m3=void 0,I.prototype.h="toString",[]),oq=[],Sy=[],Z=[],l=(I.prototype.aw=false,[]),V=[],e=[],R=(((((t=(Pj,K,qt,ey,I).prototype,t).H=function(D,J,u,P,g){if(u="array"===JC(u)?u:[u],this.K)D(this.K);else try{g=!this.Y.length,P=[],M(this,[Z,P,u]),M(this,[l,D,P]),J&&!g||Q(true,this,J)}catch(C){r(this,C),D(this.K)}},t.P=(window.performance||{}).now?function(){return this.tf+window.performance.now()}:function(){return+new Date},t).Iw=function(D,J,u,P,g,C){for(u=(C=[],P=0);u<D.length;u++)for(P+=J,g=g<<J|D[u];7<P;)P-=8,C.push(g>>P&255);return C},t).Qv=function(){return Math.floor(this.P())},t.lS=function(D,J,u){return D^(J^=J<<13,J^=J>>17,(J=(J^J<<5)&u)||(J=1),J)},I.prototype).L="create",t.wy=function(D,J,u,P,g){for(P=g=0;g<D.length;g++)P+=D.charCodeAt(g),P+=P<<10,P^=P>>6;return D=(P+=P<<3,P^=P>>11,P+(P<<15))>>>0,g=new Number(D&(1<<J)-1),g[0]=(D>>>J)%u,g},L.constructor),kN=(t.gy=function(){return Math.floor(this.T+(this.P()-this.N))},void 0),Nt=(I.prototype.i=function(D,J){return D=(kN=function(){return D==J?-44:-78},J={},{}),function(u,P,g,C,m,O,h,S,z,H,U,q,v,f,w){D=(m=D,J);try{if(f=u[0],f==e){O=u[1];try{for(w=(q=(P=g=0,atob(O)),[]);P<q.length;P++)h=q.charCodeAt(P),255<h&&(w[g++]=h&255,h>>=8),w[g++]=h;W(this,(this.R=(this.O=w,this).O.length<<3,504),[0,0,0])}catch(B){n(this,17,B);return}QP(this,8001)}else if(f==Z)u[1].push(X(this,199),X(this,294).length,X(this,498).length,X(this,325).length),W(this,138,u[2]),this.W[217]&&Wj(X(this,217),8001,this);else{if(f==l){this.V=(z=(C=N(2,((g=u[2],X)(this,498).length|0)+2),this.V),this);try{H=X(this,334),0<H.length&&y(this,498,N(2,H.length).concat(H),10),y(this,498,N(1,this.A),109),y(this,498,N(1,this[l].length)),q=0,q+=X(this,485)&2047,U=X(this,325),q-=(X(this,498).length|0)+5,4<U.length&&(q-=(U.length|0)+3),0<q&&y(this,498,N(2,q).concat(K(q)),15),4<U.length&&y(this,498,N(2,U.length).concat(U),156)}finally{this.V=z}if(v=((((w=K(2).concat(X(this,498)),w)[1]=w[0]^6,w)[3]=w[1]^C[0],w)[4]=w[1]^C[1],this.uS(w)))v="!"+v;else for(q=0,v="";q<w.length;q++)S=w[q][this.h](16),1==S.length&&(S="0"+S),v+=S;return X((X(this,(X(this,((P=v,W)(this,199,g.shift()),294)).length=g.shift(),498)).length=g.shift(),this),325).length=g.shift(),P}if(f==hC)Wj(u[1],u[2],this);else if(f==V)return Wj(u[1],8001,this)}}finally{D=m}}}(),/./),fz,bm=(I.prototype.Cr=(I.prototype[gc]=[0,0,1,1,0,1,1],(I.prototype.uS=function(D,J,u,P){if(J=window.btoa){for(P=(u=0,"");u<D.length;u+=8192)P+=String.fromCharCode.apply(null,D.slice(u,u+8192));D=J(P).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else D=void 0;return D},I.prototype).UB=0,0),e).pop.bind(I.prototype[Z]),FY=((fz=jy(I.prototype.L,(Nt[I.prototype.h]=bm,{get:bm})),I).prototype.MU=void 0,function(D,J){return(J=Bj())&&1===D.eval(J.createScript("1"))?function(u){return J.createScript(u)}:function(u){return""+u}})(b);40<(T=b.botguard||(b.botguard={}),T.m)||(T.m=41,T.bg=VP,T.a=$N),T.fBW_=function(D,J,u){return[(u=new I(D,J),function(P){return im(u,P)})]};}).call(this);'));
}).call(this);

Executed Writes (0)

HTTP Transactions (83)


Request Response
 
                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         143.204.55.35

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/json 

                                        
                                    
                                        

                                        
                                            
Content-Length: 939 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After 

                                        
                                            
Cache-Control: max-age=3600 

                                        
                                            
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
Date: Sat, 24 Sep 2022 18:14:34 GMT 

