lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
34.102.136.180200 OK 2.8 kB URL User Request GET HTTP/1.1 lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
IP 34.102.136.180:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2830), with no line terminators
Hash 47ee0b41294a0fe743bfea1c3ae0e0e1
d557bc7970a75887efbbbc4544ad9de9d798d3bb
b53a293bb44bf9a6553792da8d5ccdf5d1572306e3e740c551dd39a2c4cccda0
Analyzer Verdict Alert phishtank Other
fortinet Phishing
GET /wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 28 Apr 2023 09:01:26 GMT
Content-Type: text/html
Content-Length: 2830
Last-Modified: Wed, 26 Apr 2023 20:16:51 GMT
ETag: "644986b3-b0e"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_gElCP4YwfIxdDe9guAOdTLZ05L5QYhcaOXGUzkl3y61nbCMkTpAzhwCIVLVJcL/5ua4YCL3gd9ZK9pz8YHf7Sg
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: system=PW;Path=/;Max-Age=86400;
caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
traffic_target=gd;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 0cd47c49c205b492374f9b4a3793b564
b4e65ac692b81a44ffc4a878556392460fff2026
bf60f52ea20680efef8cd9e1cdb531db2f9f56af972e7fcff06af0ef6eedab4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 28 Apr 2023 09:01:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img1.wsimg.com/parking-lander/static/js/1.f27108fb.chunk.js
23.36.79.43200 OK 57 kB URL GET HTTP/2 img1.wsimg.com/parking-lander/static/js/1.f27108fb.chunk.js
IP 23.36.79.43:443
ASN #20940 Akamai International B.V.
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerStarfield Technologies, Inc.
Subject*.wsimg.com
Fingerprint4D:28:AB:B5:BB:E6:84:09:15:A9:80:A1:56:45:20:CB:87:93:83:A3
ValidityThu, 15 Sep 2022 21:44:19 GMT - Tue, 17 Oct 2023 21:44:19 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 78ee6585374831a88c7f8caa2b2067a7
8744d06aa5168661751694f263d7828d43dd4677
c687a72600259ec29d5527a87745dfa38c26d36ab7fcc70ccaefb90704ea152b
GET /parking-lander/static/js/1.f27108fb.chunk.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lilicamanequinsfiber.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: Y5ZSD+IZLPZCtrBiJdSoj+6JShUkHxPyNr+/rIDzsy2kM6KVdQFQgH4o2x3zabgjym6Ts+ft/YM=
x-amz-request-id: Z3K6ASMBW8VXNRC9
last-modified: Wed, 26 Apr 2023 20:15:40 GMT
etag: "f37c00988133dfdf13858b129fbca84e"
x-amz-server-side-encryption: AES256
x-amz-version-id: iHWzra8uVBaXxAye4Hxq.lgqLqqYHYhz
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 57301
cache-control: max-age=31536000
expires: Sat, 27 Apr 2024 09:01:26 GMT
date: Fri, 28 Apr 2023 09:01:26 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/parking-lander/static/js/0.aa3d9964.chunk.js
23.36.79.43200 OK 139 kB URL GET HTTP/2 img1.wsimg.com/parking-lander/static/js/0.aa3d9964.chunk.js
IP 23.36.79.43:443
ASN #20940 Akamai International B.V.
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerStarfield Technologies, Inc.
