www.rindegastos.com/document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1
54.230.111.47301 Moved Permanently 167 B URL HTTP/1.1 www.rindegastos.com/document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1
IP 54.230.111.47:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1 HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 28 Jan 2023 00:48:33 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://www.rindegastos.com/document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1
X-Cache: Redirect from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ykRcb0YRLao3Wk4qk0q5TI9BUR5zxsipb_Iabv3XWv1kpPfcTuPlyw==
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2580
Expires: Sat, 28 Jan 2023 01:31:33 GMT
Date: Sat, 28 Jan 2023 00:48:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4752
Expires: Sat, 28 Jan 2023 02:07:45 GMT
Date: Sat, 28 Jan 2023 00:48:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 00:35:25 GMT
content-type: application/json
age: 788
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16347
Expires: Sat, 28 Jan 2023 05:21:00 GMT
Date: Sat, 28 Jan 2023 00:48:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 96HkCbUgBG6mza0CjX1c6abwXehBd9vc0Kzirv4KeOiUZsr6+42qLiYe6lPRPfFYUZc0cI/tekTrPQASDXQIyw==
x-amz-request-id: 6NDGS6V6K8MYD53P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 00:20:45 GMT
age: 1668
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 00:48:33 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 0ed13d4e7c43e98155f4683ca0cc6d48
f6a3a00b78035c50cdae774cbc89d320af690358
071e9020bffbda7d91e4e0c68a270fcfd95320ee2bbeb3fb2b04020c015c5dc8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 28 Jan 2023 00:48:33 GMT
Etag: "63d26b68-1d7"
Server: ECS (dcb/7EEF)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oa9dbCpuGn93aPpHJZYRTCTwmdPvLTqKLPVxZ7PHDsWmlxGgSI4LOg==
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 00:41:40 GMT
age: 413
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.rindegastos.com/main.ff44efa23aa4c970.js
54.230.111.35200 OK 1.3 MB URL HTTP/2 www.rindegastos.com/main.ff44efa23aa4c970.js
IP 54.230.111.35:0
Size 1.3 MB (1259988 bytes)
Hash d4f0d2c69bc2cf0322f6735fbfa8f9e0
d2bafea0327c1055687c78ef462fce430b06472a
e2a29f3c8dd2939854931c32ee5d77d52588046ba0e6651e2c85de080ff32bef
GET /main.ff44efa23aa4c970.js HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 28 Jan 2023 00:48:27 GMT
last-modified: Thu, 19 Jan 2023 14:44:29 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cache-control: public, max-age=0, s-maxage=600
content-encoding: gzip
etag: W/"b18079f52a1d9204e698b6baad187614"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: B3vUAluEtNDOD0zyGPCD-q1zhHamyq765OqbY2sqTzRyCmMDMhMhdg==
age: 7
X-Firefox-Spdy: h2
www.rindegastos.com/styles.52c8ea0761f20a0a.css
54.230.111.35200 OK 59 kB URL HTTP/2 www.rindegastos.com/styles.52c8ea0761f20a0a.css
IP 54.230.111.35:0
Hash ea14464bd5f706f960963ea865056b7b
4945d44ce8894e6272dfc38741a434a73ed6c08e
76e8ac72ba1d7e8bd0094e981e351277c931bb55d202217b4413c4af9c8e7189
GET /styles.52c8ea0761f20a0a.css HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Sat, 28 Jan 2023 00:48:27 GMT
last-modified: Thu, 19 Jan 2023 14:44:29 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cache-control: public, max-age=0, s-maxage=600
content-encoding: gzip
etag: W/"76c8baf810dac7dd79f807fede51ad08"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 05_CR1T8sWQ21bXb2KKIxsoRsw-qW4FIFkW0k6nwiOY9jobMhU7XUA==
age: 7
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 94cc9684bb3c2f01a2222352cb88c2e3
0f34547c87051e18307537c6777b0eca6b9c42d5
38b4a5d6034db6cd340b48229de1f7f856f8080f788bb889e50d87991cbcf307
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5988
Cache-Control: max-age=161523
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:34 GMT
Etag: "63d42d71-116"
Expires: Sun, 29 Jan 2023 21:40:37 GMT
Last-Modified: Fri, 27 Jan 2023 20:00:49 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 58847e2c4d5264028ecfd03ca4ffd1c8
2adcfee94bdabfa08dc4d557b84e4a1de50d6e15
82fb0d77970fe1405572e282966c43da84e28aa5b1bb9fb5615b34139b3366a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1397
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:34 GMT
Last-Modified: Sat, 28 Jan 2023 00:25:17 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 46575b1730a61c97fe37a79a9141c623
a2b9cd98d0b6ef7fe34acf8f79bde66283a77cd1
d297f636fa51c6d031033827e924342adad280ee5a01ba66db660038ec4cb913
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4515
Cache-Control: max-age=98156
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:34 GMT
Etag: "63d33bab-117"
Expires: Sun, 29 Jan 2023 04:04:30 GMT
Last-Modified: Fri, 27 Jan 2023 02:49:15 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c377abb0ada72b4582bc2752e85a52ba
5326e920439cad8d4c0404dd1f9536ddfd27bd1d
10ce949c36a6add9454e01339bcddf92dc16007e3cb944e838f90c6a917ac06e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3910
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:34 GMT
Last-Modified: Fri, 27 Jan 2023 23:43:24 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
push.services.mozilla.com/
35.165.237.81101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.237.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zdYFJcn066m3uY2CvO0lHA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BZUceB3DAsbI2eqNyQj+gBr+U5I=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8727dac29363ce24673a36f4ca296e3b
33f244c7cba917648f21584d524e3f2049cc5561
526af5aea8131ec9d8e39e55c9629f95ae124f9a0d5a736f5a7275dea9f9c240
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6561
Cache-Control: max-age=85810
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:34 GMT
Etag: "63d30373-117"