                                        
                                            
X-Content-Type-Options: nosniff 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: fhm5uKSCPf1rDBBtVoja37_vdJZbZQWgzmLiAJNABGbrmfFw-4kPAw== 

                                        
                                            
Age: 1806 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    1b3053fa528e28810f8a2cc9284cc921

                                                Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a

                                                Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /?m=1 HTTP/1.1 

                                        
                                            
Host: revista-66524.blogspot.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1
search 
                                         142.250.74.161

                                        
                                            HTTP/1.1 301 Moved Permanently 

                                        
                                            
Content-Type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
Location: https://revista-66524.blogspot.com/?m=1 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:40 GMT 

                                        
                                            
Expires: Sat, 24 Sep 2022 18:44:40 GMT 

                                        
                                            
Cache-Control: private, max-age=0 

                                        
                                            
X-Content-Type-Options: nosniff 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
Content-Security-Policy: frame-ancestors 'self' 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 187 

                                        
                                            
Server: GSE 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text

                                                Size:   187

                                                Md5:    c35295b5c7bbfef1c0d03d6ea11b2682

                                                Sha1:   7017a8246a15329a71d94c60946e7748eeb12048

                                                Sha256: a921363983b05229660933815d3770e37ba95cb3f43262f0b06674565ba2a631

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - fortinet: Phishing

                                                    
                                                
                                                
                                                

                                                
                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80" 

                                        
                                            
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=4518 

                                        
                                            
Expires: Sat, 24 Sep 2022 19:59:58 GMT 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:40 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232" 

                                        
                                            
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=5386 

                                        
                                            
Expires: Sat, 24 Sep 2022 20:14:26 GMT 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:40 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.160.144.191

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: binary/octet-stream 

                                        
                                    
                                        

                                        
                                            
x-amz-id-2: Ul9M9tZ8/qXd8TkzpkeoaZxs5LWaWqDJ5906VFMWwg9ACnXbeQbrLfA+qlsLG46Z8rVQ3rnVlPE= 

                                        
                                            
x-amz-request-id: TQMA45E49RGRDBC3 

                                        
                                            
content-disposition: attachment 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
content-length: 5348 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Sat, 24 Sep 2022 17:45:16 GMT 

                                        
                                            
age: 3564 

                                        
                                            
last-modified: Sat, 10 Sep 2022 18:47:45 GMT 

                                        
                                            
etag: "6113f8408c59aebe188d6af273b90743" 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    6113f8408c59aebe188d6af273b90743

                                                Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b

                                                Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:40 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sat, 24 Sep 2022 18:44:40 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         143.204.55.35

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/json 

                                        
                                    
                                        

                                        
                                            
Content-Length: 329 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After 

                                        
                                            
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
Strict-Transport-Security: max-age=31536000 

                                        
                                            
X-Content-Type-Options: nosniff 

                                        
                                            
Cache-Control: max-age=3600, max-age=3600 

                                        
                                            
Date: Sat, 24 Sep 2022 18:04:17 GMT 

                                        
                                            
Expires: Sat, 24 Sep 2022 18:56:43 GMT 

                                        
                                            
ETag: "1648230346554" 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: O1oc5sx3RYTYQjCh80ibklt5i6oVZqAgKqb7zTtFk-J5TOZ5PSfGog== 

                                        
                                            
Age: 2423 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 5251 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:40 GMT 

                                        
                                            
Last-Modified: Sat, 24 Sep 2022 17:17:09 GMT 

                                        
                                            
Server: ECS (ska/F708) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /?m=1 HTTP/1.1 

                                        
                                            
Host: revista-66524.blogspot.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1
search 
                                         142.250.74.161

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
expires: Sat, 24 Sep 2022 18:44:41 GMT 

                                        
                                            
date: Sat, 24 Sep 2022 18:44:41 GMT 

                                        
                                            
cache-control: private, max-age=0 

                                        
                                            
last-modified: Fri, 23 Sep 2022 20:41:45 GMT 

                                        
                                            
etag: W/"0aaa2c5b49b8624cd61f99e58ef3b4ad2ca33ba8896bfe0fe4ee50e1da92a40f" 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
content-length: 17083 

                                        
                                            
server: GSE 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6565)

                                                Size:   17083

                                                Md5:    935b060b0b1ba7e6e0bcbc6d51c34dbd

                                                Sha1:   c9d21d94b52db34fb9ed827d48d25d1037f75c43

                                                Sha256: 1edee9a62db6a7d7e6b3e24ebcf2b764b2d225024f114f4e0f9b1478a1f63c1c

                                            

                                            
                                                
Alerts:

                                                

                                                
                                                      Blocklists:

                                                    
                                                            - fortinet: Phishing

                                                    
                                                
                                                
                                                

                                                
                                            
                                            
                                        

                                    
                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: 4+Vw9AKInFlmmqm5Km9GEA== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket
search 
                                         44.242.41.15