Subject*.wsimg.com
Fingerprint4D:28:AB:B5:BB:E6:84:09:15:A9:80:A1:56:45:20:CB:87:93:83:A3
ValidityThu, 15 Sep 2022 21:44:19 GMT - Tue, 17 Oct 2023 21:44:19 GMT
File type ASCII text, with very long lines (65462)
Size 139 kB (139441 bytes)
Hash bf59eb7edb752ffc30e5026bcbfacaee
3f341b213568181ce642598ce383c50c2a215eef
d49d9174f3826f2422c327104ab80f2315d8f4aacf94405af8b25019f30fd8a7
GET /parking-lander/static/js/0.aa3d9964.chunk.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lilicamanequinsfiber.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: KV7s2WM6nwALkoT8ehdLJy5nWBvLndiMwh+j2mUh+v8ZC3anAIKctwJVaYt9fnVvuEpTHVwBoRo=
x-amz-request-id: Z3KABR76VQXHHW4X
last-modified: Wed, 26 Apr 2023 20:15:39 GMT
etag: "db2d0953ff501b139d030066580e79f4"
x-amz-server-side-encryption: AES256
x-amz-version-id: ygA4aoKfidtq5Nwmfb0yuz.3YHPvgN50
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 139441
cache-control: max-age=31536000
expires: Sat, 27 Apr 2024 09:01:26 GMT
date: Fri, 28 Apr 2023 09:01:26 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/parking-lander/static/js/main.a5a25da9.chunk.js
23.36.79.43200 OK 1.8 kB URL GET HTTP/2 img1.wsimg.com/parking-lander/static/js/main.a5a25da9.chunk.js
IP 23.36.79.43:443
ASN #20940 Akamai International B.V.
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerStarfield Technologies, Inc.
Subject*.wsimg.com
Fingerprint4D:28:AB:B5:BB:E6:84:09:15:A9:80:A1:56:45:20:CB:87:93:83:A3
ValidityThu, 15 Sep 2022 21:44:19 GMT - Tue, 17 Oct 2023 21:44:19 GMT
File type ASCII text, with very long lines (4918)
Hash ff0b3463a691bf32a88341eb772e062b
2b6b476ee686a47a663eb4d3c6773bd0371fbcf8
20e010c1b587f7c12befe8f96602f76cc1b601cf8491223db014d42f5d90bea6
GET /parking-lander/static/js/main.a5a25da9.chunk.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lilicamanequinsfiber.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: qHo+aBX+fXEVogY/CF8Htu19zMmxLGiU1mrUGJof2r3aeQwajrf1JG7RP4lztg1U2KQzFHq2IDg=
x-amz-request-id: Z3K081EE4DM8J1B5
last-modified: Wed, 26 Apr 2023 20:15:40 GMT
etag: "6410e57bcc0dee0e544ebf4c4a6bdba3"
x-amz-server-side-encryption: AES256
x-amz-version-id: Vv7zFn4yllKS1qC_I9vo4y1Xsb7U_Nrf
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 1825
cache-control: max-age=31536000
expires: Sat, 27 Apr 2024 09:01:26 GMT
date: Fri, 28 Apr 2023 09:01:26 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
lilicamanequinsfiber.com.br/px.js?ch=1&abp=1
34.102.136.180200 OK 476 B URL GET HTTP/1.1 lilicamanequinsfiber.com.br/px.js?ch=1&abp=1
IP 34.102.136.180:80
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Hash d2183968f9080b37babfeba3ccf10df2
24b9cf589ee6789e567fac3ae5acfc25826d00c6
4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc
GET /px.js?ch=1&abp=1 HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Cookie: system=PW; caf_ipaddr=91.90.42.154; country=NO; city=""; traffic_target=gd
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 28 Apr 2023 09:01:26 GMT
Content-Type: application/javascript
Content-Length: 476
Last-Modified: Wed, 26 Apr 2023 20:17:45 GMT
ETag: "644986e9-1dc"
Accept-Ranges: bytes
Via: 1.1 google
lilicamanequinsfiber.com.br/px.js?ch=2&abp=1
34.102.136.180200 OK 476 B URL GET HTTP/1.1 lilicamanequinsfiber.com.br/px.js?ch=2&abp=1
IP 34.102.136.180:80
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Hash d2183968f9080b37babfeba3ccf10df2
24b9cf589ee6789e567fac3ae5acfc25826d00c6
4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc
GET /px.js?ch=2&abp=1 HTTP/1.1
Host: lilicamanequinsfiber.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Cookie: system=PW; caf_ipaddr=91.90.42.154; country=NO; city=""; traffic_target=gd
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 28 Apr 2023 09:01:26 GMT
Content-Type: application/javascript
Content-Length: 476
Last-Modified: Wed, 26 Apr 2023 20:17:45 GMT
ETag: "644986e9-1dc"
Accept-Ranges: bytes
Via: 1.1 google
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e90f2e533fc7e93a7cc92f9ffdb1c25a
f2818c3abb1f83a31107f18b3d0b9cce84530b34
f04cb91825d3fc279f5210931a4e93c8c05205153367624c872175b9bedf7f27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 28 Apr 2023 09:01:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.23 1.8 kB IP 192.124.249.23:0
Hash f60cbe47ddaaa14b22b7201b9fdf78a4
070820b2e6840d2d5a8f3950b5813901f6629ef7
fa10b9773d60940af8d7a8fe2d1073311d3e40092d632889c669e5134e893db8
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 28 Apr 2023 09:01:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 27 Apr 2023 21:59:09 GMT
Expires: Fri, 28 Apr 2023 21:59:09 GMT
ETag: "070820b2e6840d2d5a8f3950b5813901f6629ef7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.23 1.8 kB IP 192.124.249.23:0
Hash f60cbe47ddaaa14b22b7201b9fdf78a4
070820b2e6840d2d5a8f3950b5813901f6629ef7
fa10b9773d60940af8d7a8fe2d1073311d3e40092d632889c669e5134e893db8
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 28 Apr 2023 09:01:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 27 Apr 2023 21:59:09 GMT
Expires: Fri, 28 Apr 2023 21:59:09 GMT
ETag: "070820b2e6840d2d5a8f3950b5813901f6629ef7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
api.aws.parking.godaddy.com/v1/parking/landers/lilicamanequinsfiber.com.br?trafficTarget=gd&abp=1
35.175.72.241200 OK 0 B URL OPTIONS HTTP/2 api.aws.parking.godaddy.com/v1/parking/landers/lilicamanequinsfiber.com.br?trafficTarget=gd&abp=1
IP 35.175.72.241:443
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerGoDaddy.com, Inc.
Subject*.aws.parking.godaddy.com
FingerprintE7:BD:64:BB:AC:CB:4F:6E:C3:F2:EB:52:B9:C1:CE:C3:9A:7B:AA:08
ValidityTue, 21 Mar 2023 00:28:15 GMT - Sun, 21 Apr 2024 00:28:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/parking/landers/lilicamanequinsfiber.com.br?trafficTarget=gd&abp=1 HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-request-id
Referer: http://lilicamanequinsfiber.com.br/
Origin: http://lilicamanequinsfiber.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 28 Apr 2023 09:01:27 GMT
content-length: 0
set-cookie: AWSALB=CczsI0oVxXei0fVn1IV0dp0Fm8O87NPT8xVxSDWvwCYyZkrdMHGDZh5alz1PY8c44w2FqgQaksrdAeax2pDxN254yEvA0BnhBfUN33qDpr2ZooovRqmCMryKTHC3; Expires=Fri, 05 May 2023 09:01:27 GMT; Path=/
AWSALBCORS=CczsI0oVxXei0fVn1IV0dp0Fm8O87NPT8xVxSDWvwCYyZkrdMHGDZh5alz1PY8c44w2FqgQaksrdAeax2pDxN254yEvA0BnhBfUN33qDpr2ZooovRqmCMryKTHC3; Expires=Fri, 05 May 2023 09:01:27 GMT; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-headers: X-Request-Id
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: http://lilicamanequinsfiber.com.br
access-control-max-age: 600
x-request-id: CJyyXmng
X-Firefox-Spdy: h2
api.aws.parking.godaddy.com/v1/parking/landers/lilicamanequinsfiber.com.br?trafficTarget=gd&abp=1
35.175.72.241200 OK 884 B URL OPTIONS HTTP/2 api.aws.parking.godaddy.com/v1/parking/landers/lilicamanequinsfiber.com.br?trafficTarget=gd&abp=1
IP 35.175.72.241:443
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerGoDaddy.com, Inc.