Expires: Sun, 29 Jan 2023 00:38:44 GMT
Last-Modified: Thu, 26 Jan 2023 22:49:23 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash c751de8be5b667db84554a2391a5f146
6b7991a7e76bd7c4823fd7feecd06629df2d9e34
c9bdcd74bcb8ed7398dc289734679a732016e0b609de58f4968ff177c01aa64e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2108
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:34 GMT
Last-Modified: Sat, 28 Jan 2023 00:13:26 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash c751de8be5b667db84554a2391a5f146
6b7991a7e76bd7c4823fd7feecd06629df2d9e34
c9bdcd74bcb8ed7398dc289734679a732016e0b609de58f4968ff177c01aa64e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1986
Cache-Control: max-age=149638
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:34 GMT
Etag: "63d40ea6-118"
Expires: Sun, 29 Jan 2023 18:22:32 GMT
Last-Modified: Fri, 27 Jan 2023 17:49:26 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
js.hscollectedforms.net/collectedforms.js
104.17.130.171200 OK 107 kB URL HTTP/2 js.hscollectedforms.net/collectedforms.js
IP 104.17.130.171:0
File type Unicode text, UTF-8 text, with very long lines (65392), with no line terminators
Size 107 kB (106905 bytes)
Hash da8d3e8006f57a68b1bca1471de9e7e0
48fb9e8efe5ee9cf9ea71ddb17f9c027427a3010
dbc9a01098256706ac8fd56a427bb839d6558ffff10061c3eade66dfcba42960
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:34 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Dec 2022 02:49:13 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: SN4HXBautbT5xHa4DdPckLpyluwLE8QR
etag: W/"349cabd549e2249f8fb6ac3ac6f08e00"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcfffcf7e0fc8cd9cfe4125369a9f036.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: E5H1ElmLIQ86twslxu4IbTuAUxQU6nkjEtV4mnrFoaI1THOp955oEQ==
cache-control: s-maxage=600, max-age=300
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.312/bundles/project.js&cfRay=7901b2e528691c0e-IAD
x-hs-target-asset: collected-forms-embed-js/static-1.312/bundles/project.js
access-control-allow-origin: *
x-hs-cache-status: HIT
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 7
server: cloudflare
cf-ray: 7905b9255e5ab4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.hubspot.com/livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11886&mobile=false&messagesUtk=6bdb136eac5d4e50b26da30cfffc4700&traceId=6bdb136eac5d4e50b26da30cfffc4700
104.19.154.83200 OK 18 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11886&mobile=false&messagesUtk=6bdb136eac5d4e50b26da30cfffc4700&traceId=6bdb136eac5d4e50b26da30cfffc4700
IP 104.19.154.83:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11886&mobile=false&messagesUtk=6bdb136eac5d4e50b26da30cfffc4700&traceId=6bdb136eac5d4e50b26da30cfffc4700 HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.rindegastos.com/
Origin: https://www.rindegastos.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:34 GMT
content-type: text/plain; charset=utf-8
content-length: 18
cf-ray: 7905b9281ec90b06-OSL
access-control-allow-origin: https://www.rindegastos.com
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 5e85713b-fff9-4e01-a098-8f9b886a59f8
x-trace: 2B4E08FA072AF25A98C740FFEC2427F407B1D9F85B000000000000000000
set-cookie: __cf_bm=Npd_HIsCU0ZoWTiIo34NBGWRGL14UcMqZWsbXma_JFk-1674866914-0-AYBXH+tLhS9QtxD5qGZPC+GUXq485FZ7gjYcNIzWL+lvJDuNHeqiK/bG8oEpMjIxbhGAu8dMOo9rGrDYJGWF7Sg=; path=/; expires=Sat, 28-Jan-23 01:18:34 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
__cf_bm=Zgm_zYkGXKgf.9hyPBq2C12BBQvWHlBTojjxRFQizMI-1674866914-0-AUS3GoV0nk/AhhQcEPalHL5MNuBOBq2oz6YpsKKb4Dkf+lQLP9kXL2R4maNJZqLjgKXcbS2+gkvxIWCnSYgwhuw=; path=/; expires=Sat, 28-Jan-23 01:18:34 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DAFZ1VIPlSx1oaxfTIzMV7mFY9EBy%2BYCiJjHnIp8jOpQ2KbC6o33BrUm1PJkET6xFe%2B9%2BhUOcUEc6pGKrmbED4CwqWtQiJ5Hnu5QPr1mbN28rB%2FiBR3aW5Whs%2FiHOxiySA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 311f04e713e680adc97260bfb25d3447
c9f48c9d10857653ca49660fe8f3035c15335955
eb2d0be4411a67a8a7fc0547795171cb3035113327f300444fedc1901c5a7df3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 28 Jan 2023 00:48:34 GMT
Last-Modified: Sat, 28 Jan 2023 00:04:35 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: h_TmhhO-4KRmwv-nYd47jMq53WO2K1VwG78IQDhaepg1yO3oGJ7oPg==
Age: 2639
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash c751de8be5b667db84554a2391a5f146
6b7991a7e76bd7c4823fd7feecd06629df2d9e34
c9bdcd74bcb8ed7398dc289734679a732016e0b609de58f4968ff177c01aa64e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2108
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:34 GMT
Last-Modified: Sat, 28 Jan 2023 00:13:26 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash c751de8be5b667db84554a2391a5f146
6b7991a7e76bd7c4823fd7feecd06629df2d9e34
c9bdcd74bcb8ed7398dc289734679a732016e0b609de58f4968ff177c01aa64e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1986
Cache-Control: max-age=149638
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:34 GMT
Etag: "63d40ea6-118"
Expires: Sun, 29 Jan 2023 18:22:32 GMT
Last-Modified: Fri, 27 Jan 2023 17:49:26 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 4fccb76da57f1d687637e169df6ee27f
3a8a5bded0da32a9eec446f7adebc00efdbb1df2
feb8817a2ad429582b74b5f32f8b3c09f0f9b2e4117ef9dad9a50fd84b3fe15f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 00:48:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 21:46:10 GMT
Expires: Wed, 01 Feb 2023 21:46:09 GMT
Etag: "3a8a5bded0da32a9eec446f7adebc00efdbb1df2"
Cache-Control: max-age=420454,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7905b929697b0b49-OSL
ppstatic.s3.amazonaws.com/expenses/images/favicon2.ico
52.216.40.121200 OK 1.2 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/images/favicon2.ico