                                        
                                            HTTP/1.1 101 Switching Protocols 

                                        
                                    
                                        

                                        
                                            
Connection: Upgrade 

                                        
                                            
Upgrade: websocket 

                                        
                                            
Sec-WebSocket-Accept: Hcx82/RKTD3vb/M+exfmaZ08dnw= 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:41 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /inicio.php HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://revista-66524.blogspot.com/ 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 302 Found 

                                        
                                            
Content-Type: text/html; charset=utf-8 

                                        
                                    
                                        

                                        
                                            
Content-Length: 0 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:41 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Location: http://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
X-Powered-By: PHP/8.0.19 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" 

                                        
                                            
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6695 

                                        
                                            
Expires: Sat, 24 Sep 2022 20:36:16 GMT 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:41 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" 

                                        
                                            
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6694 

                                        
                                            
Expires: Sat, 24 Sep 2022 20:36:16 GMT 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" 

                                        
                                            
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6694 

                                        
                                            
Expires: Sat, 24 Sep 2022 20:36:16 GMT 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" 

                                        
                                            
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6694 

                                        
                                            
Expires: Sat, 24 Sep 2022 20:36:16 GMT 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /renner/inicio/login.php HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 301 Moved Permanently 

                                        
                                    
                                        

                                        
                                            
Content-Length: 0 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:41 GMT 

                                        
                                            
Location: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3" 

                                        
                                            
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6694 

                                        
                                            
Expires: Sat, 24 Sep 2022 20:36:16 GMT 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 10032 

                                        
                                            
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: Y7sPBHGYoAMFh-Q= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: lAQOV9_fZ2RFvhRKMtDOeRTWJc-Jo1u-DrtJshcQuCSOUXVbNMjhaw== 

                                        
                                            
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Fri, 23 Sep 2022 21:56:56 GMT 

                                        
                                            
age: 74866 

                                        
                                            
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   10032

                                                Md5:    aa150280eb113504d61a25935c0f0127

                                                Sha1:   ed04f74fbb4c77b21e2babc51a82857f5e23d169

                                                Sha256: 07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 10279 

                                        
                                            
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: Y4V65GTXIAMF9-Q= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: NcnEyVD-vG10pOpPCBMjKGqVw-rstkPIt-oqkIc5urAGE934fxL0VQ== 

                                        
                                            
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sat, 24 Sep 2022 04:12:38 GMT 

                                        
                                            
age: 52324 

                                        
                                            
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   10279

                                                Md5:    8ea5f06ad31f0cedd2cb5c6df82f35f4

                                                Sha1:   60a83a1618ffae06e49ca3002bac1db9980dcfe8

                                                Sha256: 5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 6386 

                                        
                                            
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: Y7shGHryIAMF6zg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg== 

                                        
                                            
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Fri, 23 Sep 2022 21:52:36 GMT 

                                        
                                            
age: 75126 

                                        
                                            
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   6386

                                                Md5:    d8d9af95acfc8b9b431eb1e020157f6d

                                                Sha1:   f6f926be6e265a597aaede424f05fcd7c76fcc20

                                                Sha256: 0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8029 

                                        
                                            
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: Y4Y0tHjGoAMFcFw= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT 

                                        
                                            
x-amz-cf-pop: SEA73-P1 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA== 

                                        
                                            
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Fri, 23 Sep 2022 21:59:08 GMT 

                                        
                                            
age: 74734 

                                        
                                            
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8029

                                                Md5:    02a682b4703bb9d6381c762726c05531

                                                Sha1:   1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54

                                                Sha256: fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8354 

                                        
                                            
x-amzn-requestid: 3ec3470c-2268-4102-af88-27dcfed76bfc 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: Y7sPCGOcoAMF2xQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-632e272c-481aa98b413690636fc3a2f0;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: dXqPCGTGK8gW86McTltPuNYKXQgUuSqcL_XbyRQitinH5LsUscmU2w== 

                                        
                                            
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Fri, 23 Sep 2022 21:47:49 GMT 

                                        
                                            
age: 75413 

                                        
                                            
etag: "670d89082f8da643e1196b11fb64bf71707f0e8d" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8354

                                                Md5:    e1087dcce202bbbc8c84196bd2050662

                                                Sha1:   670d89082f8da643e1196b11fb64bf71707f0e8d

                                                Sha256: f6a7b6e07177431d7845e2f2b7b1b3b76088671db32aeef580a72e9bd3ddae00

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 9935 

                                        
                                            
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: Y7sQ5FARoAMFXQQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg== 

                                        
                                            
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Fri, 23 Sep 2022 21:53:50 GMT 

                                        
                                            
age: 75052 

                                        
                                            
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   9935

                                                Md5:    55d224ac83a417772c98bc5080fb6689

                                                Sha1:   a30f9044330824e70dde0dcc785890d981e6fdf5

                                                Sha256: b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /gtm.js?id=GTM-N2FTFQ HTTP/1.1 