Subject*.aws.parking.godaddy.com
FingerprintE7:BD:64:BB:AC:CB:4F:6E:C3:F2:EB:52:B9:C1:CE:C3:9A:7B:AA:08
ValidityTue, 21 Mar 2023 00:28:15 GMT - Sun, 21 Apr 2024 00:28:15 GMT
File type JSON data\012- , ASCII text, with very long lines (883)
Hash 8e2fe14cc6071ac6019d6f3051bd13b1
7f760c831450db35ce2c9d069ca9f02cb2766a79
e9c21fe8d96d03d948615dde2fadf1809f35c448eed858273852b6390697db8e
GET /v1/parking/landers/lilicamanequinsfiber.com.br?trafficTarget=gd&abp=1 HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://lilicamanequinsfiber.com.br/
X-Request-Id: 5cd6927c-5b08-439b-bc68-8e0ff8fdeb53
Origin: http://lilicamanequinsfiber.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 28 Apr 2023 09:01:27 GMT
content-type: application/json
content-length: 884
set-cookie: AWSALB=x3NcAarOY2CijU8Ob/ereQMKodNq7uHssKdPOV6Ku5kqAOPtgQpKlgAZExGNMs9I4RA8ns8BDs4lJxU4SRblT93nQVlh8fBz6B23jkoWBjH+X36HIvMinwWkBIT7; Expires=Fri, 05 May 2023 09:01:27 GMT; Path=/
AWSALBCORS=x3NcAarOY2CijU8Ob/ereQMKodNq7uHssKdPOV6Ku5kqAOPtgQpKlgAZExGNMs9I4RA8ns8BDs4lJxU4SRblT93nQVlh8fBz6B23jkoWBjH+X36HIvMinwWkBIT7; Expires=Fri, 05 May 2023 09:01:27 GMT; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin: http://lilicamanequinsfiber.com.br
access-control-max-age: 600
x-request-id: 5cd6927c-5b08-439b-bc68-8e0ff8fdeb53
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ebedf516740bec0c5d7e73e54d51fa14
1a3065f6b1dbd461a164276ed458c86fa13cc77a
2515f710d2df682e21c6ef1a665016a0e94496d2f843074078cab6275c99a8f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 28 Apr 2023 09:01:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=lilicamanequinsfiber.com.br&client=dp-godaddy1_xml&product=SAS&callback=__sasCookie
142.250.74.98200 OK 252 B URL GET HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=lilicamanequinsfiber.com.br&client=dp-godaddy1_xml&product=SAS&callback=__sasCookie
IP 142.250.74.98:443
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.googleadservices.com
Fingerprint64:FB:54:D3:87:13:FF:E1:0B:82:AB:82:7D:DD:06:E3:5E:CB:77:C2
ValidityMon, 03 Apr 2023 08:21:53 GMT - Mon, 26 Jun 2023 08:21:52 GMT
File type ASCII text, with very long lines (394), with no line terminators
Hash 69a8b988f30318763730b7e3ad938f4e
c4612cf8fd394b77a970c3f8163bfd700ca7b9ad
6f8b41aa1ea2168c9d95776dd48734942f58c9a40d3c1fa753d5955d3de8bdb0
GET /gampad/cookie.js?domain=lilicamanequinsfiber.com.br&client=dp-godaddy1_xml&product=SAS&callback=__sasCookie HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lilicamanequinsfiber.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 28 Apr 2023 09:01:27 GMT
server: cafe
cache-control: private
content-length: 252
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/afs/ads?adsafe=low&adtest=off&psid=7949183650&pcsa=false&channel=non-expiry&domain_name=lilicamanequinsfiber.com.br&client=dp-godaddy1_xml&r=m&rpbu=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&type=3&uiopt=true&swp=as-drid-oo-1885714186540894&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=6241682672487585&num=0&output=afd_ads&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1682672487586&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=400&frm=0&cl=524880510&uio=-&cont=relatedLinks&jsid=caf&jsv=524880510&rurl=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&adbw=master-1%3A854