IP 52.216.40.121:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash ab1b5d3ea1643adbed14b554fd131466
e3b69849873f35a32c98b1fea73df9bb8aaed225
ddb06601aec50dc72f2770116d568ede3292901ef3370f8616f1a8bb4724a4d3
GET /expenses/images/favicon2.ico HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Um7W3kdQ3o8bTQ70kKTkG6LFE/XY+Smpa/Odm0trMO53S0Ui4TYf8y6DsOngNUQcO63bQo1IwXM=
x-amz-request-id: H16D2QXT5BHQ8K9B
Date: Sat, 28 Jan 2023 00:48:35 GMT
Last-Modified: Wed, 13 Dec 2017 14:12:22 GMT
ETag: "ab1b5d3ea1643adbed14b554fd131466"
Cache-Control: no-cache
x-amz-version-id: hYFIoSr0PhyTkwLVbxMVAttv52IimHjq
Accept-Ranges: bytes
Content-Type: image/x-icon
Server: AmazonS3
Content-Length: 1150
api.hubspot.com/livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11886&mobile=false&messagesUtk=6bdb136eac5d4e50b26da30cfffc4700&traceId=6bdb136eac5d4e50b26da30cfffc4700
104.19.154.83200 OK 1.5 kB URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11886&mobile=false&messagesUtk=6bdb136eac5d4e50b26da30cfffc4700&traceId=6bdb136eac5d4e50b26da30cfffc4700
IP 104.19.154.83:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2912), with no line terminators
Hash 1b404730b41b53cdba835ec7e9001327
520846b36ff68138bc376bdb0f28eafee14f9091
d5405bad656d807f85148c2098ac754e3a425b3cccc6ca2a2ac66f58471acdc8
GET /livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11886&mobile=false&messagesUtk=6bdb136eac5d4e50b26da30cfffc4700&traceId=6bdb136eac5d4e50b26da30cfffc4700 HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.rindegastos.com/redirect
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:34 GMT
content-type: application/json;charset=utf-8
content-length: 1462
cf-ray: 7905b928ef1d0b06-OSL
access-control-allow-origin: https://www.rindegastos.com
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 2b3e0472-ba5d-4871-b0da-bec6b02f5617
x-trace: 2BD9F9CC9F3DC34C36CA449EBB7B213A511337FD7D000000000000000000
set-cookie: __cf_bm=1VcyCECJHMDmYUSpGk5kDPxtaRV_jD8fkM.5WmHjN_k-1674866914-0-AXcLplZp+vS6irhLpaZE37jTrMTKbzfp5QVK4mm+tZBsDGj1palH/Qa9QyGKXGIhw3O5tj9itP4bgzItQmAL5mk=; path=/; expires=Sat, 28-Jan-23 01:18:34 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
__cf_bm=5vwjMkZ3e4YOPfx3Neo3lSo_23oZfYC1YGxKr2t.blQ-1674866914-0-AaSlzePaiBIt3L6tVpT3LvSs1C20/I/Dgt0tNTgvE2CSdBQFLxP1k13hZW3mX0H3ZUaRP0q9e6UAYgfY7sNrsVg=; path=/; expires=Sat, 28-Jan-23 01:18:34 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JYggIEX53ThbUNc%2B47rFfavpuoGxQrNMYDdxTMXoODPDyW7XGYXSZtCGCXnj%2Fi1BvS6GYYYVA0jDuvhKtml7jEMomRj2ciR7e2rgqKGe8BnedhAmKelcmUFfJHIaqfL0XA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.hsadspixel.net/fb.js
104.17.114.176200 OK 2.5 kB IP 104.17.114.176:0
File type ASCII text, with very long lines (5775)
Hash d247218028e15e578db2960ece323d4b
73173ae7c32a769a12cfadf05fafea79316c4ed5
9cc5902be35de3067e1c9ed9627a9179c81fa1488c04c29c058a3fc23737bf1b
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:34 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Fri, 20 Jan 2023 04:29:49 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: SDrNOl8ziD8gAW.Yx4_m5h0e_hjF8Ssn
etag: W/"c400e8c1e05d683a64923854807562fd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 736ad67f05a9a5a8fd5ed8cba30196f4.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: cAOyvhvbcDlArSTQe3mZmyqXggqsjMsPTwu3i4sM8BA8wia3h_NkVQ==
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.316/bundles/pixels-release.js&cfRay=78c93fd85d44d987-IAD
x-hs-target-asset: adsscriptloaderstatic/static-1.316/bundles/pixels-release.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 562
server: cloudflare
cf-ray: 7905b9258920b4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b30ad858f03edb24cd517351417290c5
2118ac205fa7fe466b65e3962418b92d946e9b04
3f983d935458fc91ac0dcc1234fa238e25e138eac6280abfb8fdf83b90205cfd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3F983D935458FC91AC0DCC1234FA238E25E138EAC6280ABFB8FDF83B90205CFD"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11786
Expires: Sat, 28 Jan 2023 04:05:01 GMT
Date: Sat, 28 Jan 2023 00:48:35 GMT
Connection: keep-alive
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.121200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=47524
date: Sat, 28 Jan 2023 00:48:35 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 27 Jan 2023 23:46:59 GMT
expires: Sat, 28 Jan 2023 01:46:59 GMT
cache-control: public, max-age=7200
age: 3696
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b10c572a58f34d8fb28433f25bb9c885
8bc11baa4e367bfcf8738f28000a3befc9866cc8
678014c585151112a3bd14158afd8509eeec3d4bad3117d6ccd9ecaa109107bc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2159
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:35 GMT
Last-Modified: Sat, 28 Jan 2023 00:12:36 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-0CNWYJZDVN&cid=495423005.1674866915>m=2oe1p0&aip=1&z=738087180
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-0CNWYJZDVN&cid=495423005.1674866915>m=2oe1p0&aip=1&z=738087180
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-0CNWYJZDVN&cid=495423005.1674866915>m=2oe1p0&aip=1&z=738087180 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 00:48:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1517153226&t=pageview&_s=1&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&ul=en-us&de=UTF-8&dt=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&sd=24-bit&sr=1280x1024&vp=1152x836&je=0&_u=YADAAEABAAAAACAAI~&jid=995353748&gjid=305169135&cid=495423005.1674866915&tid=UA-61358101-1&_gid=167739303.1674866915&_r=1&_slc=1>m=2wg1p0NNLNX98&z=1912397355