                                        
                                            
Host: www.googletagmanager.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.72

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-headers: Cache-Control 

                                        
                                            
content-encoding: br 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
expires: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
cache-control: private, max-age=900 

                                        
                                            
last-modified: Sat, 24 Sep 2022 18:00:00 GMT 

                                        
                                            
strict-transport-security: max-age=31536000; includeSubDomains 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
server: Google Tag Manager 

                                        
                                            
content-length: 48825 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (3707)

                                                Size:   48825

                                                Md5:    1400c72a73ba30372b88ad563ed8fc88

                                                Sha1:   7b01ace5feedcec14196b7978bde3055a32465d2

                                                Sha256: 26db6f78684d5e51c9320f2484dabd5a68c6adcb289e97cf8d58302e01052b0e

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /renner/inicio/login.php HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html; charset=utf-8 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
X-Powered-By: PHP/8.0.19 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (667)

                                                Size:   128232

                                                Md5:    4e4dabf2a5daa9da15981e9db571badd

                                                Sha1:   f629bc90f68c29e2ce6464ad352ac3af9fe6b5ea

                                                Sha256: 22e66d3e6a0ea2d226d6a9d143f4000273a250e7b35bd8792b10d894001fd73d

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /ajax/libs/jquery.mask/1.14.11/jquery.mask.min.js HTTP/1.1 

                                        
                                            
Host: cdnjs.cloudflare.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         104.17.24.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=utf-8 

                                        
                                    
                                        

                                        
                                            
date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
content-length: 2995 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
cache-control: public, max-age=30672000 

                                        
                                            
content-encoding: br 

                                        
                                            
etag: "5eb03ec3-1f33" 

                                        
                                            
last-modified: Mon, 04 May 2020 16:11:47 GMT 

                                        
                                            
cf-cdnjs-via: cfworker/kv 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 7056865 

                                        
                                            
expires: Thu, 14 Sep 2023 18:44:42 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zD4PXp%2FMymAc5UqTfy8laarudNFTPW5hZP2dDxvkpwGuwEm9dcgHrBTaMObtPdEm23RJHzbiRUnjVUKUJIjKGfuKq5FimfQfoOylFPPo%2B7RnIQ7jtyJpUtyrEfYe%2BawjsgUmesx4"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
strict-transport-security: max-age=15780000 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 74fdac463b85b50f-OSL 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (551)

                                                Size:   2995

                                                Md5:    5f345b49c5cccdac9d92d226c63c0848

                                                Sha1:   51daf502544cba68c3b260b80782818edc3509b7

                                                Sha256: d783ef3c478b98da6c706b71289143dbe1546b59ab498eafc8011c535312c92f

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1 

                                        
                                            
Host: cdnjs.cloudflare.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         104.17.24.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=utf-8 

                                        
                                    
                                        

                                        
                                            
date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
content-length: 27433 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
cache-control: public, max-age=30672000 

                                        
                                            
content-encoding: br 

                                        
                                            
etag: "5eb03ec4-1538f" 

                                        
                                            
last-modified: Mon, 04 May 2020 16:11:48 GMT 

                                        
                                            
cf-cdnjs-via: cfworker/kv 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 1390484 

                                        
                                            
expires: Thu, 14 Sep 2023 18:44:42 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QDhSNTBI1KHlp8mY1JoXx1Kky6eAQJzEiDqV%2F1o6%2FgtQM0MBGIMYb0SgcEGs1xZ7Isdsu3Sepa9V%2BtQXSScAd9c2v2BNSVrHEBoN94dojQnN6z7OLCccEEVtPUCEQ%2FmcQMCHwAY1"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
strict-transport-security: max-age=15780000 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 74fdac463b84b50f-OSL 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (65451)

                                                Size:   27433

                                                Md5:    77bd61b98f7b67af56639229724f8dd4

                                                Sha1:   f04f07dd8ff53e58c32b738f81b71a014bca441d

                                                Sha256: 8ce54c3b77bf31899b27b29188ff4936b580f2bd2b3222d43dda2851ba272e24

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /recaptcha/api.js?onload=onLoadRecaptcha&render=explicit&hl=pt-BR HTTP/1.1 

                                        
                                            
Host: www.google.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.164

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
expires: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
cache-control: private, max-age=300 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
content-security-policy: frame-ancestors 'self' 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
content-length: 577 

                                        
                                            
server: GSE 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (913), with no line terminators

                                                Size:   577

                                                Md5:    1cabadc7c2f1772988eada3a342c7d4b

                                                Sha1:   c567f9c6f4b23c49d6215d90ccafcd311f0adbac

                                                Sha256: 2a506a2727b89bcd5b033d98a80f5be4251d9d453924d3dcde3a77037db054af

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /cartoes-renner/js/vendors.bundle-859d26788acf215a201a.js HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=- 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         54.230.245.118