142.250.74.164200 OK 2.1 kB URL GET HTTP/3 www.google.com/afs/ads?adsafe=low&adtest=off&psid=7949183650&pcsa=false&channel=non-expiry&domain_name=lilicamanequinsfiber.com.br&client=dp-godaddy1_xml&r=m&rpbu=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&type=3&uiopt=true&swp=as-drid-oo-1885714186540894&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=6241682672487585&num=0&output=afd_ads&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1682672487586&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=400&frm=0&cl=524880510&uio=-&cont=relatedLinks&jsid=caf&jsv=524880510&rurl=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&adbw=master-1%3A854
IP 142.250.74.164:443
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5403)
Hash f3fd4d4774fbadbcefbc06b97042ef95
4f332db368a62e859d44ed193691374cb90bacf8
cec84973dcb00887b507ab160c3f61235f95bfff6ebb13d34f3b2c8ea6f56641
GET /afs/ads?adsafe=low&adtest=off&psid=7949183650&pcsa=false&channel=non-expiry&domain_name=lilicamanequinsfiber.com.br&client=dp-godaddy1_xml&r=m&rpbu=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&type=3&uiopt=true&swp=as-drid-oo-1885714186540894&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=6241682672487585&num=0&output=afd_ads&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1682672487586&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=400&frm=0&cl=524880510&uio=-&cont=relatedLinks&jsid=caf&jsv=524880510&rurl=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&adbw=master-1%3A854 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://lilicamanequinsfiber.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Fri, 28 Apr 2023 09:01:27 GMT
expires: Fri, 28 Apr 2023 09:01:27 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-rDpktn8lYcMIkfYnGQT_hQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2097
x-xss-protection: 0
set-cookie: CONSENT=PENDING+316; expires=Sun, 27-Apr-2025 09:01:27 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ebedf516740bec0c5d7e73e54d51fa14
1a3065f6b1dbd461a164276ed458c86fa13cc77a
2515f710d2df682e21c6ef1a665016a0e94496d2f843074078cab6275c99a8f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 28 Apr 2023 09:01:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash c70598d0576652470b9eef6104ed4b2d
12401cb7d5f21569f9c2107a3967f3f6a739b140
2c593eab1b160bac9e2a646b60c11bee448626bb4d678fa7b478ab146e964f26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 28 Apr 2023 09:01:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash c70598d0576652470b9eef6104ed4b2d
12401cb7d5f21569f9c2107a3967f3f6a739b140
2c593eab1b160bac9e2a646b60c11bee448626bb4d678fa7b478ab146e964f26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 28 Apr 2023 09:01:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/adsense/domains/caf.js
142.250.74.164200 OK 54 kB URL GET HTTP/3 www.google.com/adsense/domains/caf.js
IP 142.250.74.164:443
Requested by https://www.google.com/afs/ads?adsafe=low&adtest=off&psid=7949183650&pcsa=false&channel=non-expiry&domain_name=lilicamanequinsfiber.com.br&client=dp-godaddy1_xml&r=m&rpbu=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&type=3&uiopt=true&swp=as-drid-oo-1885714186540894&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=6241682672487585&num=0&output=afd_ads&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1682672487586&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=400&frm=0&cl=524880510&uio=-&cont=relatedLinks&jsid=caf&jsv=524880510&rurl=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&adbw=master-1%3A854
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT
File type ASCII text, with very long lines (2193)