216.239.36.178200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1517153226&t=pageview&_s=1&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&ul=en-us&de=UTF-8&dt=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&sd=24-bit&sr=1280x1024&vp=1152x836&je=0&_u=YADAAEABAAAAACAAI~&jid=995353748&gjid=305169135&cid=495423005.1674866915&tid=UA-61358101-1&_gid=167739303.1674866915&_r=1&_slc=1>m=2wg1p0NNLNX98&z=1912397355
IP 216.239.36.178:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=1517153226&t=pageview&_s=1&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&ul=en-us&de=UTF-8&dt=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&sd=24-bit&sr=1280x1024&vp=1152x836&je=0&_u=YADAAEABAAAAACAAI~&jid=995353748&gjid=305169135&cid=495423005.1674866915&tid=UA-61358101-1&_gid=167739303.1674866915&_r=1&_slc=1>m=2wg1p0NNLNX98&z=1912397355 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.rindegastos.com
date: Sat, 28 Jan 2023 00:48:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/950321305/?random=1674866915007&cv=11&fst=1674866915007&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&auid=1293927824.1674866915&rfmt=3&fmt=4
142.250.74.130200 OK 901 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/950321305/?random=1674866915007&cv=11&fst=1674866915007&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&auid=1293927824.1674866915&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (1915), with no line terminators
Hash ab2cf605e3e68c3d2199495c572fd0ce
1043423049606b45dacb52fd9c12b3cfe6119e36
1905fdf60ba692900fc877eb298ea869b50b9c66eaf90338eb643fe21dcd1c67
GET /pagead/viewthroughconversion/950321305/?random=1674866915007&cv=11&fst=1674866915007&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&auid=1293927824.1674866915&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 00:48:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 901
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 28-Jan-2023 01:03:35 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 7DXGmpAyY61CSQf9Kx/sBTGSFSSTZvo0pDmxxES4XCBqqXAdsiqT5jvxgutNJAdH7V//J3LCtJZ1u67pW/fxjg==
priority: u=3,i
content-length: 27815
x-fb-trip-id: 1679558926
date: Sat, 28 Jan 2023 00:48:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b10c572a58f34d8fb28433f25bb9c885
8bc11baa4e367bfcf8738f28000a3befc9866cc8
678014c585151112a3bd14158afd8509eeec3d4bad3117d6ccd9ecaa109107bc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2159
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:35 GMT
Last-Modified: Sat, 28 Jan 2023 00:12:36 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b30ad858f03edb24cd517351417290c5
2118ac205fa7fe466b65e3962418b92d946e9b04
3f983d935458fc91ac0dcc1234fa238e25e138eac6280abfb8fdf83b90205cfd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3F983D935458FC91AC0DCC1234FA238E25E138EAC6280ABFB8FDF83B90205CFD"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11786
Expires: Sat, 28 Jan 2023 04:05:01 GMT
Date: Sat, 28 Jan 2023 00:48:35 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 113e9ba8db08b87e050922e86b9bb5fc
bd0c6378ccc957d04df38abc1f6efad71c667ec9
099fa7b4d0d292f79823f730875a6249eec66b716b81871e647f9255fdda789d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3409
Cache-Control: max-age=160404
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:35 GMT
Etag: "63d43326-118"
Expires: Sun, 29 Jan 2023 21:21:59 GMT
Last-Modified: Fri, 27 Jan 2023 20:25:10 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 113e9ba8db08b87e050922e86b9bb5fc
bd0c6378ccc957d04df38abc1f6efad71c667ec9
099fa7b4d0d292f79823f730875a6249eec66b716b81871e647f9255fdda789d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5769
Cache-Control: max-age=162764
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:35 GMT
Etag: "63d43326-118"
Expires: Sun, 29 Jan 2023 22:01:19 GMT
Last-Modified: Fri, 27 Jan 2023 20:25:10 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 113e9ba8db08b87e050922e86b9bb5fc
bd0c6378ccc957d04df38abc1f6efad71c667ec9
099fa7b4d0d292f79823f730875a6249eec66b716b81871e647f9255fdda789d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5462
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:35 GMT
Last-Modified: Fri, 27 Jan 2023 23:17:33 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 622311873d3819b9911301b09bc2d43c
9f08d648e40479aa12da033da15b80a15017c739
6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 113e9ba8db08b87e050922e86b9bb5fc
bd0c6378ccc957d04df38abc1f6efad71c667ec9
099fa7b4d0d292f79823f730875a6249eec66b716b81871e647f9255fdda789d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4752
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:35 GMT
Last-Modified: Fri, 27 Jan 2023 23:29:23 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
www.google.com/pagead/1p-user-list/950321305/?random=1674866915007&cv=11&fst=1674864000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&fmt=3&is_vtc=1&random=3901705478&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/950321305/?random=1674866915007&cv=11&fst=1674864000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&fmt=3&is_vtc=1&random=3901705478&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/950321305/?random=1674866915007&cv=11&fst=1674864000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&fmt=3&is_vtc=1&random=3901705478&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 00:48:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-61358101-1&cid=495423005.1674866915&jid=995353748&gjid=305169135&_gid=167739303.1674866915&_u=YADAAEAAAAAAACAAI~&z=1098931063
64.233.165.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-61358101-1&cid=495423005.1674866915&jid=995353748&gjid=305169135&_gid=167739303.1674866915&_u=YADAAEAAAAAAACAAI~&z=1098931063