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Last-Modified: Sat, 24 Sep 2022 17:09:16 GMT 

                                        
                                            
Server: ECS (nyb/1D31) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-P1 

                                        
                                            
X-Amz-Cf-Id: baEXHS9_UzJzvDA8A0Hw6ZdbyBsXBa9Seuy21K_Sa-VjfSLOo3OXog== 

                                        
                                            
Age: 5726 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /cartoes-renner/js/3.bundle-b50fd5103304ce6835d8.js HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/js/2.bundle-f1f55db44dc2d8d8d302.js HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /ruxitagentjs_D_10249220905100923.js HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=- 

                                        
                                            
Sec-Fetch-Dest: worker 

                                        
                                            
Sec-Fetch-Mode: same-origin 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /recaptcha/releases/PRMRaAwB3KlylGQR57Dyk-pF/styles__ltr.css HTTP/1.1 

                                        
                                            
Host: www.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.google.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" 

                                        
                                            
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} 

                                        
                                            
content-length: 24251 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Tue, 20 Sep 2022 00:56:18 GMT 

                                        
                                            
expires: Wed, 20 Sep 2023 00:56:18 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 409704 

                                        
                                            
last-modified: Mon, 15 Aug 2022 20:03:29 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (52762), with no line terminators

                                                Size:   24251

                                                Md5:    f2d649025c814be9c33f166a5e04fe88

                                                Sha1:   26bf59de631415927ba2c6c9e44fe9c763f95313

                                                Sha256: f95ec963b7657097e1ef827fc07d96eda5b63f7d3e17b5a1b5eeb7a8d0b67921

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/js/vendors.bundle-859d26788acf215a201a.js HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=- 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/vectors/whatsapp.svg HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=- 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: same-origin 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /recaptcha/releases/PRMRaAwB3KlylGQR57Dyk-pF/recaptcha__pt_br.js HTTP/1.1 

                                        
                                            
Host: www.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.google.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript 

                                        
                                    
                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" 

                                        
                                            
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} 

                                        
                                            
content-length: 158387 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Wed, 21 Sep 2022 18:46:27 GMT 

                                        
                                            
expires: Thu, 21 Sep 2023 18:46:27 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
last-modified: Mon, 15 Aug 2022 20:03:29 GMT 

                                        
                                            
age: 259095 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (661)

                                                Size:   158387

                                                Md5:    714a6dee54312535c0e0332e05e2ebee

                                                Sha1:   bd78198f31ccd04d76e83216071da0e0d630999e

                                                Sha256: 4d1824b700ec7315410f205cfe89aec8c2d2fb92d4bcb7e7cac7afee3eaafcb5

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/vectors/bg-login.svg HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=- 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /df/tag.js?id=PM-N2FTFQ HTTP/1.1 

                                        
                                            
Host: cdn.pmweb.com.br 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         54.207.135.96

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript 

                                        
                                    
                                        

                                        
                                            
Cache-Control: max-age=300 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:42 GMT 

                                        
                                            
ETag: W/"631b9690-587b" 

                                        
                                            
Expires: Sat, 24 Sep 2022 18:49:42 GMT 

                                        
                                            
Last-Modified: Fri, 09 Sep 2022 19:40:00 GMT 

                                        
                                            
Server: nginx 

                                        
                                            
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Content-Length: 9197 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (22651), with no line terminators

                                                Size:   9197

                                                Md5:    bb462b00b14c20c1058237a188f4033b

                                                Sha1:   6cb3f0724e5b750d6d1ae92518a9126314368e7b

                                                Sha256: ff1a4463eadc1c7e0bce4edd7635a026f7106130efd1c27bd4bb8af6104edf08

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/js/main.bundle-af99510fd5623f73dd00.js HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=- 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /ruxitagentjs_D_10249220905100923.js HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=- 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/fonts/Roboto-Bold.woff2 HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=- 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Content-Length: 153 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   153

                                                Md5:    ac5ea41aae137cead073d37a7bb732bc

                                                Sha1:   85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae

                                                Sha256: fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/fonts/Roboto-Black.woff2 HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=- 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Content-Length: 153 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   153

                                                Md5:    ac5ea41aae137cead073d37a7bb732bc

                                                Sha1:   85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae

                                                Sha256: fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/fonts/Roboto-Regular.woff HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=- 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Content-Length: 153 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   153

                                                Md5:    ac5ea41aae137cead073d37a7bb732bc

                                                Sha1:   85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae

                                                Sha256: fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/fonts/Roboto-Bold.woff HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=-; _pm_id=824401664045081900; _pm_sid=539501664045081900 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Content-Length: 153 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   153

                                                Md5:    ac5ea41aae137cead073d37a7bb732bc

                                                Sha1:   85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae

                                                Sha256: fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/fonts/Roboto-Black.woff HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=-; _pm_id=824401664045081900; _pm_sid=539501664045081900 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Content-Length: 153 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   153