Hash bab3e74aed33b70b61b94c32b4b942e3
18ba1bf62160aba4c046c5333dc9842b5d986aa6
dc813a9d2d8e5fb2e4e1dc72a6d7615abfe5b581927eaff6d227e5af9f38551a
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Alt-Used: www.google.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Fri, 28 Apr 2023 09:01:27 GMT
expires: Fri, 28 Apr 2023 09:01:27 GMT
cache-control: private, max-age=3600
etag: "5317867253464321100"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
142.250.74.97200 OK 174 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP 142.250.74.97:443
Requested by https://www.google.com/afs/ads?adsafe=low&adtest=off&psid=7949183650&pcsa=false&channel=non-expiry&domain_name=lilicamanequinsfiber.com.br&client=dp-godaddy1_xml&r=m&rpbu=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&type=3&uiopt=true&swp=as-drid-oo-1885714186540894&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=6241682672487585&num=0&output=afd_ads&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1682672487586&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=400&frm=0&cl=524880510&uio=-&cont=relatedLinks&jsid=caf&jsv=524880510&rurl=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&adbw=master-1%3A854
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2A:20:E3:7B:7F:8B:64:5C:E0:A1:6B:F4:DE:4C:76:6D:B9:10:D8:67
ValidityMon, 03 Apr 2023 08:24:22 GMT - Mon, 26 Jun 2023 08:24:21 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 4de8b85c8915995b571bde50e231be7c
29c226ca7b9cbe1d44e5480ce95bbb42727b2d99
2ec9168c4507546748c5f400f5030031f0eb06f2aed8deaa11362c395bff4f7a
GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Thu, 27 Apr 2023 13:14:34 GMT
expires: Fri, 28 Apr 2023 12:14:34 GMT
cache-control: public, max-age=82800
age: 71214
last-modified: Thu, 22 Oct 2020 21:45:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.aws.parking.godaddy.com/v1/parkingEvents?abp=1
35.175.72.241200 OK 0 B URL OPTIONS HTTP/2 api.aws.parking.godaddy.com/v1/parkingEvents?abp=1
IP 35.175.72.241:443
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerGoDaddy.com, Inc.
Subject*.aws.parking.godaddy.com
FingerprintE7:BD:64:BB:AC:CB:4F:6E:C3:F2:EB:52:B9:C1:CE:C3:9A:7B:AA:08
ValidityTue, 21 Mar 2023 00:28:15 GMT - Sun, 21 Apr 2024 00:28:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/parkingEvents?abp=1 HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://lilicamanequinsfiber.com.br/
Origin: http://lilicamanequinsfiber.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 28 Apr 2023 09:01:28 GMT
content-type: text/plain
content-length: 0
set-cookie: AWSALB=GUynPEJr+5bsxyNbk+6BJqwFblNUjRhIdTn7EvbcMXkK80VjsBpPsSCHCIS+KodbwzhCzbOYpd4wbAyEYw4AH/s496b+eQMcvV2fy00y5UcxU0Hvf059pUFEFVmq; Expires=Fri, 05 May 2023 09:01:28 GMT; Path=/
AWSALBCORS=GUynPEJr+5bsxyNbk+6BJqwFblNUjRhIdTn7EvbcMXkK80VjsBpPsSCHCIS+KodbwzhCzbOYpd4wbAyEYw4AH/s496b+eQMcvV2fy00y5UcxU0Hvf059pUFEFVmq; Expires=Fri, 05 May 2023 09:01:28 GMT; Path=/; SameSite=None; Secure
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash c70598d0576652470b9eef6104ed4b2d
12401cb7d5f21569f9c2107a3967f3f6a739b140
2c593eab1b160bac9e2a646b60c11bee448626bb4d678fa7b478ab146e964f26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 28 Apr 2023 09:01:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.aws.parking.godaddy.com/v1/parkingEvents?abp=1
35.175.72.241200 OK 0 B URL OPTIONS HTTP/2 api.aws.parking.godaddy.com/v1/parkingEvents?abp=1
IP 35.175.72.241:443
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerGoDaddy.com, Inc.