IP 64.233.165.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-61358101-1&cid=495423005.1674866915&jid=995353748&gjid=305169135&_gid=167739303.1674866915&_u=YADAAEAAAAAAACAAI~&z=1098931063 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.rindegastos.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 28 Jan 2023 00:48:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.hsappstatic.net/conversations-visitor-ui/static-1.14337/bundles/visitor.js
104.17.7.210200 OK 185 kB URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.14337/bundles/visitor.js
IP 104.17.7.210:0
File type Unicode text, UTF-8 text, with very long lines (65461), with no line terminators
Size 185 kB (184856 bytes)
Hash 3e50b5143732a617d44ea28dad317876
f92b7e32eb98b3e772e7679422374b78233c9162
f456f281ed4ba1f2148f42d08baa2c9afc222b167588c3490b70105c146d8d2f
GET /conversations-visitor-ui/static-1.14337/bundles/visitor.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:35 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Mon, 23 Jan 2023 21:34:20 GMT
etag: W/"a7c09053a22d372e3afb8901cd5f4bf5"
x-amz-server-side-encryption: AES256
x-amz-version-id: oYFzw8G9yjwMyKhgevQVhrBIK2KZLwCs
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 d5d7b369f72f565a0dffcd2db50ec516.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: a-yzMctUphqvemkn-q75-8z2GsUbqhgRJFmqN1qKnIV4KZKJF4YOtw==
cf-cache-status: HIT
age: 290877
expires: Sun, 28 Jan 2024 00:48:35 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NgCE0BRuCbQ7WJ%2FbZUK1rgQxNkbcIuiKb%2BynAl%2BTbfni4UKxJFfGgg%2FyWr2Q%2FEJFUmrxBYVqMThwIEa2eBy8LTtD91nLtjk6M%2B8%2FUJedTfLRM85kqZvCeF0GaKTl0ZZuqJeRpIIJq4g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7905b92c7afe0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674866915363&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tm=gtmv2
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674866915363&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tm=gtmv2
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=66325&time=1674866915363&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tm=gtmv2 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674866915363%26url%3Dhttps%253A%252F%252Fwww.rindegastos.com%252Fredirect%26tm%3Dgtmv2%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQL5Rlo9EZ08JgAAAYX12PgSeUk2lnGKp7k3B1FwfTOJObaDlfJph2Q1Gth1JMZRjGw5_zCrLTDPNQ; Max-Age=2592000; Expires=Mon, 27 Feb 2023 00:48:35 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKWWjT13AJTLAAAAYX12PgSObFHkkVPdkPI1g6cbkq0xQo-HPwGbGIEYzx7lwnoDOyFs40n6sMJRPdrPR1s2A; Max-Age=2592000; Expires=Mon, 27 Feb 2023 00:48:35 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&fb712442-f5aa-422b-8c9f-c6aec0674b5d"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 28-Jan-2024 00:48:35 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2422:u=1:x=1:i=1674866915:t=1674953315:v=2:sig=AQH1D3Tqr2mUQGpvoE3FDeai3uHSrL9I"; Expires=Sun, 29 Jan 2023 00:48:35 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXzSFeI8sCwVmK0db23lQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B96B1EB4DE88419DB216F27B60E74309 Ref B: OSL30EDGE0421 Ref C: 2023-01-28T00:48:35Z
date: Sat, 28 Jan 2023 00:48:35 GMT
content-length: 0
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-0CNWYJZDVN>m=2oe1p0&_p=1517153226&_gaz=1&cid=495423005.1674866915&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674866915&sct=1&seg=0&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&dt=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-0CNWYJZDVN>m=2oe1p0&_p=1517153226&_gaz=1&cid=495423005.1674866915&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674866915&sct=1&seg=0&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&dt=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-0CNWYJZDVN>m=2oe1p0&_p=1517153226&_gaz=1&cid=495423005.1674866915&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674866915&sct=1&seg=0&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&dt=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.rindegastos.com
date: Sat, 28 Jan 2023 00:48:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12000
Expires: Sat, 28 Jan 2023 04:08:35 GMT
Date: Sat, 28 Jan 2023 00:48:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12000
Expires: Sat, 28 Jan 2023 04:08:35 GMT
Date: Sat, 28 Jan 2023 00:48:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12000
Expires: Sat, 28 Jan 2023 04:08:35 GMT
Date: Sat, 28 Jan 2023 00:48:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12000
Expires: Sat, 28 Jan 2023 04:08:35 GMT
Date: Sat, 28 Jan 2023 00:48:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12000
Expires: Sat, 28 Jan 2023 04:08:35 GMT
Date: Sat, 28 Jan 2023 00:48:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b5b797e164d0f2c91200829d1ec90f8
15a55176d8e55b6816acabae5c7cc3e4528648c9
16eb29148856512f556b22b86a153e54032caaf98dbf141119f8c126e009591f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7395
x-amzn-requestid: 166e5623-fc91-4b12-80c8-f5e1a762b387
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-ELH3eIAMF56w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b4-439b5d2b67b9347d4d634d9d;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: L1BWTWAPsW5tfkJO0UBR4dKoW3_0Le7QhZLjBxtsY0fmf7cwEYWrMQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:49:07 GMT
age: 10768