                                                Md5:    ac5ea41aae137cead073d37a7bb732bc

                                                Sha1:   85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae

                                                Sha256: fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/fonts/Roboto-Regular.ttf HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=-; _pm_id=824401664045081900; _pm_sid=539501664045081900 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/fonts/Roboto-Light.woff2 HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=- 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Content-Length: 153 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   153

                                                Md5:    ac5ea41aae137cead073d37a7bb732bc

                                                Sha1:   85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae

                                                Sha256: fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         54.230.245.118

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Last-Modified: Sat, 24 Sep 2022 18:20:32 GMT 

                                        
                                            
Server: ECS (bsa/EB14) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-P1 

                                        
                                            
X-Amz-Cf-Id: 0qTxDkifdk9dIVmsxytsvej-ce-6vFJxE9bCJsfhjgYooh6c3J9obw== 

                                        
                                            
Age: 1451 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /cartoes-renner/fonts/Roboto-Bold.ttf HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=-; _pm_id=824401664045081900; _pm_sid=539501664045081900 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/fonts/Roboto-Black.ttf HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046881148|1664045081141; dtLatC=428; dtSa=-; _pm_id=824401664045081900; _pm_sid=539501664045081900 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/fonts/Roboto-Light.woff HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h4vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046882175|1664045081141; dtLatC=428; dtSa=-; _pm_id=824401664045081900; _pm_sid=539501664045081900 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Content-Length: 153 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   153

                                                Md5:    ac5ea41aae137cead073d37a7bb732bc

                                                Sha1:   85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae

                                                Sha256: fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/fonts/Roboto-Light.ttf HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h4vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046882175|1664045081141; dtLatC=428; dtSa=-; _pm_id=824401664045081900; _pm_sid=539501664045081900 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:43 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /frame-image-br/bg.png?x-id=real&x-r= HTTP/1.1 

                                        
                                            
Host: s3-sa-east-1.amazonaws.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         52.95.163.10

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png 

                                        
                                    
                                        

                                        
                                            
x-amz-id-2: EcEx6IAOSmRlIO1h1pLHXoHzb0twfxLlSoyc1bdxOqrkHq7TXYT4lt6ntXUAZqaVVQYIomgC1XQ= 

                                        
                                            
x-amz-request-id: T8TMPH3FNTRZ4Y1Z 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:44 GMT 

                                        
                                            
Last-Modified: Thu, 04 May 2017 08:21:21 GMT 

                                        
                                            
ETag: "d41d8cd98f00b204e9800998ecf8427e" 

                                        
                                            
x-amz-meta-s3cmd-attrs: uid:502/gname:staff/uname:user/gid:20/mode:33188/mtime:1493416832/atime:1493796970/md5:d41d8cd98f00b204e9800998ecf8427e/ctime:1493416832 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 0 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /push/?aid=PM-N2FTFQ&cid=824401664045081900&sid=539501664045081900&pvw=70d0e52c-495b-42de-ae77-cb1e7b123a54&v=1.19.0&rs=1280x1024&tt=Cart%C3%B5es%20Renner&ws=1280x1024&os=Linux%20x86_64&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&url=https%3A%2F%2Frealizando-sonhos-204810.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&add=%7B%22err%22%3A%5B%22unable%20to%20decode%20object%22%5D%7D HTTP/1.1 

                                        
                                            
Host: df.pmweb.com.br 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://realizando-sonhos-204810.azurewebsites.net 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         18.229.129.250

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/plain 

                                        
                                    
                                        

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
Access-Control-Allow-Origin: https://realizando-sonhos-204810.azurewebsites.net 

                                        
                                            
Cache-Control: no-cache, no-store, must-revalidate 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:44 GMT 

                                        
                                            
Expires: 0 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Server: nginx 

                                        
                                            
Set-Cookie: _pm_uid=824401664045081900; path=/; domain=pmweb.com.br; secure; Expires=Mon, 23-Sep-2024 18:44:44 GMT 

                                        
                                            
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload 

                                        
                                            
Content-Length: 2 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   2

                                                Md5:    50585be4e3159a71c874c590d2ba12ec

                                                Sha1:   fb17882585bbfe9c55733a6e46a265ddaea6957a

                                                Sha256: 54d626e08c1c802b305dad30b7e54a82f102390cc92c7d4db112048935236e9c

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         54.230.245.118

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:44 GMT 

                                        
                                            
Last-Modified: Sat, 24 Sep 2022 17:47:26 GMT 

                                        
                                            
Server: ECS (bsa/EB14) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-P1 

                                        
                                            
X-Amz-Cf-Id: bjzsaprmlVTF-JP-N_EletX9eB3UuEQc9_qljs5lkkuLReZy--qBrQ== 

                                        
                                            