Subject*.aws.parking.godaddy.com
FingerprintE7:BD:64:BB:AC:CB:4F:6E:C3:F2:EB:52:B9:C1:CE:C3:9A:7B:AA:08
ValidityTue, 21 Mar 2023 00:28:15 GMT - Sun, 21 Apr 2024 00:28:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/parkingEvents?abp=1 HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://lilicamanequinsfiber.com.br/
Content-Type: application/json
Content-Length: 698
Origin: http://lilicamanequinsfiber.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 28 Apr 2023 09:01:28 GMT
content-type: text/plain
content-length: 0
set-cookie: AWSALB=e0OQC3gofTWgPNUIlthqhNDJpUwdRY5Qxfu08gUjJ3tGhygIVFN2Mz7yJ/vlQAzu46hwAN9xDSz5W/I4+KKh+Ed+qmAQGnqSi4IH4XwTI7U/jRoNg6FuPEN7TNnf; Expires=Fri, 05 May 2023 09:01:28 GMT; Path=/
AWSALBCORS=e0OQC3gofTWgPNUIlthqhNDJpUwdRY5Qxfu08gUjJ3tGhygIVFN2Mz7yJ/vlQAzu46hwAN9xDSz5W/I4+KKh+Ed+qmAQGnqSi4IH4XwTI7U/jRoNg6FuPEN7TNnf; Expires=Fri, 05 May 2023 09:01:28 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google.com/afs/gen_204?client=dp-godaddy1_xml&output=uds_ads_only&zx=3526tcrna2ih&aqid=Z4tLZLnaK_OJmAezrq-ACg&psid=7949183650&pbt=bs&adbx=246&adby=279&adbh=299&adbw=788&adbah=92%2C92%2C92&adbn=master-1&eawp=partner-dp-godaddy1_xml&errv=524880510&csala=7%7C0%7C268%7C61%7C246&lle=0&ifv=1&usr=1
142.250.74.164204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-godaddy1_xml&output=uds_ads_only&zx=3526tcrna2ih&aqid=Z4tLZLnaK_OJmAezrq-ACg&psid=7949183650&pbt=bs&adbx=246&adby=279&adbh=299&adbw=788&adbah=92%2C92%2C92&adbn=master-1&eawp=partner-dp-godaddy1_xml&errv=524880510&csala=7%7C0%7C268%7C61%7C246&lle=0&ifv=1&usr=1
IP 142.250.74.164:443
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-godaddy1_xml&output=uds_ads_only&zx=3526tcrna2ih&aqid=Z4tLZLnaK_OJmAezrq-ACg&psid=7949183650&pbt=bs&adbx=246&adby=279&adbh=299&adbw=788&adbah=92%2C92%2C92&adbn=master-1&eawp=partner-dp-godaddy1_xml&errv=524880510&csala=7%7C0%7C268%7C61%7C246&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://lilicamanequinsfiber.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-TfJw4jLVJGWOzRqJ1_K5ew' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Fri, 28 Apr 2023 09:01:29 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=tvUde1qGW3tE3oBkheI_U4ERY9tKvnFlQZnVWfcLh1Z_oJjBxOD52GmVmLzxLaXo9_B96mD69-MMteYaKaZnBKqyedH21p1PyA4kptiV0oq3uyKiI82GSK-HpoXPvF4tqeKJvffTh2o9uKbbLOIcrdlGDJMTIK-dbWQD4N8oeUQ; expires=Sat, 28-Oct-2023 09:01:29 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+382; expires=Sun, 27-Apr-2025 09:01:29 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/afs/gen_204?client=dp-godaddy1_xml&output=uds_ads_only&zx=me9bmy5658b&aqid=Z4tLZLnaK_OJmAezrq-ACg&psid=7949183650&pbt=bv&adbx=246&adby=279&adbh=299&adbw=788&adbah=92%2C92%2C92&adbn=master-1&eawp=partner-dp-godaddy1_xml&errv=524880510&csala=7%7C0%7C268%7C61%7C246&lle=0&ifv=1&usr=1
142.250.74.164204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-godaddy1_xml&output=uds_ads_only&zx=me9bmy5658b&aqid=Z4tLZLnaK_OJmAezrq-ACg&psid=7949183650&pbt=bv&adbx=246&adby=279&adbh=299&adbw=788&adbah=92%2C92%2C92&adbn=master-1&eawp=partner-dp-godaddy1_xml&errv=524880510&csala=7%7C0%7C268%7C61%7C246&lle=0&ifv=1&usr=1
IP 142.250.74.164:443