etag: "15a55176d8e55b6816acabae5c7cc3e4528648c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674866915363%26url%3Dhttps%253A%252F%252Fwww.rindegastos.com%252Fredirect%26tm%3Dgtmv2%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674866915363%26url%3Dhttps%253A%252F%252Fwww.rindegastos.com%252Fredirect%26tm%3Dgtmv2%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674866915363%26url%3Dhttps%253A%252F%252Fwww.rindegastos.com%252Fredirect%26tm%3Dgtmv2%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rindegastos.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674866915363&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tm=gtmv2&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&796c34c9-063d-42de-8294-5e21765948eb"; Domain=.linkedin.com; Expires=Sun, 28-Jan-2024 00:48:35 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202301280048351121a436-ad6c-4620-8367-4fdda7adbac5AQErtWeiYs4Y3znZsyQfbncrWT3JewGj"; Domain=.www.linkedin.com; Expires=Sun, 28-Jan-2024 00:48:35 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzQ4NjY5MTU7MjswMjGddcI/D+P0JsPrVcK4Quto8M2vJs608EVZvyt3AdO6fw==; Domain=.linkedin.com; Expires=Thu, 27 Jul 2023 00:48:35 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2478:u=1:x=1:i=1674866915:t=1674953315:v=2:sig=AQF8eAwhXg907A3K79Dpeg56dGlpIvmT"; Expires=Sun, 29 Jan 2023 00:48:35 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzSFeOWhdSliYhyqu95g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A32AD8C2C8B94FCD942F4E7D58B8A3CC Ref B: OSL30EDGE0421 Ref C: 2023-01-28T00:48:35Z
date: Sat, 28 Jan 2023 00:48:35 GMT
content-length: 0
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d04b173ecc22c619998bda87a8f9ce70
9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5
c30fbd2807e36b637bd1382a955c34abb4fe88b99173692530d288fff0986896
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8739
x-amzn-requestid: 591edd56-d422-459f-8934-532106be7e90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_quGvkoAMFWQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44644-5bda946b19b8abc54d324bab;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:46:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yAWADPixWRJsEV9OqvunQGhVHlobpluc-VwHlhq1psEwNh_ignw-dQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:03:05 GMT
etag: "9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5"
content-type: image/jpeg
age: 9930
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f185f0b4f90d06dbb397b44ed9c73dbe
a48e2c369a048447e0e25e4791eb603859391c1c
b466060fc132cc8d23fcb83001206606e2d5502118c65e9f55795b5adbff2fa6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F238effff-cb43-479f-8853-06086fff1bd5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9364
x-amzn-requestid: e556be7b-567a-4c9a-931e-ff6fee42d3a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T8GbFoAMFySg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-6f4476e9388c77a057153277;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: LPkLrx7l9Qf_GKdtJq_77RUkvgnKZlCaDN34xsB5bEO8c9VQEJPAew==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:38 GMT
etag: "a48e2c369a048447e0e25e4791eb603859391c1c"
content-type: image/jpeg
age: 10317
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=137915846834106&ev=PageView&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&rl=&if=false&ts=1674866915901&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1674866915900.1006720921&it=1674866915490&coo=false&tm=1&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=137915846834106&ev=PageView&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&rl=&if=false&ts=1674866915901&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1674866915900.1006720921&it=1674866915490&coo=false&tm=1&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=137915846834106&ev=PageView&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&rl=&if=false&ts=1674866915901&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1674866915900.1006720921&it=1674866915490&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 28 Jan 2023 00:48:35 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57b73886cbbb719eda5f733c018eedfb
b84ed40973f8a0d3c10529e34f9466746cfdaf0c
4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwFtboAMF9rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7LUa_R8g8Rlv7JJA0_okht-vGe-xBSyZ5TPJTFakAHlncQPZKEdULQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 10777
etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 79b70f1f-a157-4dd4-8743-825714195b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9T3UGA3oAMFSlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c86695-36e60aba09c152c73b8aefcb;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 21:37:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zt4bgV2C6Wb_Ufa5mZ7-UDTfCvhXJggPJw9668v5DEmyBnWZ-aNrCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 23:03:41 GMT
age: 6294
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 10309
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 9e122bdee67976abe1e8e65aaa143f9e
9e4de007f4f6ab83d871109e9448a38257ab46b6
467bf06c210925000b748d8eadf18881576652d5b4c28dfc2ca15a571d36d976
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 28 Jan 2023 00:48:36 GMT
Etag: "63d21892-1d7"
Server: ECS (dcb/7F5F)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SqeqDa2yVidz665G0zUP2AWn213BhQyvWpVXrvyTCy6D709WnZKkWQ==
web.rindegastos.com/document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1
34.198.118.72200 OK 4.0 kB URL HTTP/1.1 web.rindegastos.com/document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1
IP 34.198.118.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2474)
Hash a8b64b17eff6d1c7727223d72d79878d
3a5d1089aba9a538d49c7cdfc49cffe618caebf3
418de3e431c3271505f74c701600817c525b1b49fc0c216721e499414b2bbc9a
GET /document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1 HTTP/1.1
Host: web.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Cookie: _gcl_au=1.1.1293927824.1674866915; _ga_0CNWYJZDVN=GS1.1.1674866915.1.0.1674866915.60.0.0; _ga=GA1.2.495423005.1674866915; _gid=GA1.2.167739303.1674866915; _gat_UA-61358101-1=1; _fbp=fb.1.1674866915900.1006720921
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 00:48:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 3980
Connection: keep-alive