Age: 3438 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /bf?type=js3&sn=v_4_srv_-2D62_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H&svrid=-62&flavor=cors&vi=TOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0&modifiedSince=1661969913947&rf=https%3A%2F%2Frealizando-sonhos-204810.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&bp=3&app=189e25234ffe70ce&crc=2420848367&en=ovxxhecl&end=1 HTTP/1.1 

                                        
                                            
Host: bf73995led.bf.dynatrace.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: text/plain;charset=UTF-8 

                                        
                                            
Content-Length: 621 

                                        
                                            
Origin: https://realizando-sonhos-204810.azurewebsites.net 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         107.20.158.97

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/plain;charset=utf-8 

                                        
                                    
                                        

                                        
                                            
date: Sat, 24 Sep 2022 18:44:44 GMT 

                                        
                                            
content-length: 760 

                                        
                                            
set-cookie: dtCookie=v_4_srv_4_sn_2AA6B762EA2EC9291FAC65BF53D06343_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1; Path=/; Domain=.dynatrace.com 

                                        
                                            
x-oneagent-js-injection: true 

                                        
                                            
access-control-allow-origin: https://realizando-sonhos-204810.azurewebsites.net 

                                        
                                            
cache-control: no-cache 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (760), with no line terminators

                                                Size:   760

                                                Md5:    f938660f4514cbe6eb96f07075d9764c

                                                Sha1:   bf20213c61d5546e686c435ebd7d4cf9ec15d17b

                                                Sha256: e19e3e12c8fc6472880f34fefc00da6e21d98bb68b0a3c17cd266de025d81e3f

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /analytics.js HTTP/1.1 

                                        
                                            
Host: www.google-analytics.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.174

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript 

                                        
                                    
                                        

                                        
                                            
strict-transport-security: max-age=10886400; includeSubDomains; preload 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
server: Golfe2 

                                        
                                            
content-length: 19826 

                                        
                                            
date: Sat, 24 Sep 2022 18:41:09 GMT 

                                        
                                            
expires: Sat, 24 Sep 2022 20:41:09 GMT 

                                        
                                            
cache-control: public, max-age=7200 

                                        
                                            
age: 216 

                                        
                                            
last-modified: Sun, 11 Sep 2022 13:50:09 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (1325)

                                                Size:   19826

                                                Md5:    cae538dcce82598fbe43c0bf443e62dd

                                                Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5

                                                Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:45 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /gtm/js?id=GTM-W9SBWRL&cid=103686931.1660754357 HTTP/1.1 

                                        
                                            
Host: www.google-analytics.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.174

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-headers: Cache-Control 

                                        
                                            
content-encoding: br 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
date: Sat, 24 Sep 2022 18:44:45 GMT 

                                        
                                            
expires: Sat, 24 Sep 2022 18:44:45 GMT 

                                        
                                            
cache-control: private, max-age=900 

                                        
                                            
last-modified: Sat, 24 Sep 2022 18:00:00 GMT 

                                        
                                            
strict-transport-security: max-age=31536000; includeSubDomains 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
server: Google Tag Manager 

                                        
                                            
content-length: 42652 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (1720)

                                                Size:   42652

                                                Md5:    dc3aec1d0d5b2a9397293e1c3061e081

                                                Sha1:   b6b9c4678b00bfd66abba7228e7d2522177f4b33

                                                Sha256: a74aa0e4f9162cb350ecded7516a3112e2eee697bafd8ca7a9f07f7f8826c9ac

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/images/lojas-renner.png HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_2_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1_rcs-3Acss_1; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046882175|1664045081141; dtLatC=428; dtSa=-; _pm_id=824401664045081900; _pm_sid=539501664045081900 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:45 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /favicon.ico HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_2_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1_rcs-3Acss_1; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046882175|1664045081141; dtLatC=428; dtSa=-; _pm_id=824401664045081900; _pm_sid=539501664045081900 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:45 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:45 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /pagead/html/r20220921/r20190131/zrt_lookup.html HTTP/1.1 

                                        
                                            
Host: googleads.g.doubleclick.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: iframe 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.2

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: cafe 

                                        
                                            
content-length: 4420 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Sat, 24 Sep 2022 03:27:23 GMT 

                                        
                                            
expires: Sat, 08 Oct 2022 03:27:23 GMT 

                                        
                                            
cache-control: public, max-age=1209600 

                                        
                                            
age: 55042 

                                        
                                            
etag: 9671129459699598864 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)

                                                Size:   4420

                                                Md5:    682bf699cccbc0ff817e1fcb7b95262a

                                                Sha1:   11ad3edf0008f52b733c2d6d7199e1f052318d58

                                                Sha256: bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:45 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:45 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /adsid/integrator.js?domain=realizando-sonhos-204810.azurewebsites.net HTTP/1.1 

                                        
                                            
Host: adservice.google.no 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.162

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info." 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cache-control: private, no-cache, no-store 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-disposition: attachment; filename="f.txt" 