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-godaddy1_xml&output=uds_ads_only&zx=me9bmy5658b&aqid=Z4tLZLnaK_OJmAezrq-ACg&psid=7949183650&pbt=bv&adbx=246&adby=279&adbh=299&adbw=788&adbah=92%2C92%2C92&adbn=master-1&eawp=partner-dp-godaddy1_xml&errv=524880510&csala=7%7C0%7C268%7C61%7C246&lle=0&ifv=1&usr=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: http://lilicamanequinsfiber.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-5LytWc_Mf75p2czY88vMpg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Fri, 28 Apr 2023 09:01:30 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=jLmnUgfaKWjPSN437fb2qoqURyV9v2s-R0Rdj5ZwYilBrHAXLZqR1MRfzlK5AoVATuHcdqZU5PHVQLPl3osdyMyFPqTwFU6O73_AMB0WazvNw5yGoRKtaSqgb5mYqNoXB7C8hKRZX3cuGVUQ8Fmh4ZYCcsdhX3zyWxk5k1pXpB0; expires=Sat, 28-Oct-2023 09:01:30 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+222; expires=Sun, 27-Apr-2025 09:01:30 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2
142.250.74.97200 OK 391 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2
IP 142.250.74.97:443
Requested by https://www.google.com/afs/ads?adsafe=low&adtest=off&psid=7949183650&pcsa=false&channel=non-expiry&domain_name=lilicamanequinsfiber.com.br&client=dp-godaddy1_xml&r=m&rpbu=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&type=3&uiopt=true&swp=as-drid-oo-1885714186540894&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r3&nocache=6241682672487585&num=0&output=afd_ads&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1682672487586&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=400&frm=0&cl=524880510&uio=-&cont=relatedLinks&jsid=caf&jsv=524880510&rurl=http%3A%2F%2Flilicamanequinsfiber.com.br%2Fwp-content%2Fthemes%2Ftwentytwentyone%2Finc%2Flkjl%2Ftljngy%3D%2Fsystem%2Fsand_login.php&adbw=master-1%3A854
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2A:20:E3:7B:7F:8B:64:5C:E0:A1:6B:F4:DE:4C:76:6D:B9:10:D8:67
ValidityMon, 03 Apr 2023 08:24:22 GMT - Mon, 26 Jun 2023 08:24:21 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (406), with no line terminators
Hash ac5de5b2153fb616405aa018d56d88e6
0e4688e0df186c6f38eb5844fdfd8f9c5ff5628e
9b69e0728184d834e455835268e4f3973f5d25e18a1089bcb1d3280589848441
GET /ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 272
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Thu, 27 Apr 2023 15:37:51 GMT
expires: Fri, 28 Apr 2023 14:37:51 GMT
cache-control: public, max-age=82800
age: 62617
last-modified: Thu, 19 Dec 2019 14:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/adsense/domains/caf.js?abp=1
142.250.74.164200 OK 148 kB URL GET HTTP/2 www.google.com/adsense/domains/caf.js?abp=1
IP 142.250.74.164:443
Requested by http://lilicamanequinsfiber.com.br/wp-content/themes/twentytwentyone/inc/lkjl/tljngy=/system/sand_login.php
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC3:7C:54:CD:86:09:A4:3E:2C:6D:EC:7C:FA:65:7B:3E:64:CB:10:E0
ValidityMon, 03 Apr 2023 08:25:07 GMT - Mon, 26 Jun 2023 08:25:06 GMT
File type ASCII text, with very long lines (2193)
Size 148 kB (148385 bytes)
Hash 345999c9b77a74deeb983b1433644ae8
78813799af9c5939200828efd4244287de1176ab
f43eae2c4fa4e37f137719c86e57ca67fd17b12dd38d19162da62b1118272ed7
GET /adsense/domains/caf.js?abp=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lilicamanequinsfiber.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Fri, 28 Apr 2023 09:01:26 GMT
expires: Fri, 28 Apr 2023 09:01:26 GMT
cache-control: private, max-age=3600
etag: "10347986472039040718"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2