Set-Cookie: AWSALB=Gt1q9KCeFYutww57Dreguu68raDIGYH3xXrDVhf05KmvUqQTL44SA7B88vcbcvtndjSi+vN/BAHCnCbzlPGp8XTNXukovbf1FzUdybzlIGX/1XOihB/2QxP5RdqL; Expires=Sat, 04 Feb 2023 00:48:36 GMT; Path=/
AWSALBCORS=Gt1q9KCeFYutww57Dreguu68raDIGYH3xXrDVhf05KmvUqQTL44SA7B88vcbcvtndjSi+vN/BAHCnCbzlPGp8XTNXukovbf1FzUdybzlIGX/1XOihB/2QxP5RdqL; Expires=Sat, 04 Feb 2023 00:48:36 GMT; Path=/; SameSite=None; Secure
YUR5aYTheba=ni6i9rclmio9psk5p7tffgjgp1; expires=Fri, 17-Feb-2023 00:48:36 GMT; Max-Age=1728000; path=/
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 00:48:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ppstatic.s3.amazonaws.com/expenses/css/main54.css?v=20220224
52.216.40.121200 OK 77 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/css/main54.css?v=20220224
IP 52.216.40.121:0
File type ASCII text, with very long lines (573), with CRLF line terminators
Hash 50104cb9e1edd52d0e13922c8ad67ab0
d96250df8268bd261fe8e04e214234aab2db09ae
f9c3afd49814b03a5ab682e5838794e9167a70746e5ee3e449599c2998459709
GET /expenses/css/main54.css?v=20220224 HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: y8G3lH54hgS/q8xU3rYLucx5Alt+IauoWgkKuGByoY9DWJLAW3C70HBdR7TF0iDp0g6ukPJiyRk=
x-amz-request-id: D3RXFT5JV0KCNFBS
Date: Sat, 28 Jan 2023 00:48:37 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Thu, 24 Feb 2022 14:13:35 GMT
ETag: "50104cb9e1edd52d0e13922c8ad67ab0"
x-amz-version-id: ET_beOaJd46CSp8w9tqpsY3etnErtYCi
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 76682
ppstatic.s3.amazonaws.com/expenses/css/datePicker.css
52.216.40.121200 OK 3.2 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/css/datePicker.css
IP 52.216.40.121:0
File type ASCII text, with CRLF line terminators
Hash caccb9800bbdc8c1e2729cb538c4cd6d
7e575859f7337b92d4207b6579b94c054afc4cdb
b06b74b85a1c8b44125433ea02b536d5a190cd0406a510f4650e24df3690880b
GET /expenses/css/datePicker.css HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 6vB3X59hoXQlMIKB79DnPjvVBNJg7+yjxwjRxJkvGGIGSVNTJwynWFsEsmr3otChaR1Lw+z3+YQ=
x-amz-request-id: D3RTF4P01CSYXB11
Date: Sat, 28 Jan 2023 00:48:37 GMT
Last-Modified: Wed, 05 Apr 2017 18:28:06 GMT
ETag: "caccb9800bbdc8c1e2729cb538c4cd6d"
x-amz-version-id: 1jmC3lPCO39gT4Q.VzAFHjQk6MXHBJUN
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 3180
ppstatic.s3.amazonaws.com/expenses/js/date.js
52.216.40.121200 OK 13 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/date.js
IP 52.216.40.121:0
Hash 5b9eb501efad96fe774616890a902efc
5874d904c0b89c9c2be6a5b7092a80bce08c9c28
7c311ea6b09f399fc8235e65dd61a3cabd0dfa417122608ad3a8822cf1667165
GET /expenses/js/date.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: qcrpWqvi7QAuQRFqFy4YNa6pZZbIMfxCp1UWdQoz5WsCgmbDwKqmELQC/ttQ5QhsyaEVIE3yHjo=
x-amz-request-id: D3RZ0ZBZENP0DF12
Date: Sat, 28 Jan 2023 00:48:37 GMT
Last-Modified: Tue, 11 Aug 2015 14:45:22 GMT
ETag: "374ce79d1b314709ed0c44a76ff7aba6"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 12278
ppstatic.s3.amazonaws.com/expenses/css/tooltipster.bundle.min.css
52.216.40.121200 OK 6.5 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/css/tooltipster.bundle.min.css
IP 52.216.40.121:0
File type ASCII text, with very long lines (6495), with no line terminators
Hash b15ef24270546e5fe896d3ea387ea134
63910103e8cc5e4bdeb2c289cfbf41f89966ea5b
41ce2509fa9959868717986010e16b6334885fd46bc64d0d3c745a73ed3c41e4
GET /expenses/css/tooltipster.bundle.min.css HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: uapYFWey2TM2+7v1zLy//O9Y8nGLpJt6g+qawiCb63OVCjwZd3Wfa40W/lLL/fa5rR+W6skIduQ=
x-amz-request-id: D3RSHP17HKXCY4HQ
Date: Sat, 28 Jan 2023 00:48:37 GMT
Last-Modified: Wed, 05 Apr 2017 18:28:05 GMT
ETag: "b15ef24270546e5fe896d3ea387ea134"
x-amz-version-id: Ue0uZuGQcSHE1GxhyUC9_LvTvFo5Ze3q
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 6495
ppstatic.s3.amazonaws.com/expenses/css/tooltipster-sideTip-light.min.css
52.216.40.121200 OK 1.8 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/css/tooltipster-sideTip-light.min.css
IP 52.216.40.121:0
File type ASCII text, with very long lines (1799), with no line terminators
Hash 69a5477b4beb94b3accb2f5d95e1a42a
b66fa6a4df5d7da4b6bc9fc66d6001cef748e3c5
37a741f36d0ce77a5c3b191d2c4151630fd5643f18fae8acfb2b68699aa49b3f
GET /expenses/css/tooltipster-sideTip-light.min.css HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: iR8R7iNH0j1HcYr7YewEOJMIvG9okIQUw8WmaP5NBvBGdw1i/k2Dz3v3f9TJCeeg6PPPyTMuPjQ=
x-amz-request-id: D3RPVYMJV749EZ72
Date: Sat, 28 Jan 2023 00:48:37 GMT
Last-Modified: Wed, 05 Apr 2017 18:28:04 GMT
ETag: "69a5477b4beb94b3accb2f5d95e1a42a"
x-amz-version-id: CToi1nIQnjkQG43CSdIRPudk2XhwsiWQ
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 1799
ppstatic.s3.amazonaws.com/expenses/js/formato30.js?v=20220224
52.216.40.121200 OK 13 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/formato30.js?v=20220224
IP 52.216.40.121:0
File type Algol 68 source text\012- Pascal source, ASCII text
Hash eb46238c034d15ea34b6e7e098d8a9e4
16d8653b54fbe7b0f3c897857902bcde19a4a308
926acb7dade2a5192733f5c2ec32e7871c3591f364b436ace4181bd01b8b65ba
GET /expenses/js/formato30.js?v=20220224 HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: /nD7L+MJhzqBKvX24fjDZTxgPZf12e3pI4Dr1r7wVDMFgoyCaAhu5NCJEIA5kbMBN6urgPJ9Ck4=
x-amz-request-id: 4KMJ1SRD6C9SEE0P
Date: Sat, 28 Jan 2023 00:48:38 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Fri, 29 Jun 2018 16:17:57 GMT
ETag: "eb46238c034d15ea34b6e7e098d8a9e4"
x-amz-version-id: IR4f9O.zU.P1OSLzYzkcP4.Ai6BV3VhJ
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 13255
ppstatic.s3.amazonaws.com/expenses/js/validaciones1.js?v=20220224
52.216.40.121200 OK 12 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/validaciones1.js?v=20220224
IP 52.216.40.121:0
File type Unicode text, UTF-8 text, with very long lines (959)