                                        
                                            
content-encoding: gzip 

                                        
                                            
date: Sat, 24 Sep 2022 18:44:45 GMT 

                                        
                                            
server: cafe 

                                        
                                            
content-length: 100 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   100

                                                Md5:    917951a58be8c6c6f3680159550ba3c2

                                                Sha1:   21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4

                                                Sha256: cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /adsid/integrator.js?domain=realizando-sonhos-204810.azurewebsites.net HTTP/1.1 

                                        
                                            
Host: adservice.google.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         142.250.74.66

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=UTF-8 

                                        
                                    
                                        

                                        
                                            
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info." 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cache-control: private, no-cache, no-store 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-disposition: attachment; filename="f.txt" 

                                        
                                            
content-encoding: gzip 

                                        
                                            
date: Sat, 24 Sep 2022 18:44:45 GMT 

                                        
                                            
server: cafe 

                                        
                                            
content-length: 100 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   100

                                                Md5:    917951a58be8c6c6f3680159550ba3c2

                                                Sha1:   21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4

                                                Sha256: cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac

                                            

                                            
                                            
                                        

                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:46 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:46 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache
search 
                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:46 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                    
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers
search 
                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg 

                                        
                                    
                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 7963 

                                        
                                            
x-amzn-requestid: cadfa4ff-473d-4927-bdf6-3aad64cddf18 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: Y7sQbHTCIAMFfZg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-632e2735-41d711e5210099aa6273dd86;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:57 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: g0NS7XamCzSMKmm1-mLnWLwUuBoJczvwSmTb0c_7klsY78wbrg4bRw== 

                                        
                                            
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Fri, 23 Sep 2022 21:57:02 GMT 

                                        
                                            
age: 74866 

                                        
                                            
etag: "d2180d40ceb16924a87a41aad90dedb0bb912085" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   7963

                                                Md5:    5a4b36e1bf29c9c82f069cdd3c50874c

                                                Sha1:   d2180d40ceb16924a87a41aad90dedb0bb912085

                                                Sha256: aab96d28ea8e21e6d37449eba400cac45acced1825ebdb27853d17ae4f993b00

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /cartoes-renner/vectors/bg-login.svg HTTP/1.1 

                                        
                                            
Host: realizando-sonhos-204810.azurewebsites.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/renner/inicio/login.php 

                                        
                                            
Cookie: dtCookie=v_4_srv_2_sn_QU28H102AOHJ8AM9ML4LEDJ9M8P83G7H_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1_rcs-3Acss_1; rxVisitor=1664045081139A9AAG390BQB6CSU63LNUMI868JTBV30S; dtPC=-62$245081132_325h1vTOWTKMWNCHMMFGAKFEFCUSEFNBGIFPSD-0e0; rxvt=1664046882175|1664045081141; dtLatC=428; dtSa=true%7CKD17%7C-1%7Ccpf%7C-%7C1664045087789%7C245081132_325%7Chttps%3A%2F%2Frealizando-sonhos-204810.azurewebsites.net%2Frenner%2Finicio%2Flogin.php%7C%7C%7C%7C; _pm_id=824401664045081900; _pm_sid=539501664045081900; _ga=GA1.3.1936445180.1664045084; _gid=GA1.3.1013573409.1664045084 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin
search 
                                         20.118.40.5

                                        
                                            HTTP/1.1 404 Not Found 

                                        
                                            
Content-Type: text/html 

                                        
                                    
                                        

                                        
                                            
Date: Sat, 24 Sep 2022 18:44:49 GMT 

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   114

                                                Md5:    b9841984dca9ab290d79563f36ae6d8d

                                                Sha1:   35a6cc4edf0c92bd155144871968659dafb4d1c3

                                                Sha256: 546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14

                                            

                                            
                                            
                                        

                                    
                                        
                                            GET /jstag/157944990f8/bf73995led/189e25234ffe70ce_complete.js HTTP/1.1 

                                        
                                            
Host: js-cdn.dynatrace.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://realizando-sonhos-204810.azurewebsites.net 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://realizando-sonhos-204810.azurewebsites.net/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site
search 
                                         54.230.111.96

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript;charset=utf-8 

                                        
                                    
                                        

                                        
                                            
date: Sat, 24 Sep 2022 18:37:40 GMT 

                                        
                                            
x-oneagent-js-injection: true 

                                        
                                            
traffic-source: UNKNOWN 

                                        
                                            
dynatrace-response-source: Cluster 

                                        
                                            
dynatrace-response-id: Y81D9RZ8JUH8 

                                        
                                            
expires: Sat, 24 Sep 2022 19:37:40 GMT 

                                        
                                            
cache-control: public, max-age=3600 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-encoding: gzip 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-P1 

                                        
                                            
x-amz-cf-id: lSMKgY_H_Vl_m-RsrHSHR9Qaw5Zo6_tjiJWEpuuuP1JDD1g59KwCvQ== 

                                        
                                            
age: 421 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        

                                            

                                            --- Additional Info ---