Hash 9615bf8ab37b1bc3e48054d612090dd0
8028055ebc7894f70c423be64f2b920015ea58f7
0244489e3c9dc4bb2ad94802ea990d00ae1ccb9b386c3a9acbf86653ea8b80ed
GET /expenses/js/validaciones1.js?v=20220224 HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: BqcEAMRSYsyYrmxiFycgla9DsOyh5Gc24WI1DLCljXRM+qY64sx2aQ+C8K9acESSzhJ9qxd0btU=
x-amz-request-id: 4KMR8M4G2BHVPWYR
Date: Sat, 28 Jan 2023 00:48:38 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Fri, 29 Jun 2018 16:17:58 GMT
ETag: "9615bf8ab37b1bc3e48054d612090dd0"
x-amz-version-id: 8_lnZFQiJDQwMqbpZzaxKfUb7KUsv5PV
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 12361
ppstatic.s3.amazonaws.com/expenses/js/jquery.datePicker.js
52.216.40.121200 OK 44 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/jquery.datePicker.js
IP 52.216.40.121:0
File type assembler source, Unicode text, UTF-8 text, with very long lines (477), with CRLF line terminators
Hash b0c26cee7599d645540dc356b421d9f7
96fb8befcf172da3c53e56b986296b6a1dba1443
bee659daf21c4ce2125626060f7a8defd277622284628db71686b9b41b929cc4
GET /expenses/js/jquery.datePicker.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: m9JAkopYdTjBZgk+S7GCYqAzNd+fGaQ/FyC99mYBwilOiv0KgEvWX5/DDQ5zNB2/AeoNwBwtAnU=
x-amz-request-id: D3RZYPAHBM7JFEYY
Date: Sat, 28 Jan 2023 00:48:37 GMT
Last-Modified: Tue, 11 Aug 2015 14:45:43 GMT
ETag: "b0c26cee7599d645540dc356b421d9f7"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 43739
ppstatic.s3.amazonaws.com/expenses/js/tooltipster.bundle.min.js
52.216.40.121200 OK 39 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/tooltipster.bundle.min.js
IP 52.216.40.121:0
File type ASCII text, with very long lines (32111)
Hash 62adf085c6b904a8425c58015cf476d3
d6027daae195119fd76ca4e53a4576fec3501880
736c0c08baa411f097cdb53c270b645f636cc74d9f3c0d9f31c2413dba8e5f99
GET /expenses/js/tooltipster.bundle.min.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: fIQTFj8VX4u9s6WMF9ISnX4Xr2KLzm9wmTUJu1nnObpOIi2EA5IT0qs+M7plOeQZpIv5NL1D3BM=
x-amz-request-id: 4KMKPT21HVA35ERZ
Date: Sat, 28 Jan 2023 00:48:38 GMT
Last-Modified: Wed, 05 Apr 2017 18:29:22 GMT
ETag: "62adf085c6b904a8425c58015cf476d3"
x-amz-version-id: ALb3CfmUDqru3ydrMPJw9usP2XFCpSA4
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 39392
ppstatic.s3.amazonaws.com/expenses/js/jquery.min.js
52.216.40.121200 OK 86 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/jquery.min.js
IP 52.216.40.121:0
File type ASCII text, with very long lines (32065)
Hash bb5f9cf31421aebe289fb129d5866718
478d7ded83fbceef05b37553f778aaa4a22ee6a7
3b75fa79f5a776709c5b41245dab02a48830f3d50e317e9bcd1108b05cb8d59b
GET /expenses/js/jquery.min.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: GQ2pZMpZe99tHYhyDI9gP9HIDclgLEONUm07V7duc3KYfXHV8VxxIIoalqIj0S1n9Ed7ZpZAWww=
x-amz-request-id: D3RVV1AZN3F5XA75
Date: Sat, 28 Jan 2023 00:48:37 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Thu, 17 May 2018 21:44:56 GMT
ETag: "bb5f9cf31421aebe289fb129d5866718"
Cache-Control: no-cache
x-amz-version-id: 6t4W9Yo4jMSIjMFraoETOfUlA9Mvw54r
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 85558
ppstatic.s3.amazonaws.com/expenses/js/gestor-archivos6.js?v=20220224
52.216.40.121200 OK 10 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/gestor-archivos6.js?v=20220224
IP 52.216.40.121:0
Hash 9a9ce396838a593113305df6433d8cc2
96706158e4309297ecc54b66ce9e0fc81617604c
1b33bfc8c2369ae0e2403aebb1a91bd727ff3494561602072c23b96b5de05325
GET /expenses/js/gestor-archivos6.js?v=20220224 HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: jw0isJTEsfBmA690hrj7zBs4xkVVDzZOaQXRNiT3yomxufDUU6NsIYp+8CaW4cskWGmWO0UYNAc=
x-amz-request-id: 4KMNS26AGQW3VWE2
Date: Sat, 28 Jan 2023 00:48:38 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Fri, 29 Jun 2018 16:17:58 GMT
ETag: "9a9ce396838a593113305df6433d8cc2"
x-amz-version-id: MmO4iOfFWDjE7VsntMqWXOAaC.R32HKT
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 10223
ppstatic.s3.amazonaws.com/expenses/js/dropzonejs.js
52.216.40.121200 OK 63 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/dropzonejs.js
IP 52.216.40.121:0
File type ASCII text, with very long lines (3291)
Hash 9904a99cba14bd9ac0f5b173ced7d0bf
b560fa3e373038a393898d53b9da3ab674e3623a
d808a4d57206818dd5cb6bc788fc77515fd830f5b20aacb6173356ba895eb4d1
GET /expenses/js/dropzonejs.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 22JN6x3SRcYInKDXURtK/VeoC6btUVWG6EraS0H+HL7oh/hDWrgZAsZ3jnhM5VSV6SbL/0YF0tQ=
x-amz-request-id: 4KMKH64FZWTK6JHY
Date: Sat, 28 Jan 2023 00:48:38 GMT
Last-Modified: Tue, 11 Aug 2015 14:45:26 GMT
ETag: "9904a99cba14bd9ac0f5b173ced7d0bf"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 62986
ppstatic.s3.amazonaws.com/expenses/css/jquery-ui2.css
52.216.40.121200 OK 35 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/css/jquery-ui2.css
IP 52.216.40.121:0
File type ASCII text, with very long lines (2363)
Hash f6f0d76ca650be09e00268384d00dc4a
07c6fa02eec3c15e9dbae4646144afeb1b108283
34b0e967524aca9599338d8065c22f7c0b45f7981a0946b6a558de4a7ed75fb1
GET /expenses/css/jquery-ui2.css HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: b0dpeFpsyAN+IgULGOdSNGfXJRQYRCuV31EcXfWlHzxZZYDUegm3Yu+xhlEGjGh5slH0P8uMymk=
x-amz-request-id: 4KMWMP0YHBM2QJYN
Date: Sat, 28 Jan 2023 00:48:38 GMT
Last-Modified: Wed, 05 Apr 2017 18:28:09 GMT
ETag: "f6f0d76ca650be09e00268384d00dc4a"
x-amz-version-id: myqnckGcx6jeIh8tJhfP99A3LsiA3BpO
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 35388
ppstatic.s3.amazonaws.com/expenses/js/ajaxupload.js
52.216.40.121200 OK 14 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/ajaxupload.js
IP 52.216.40.121:0
File type Algol 68 source text\012- Pascal source, ASCII text
Hash 6e1afbb205e505fe40f5644aa608d278
4417c0ae2e753594924f7a332f4f2ade8070330b
1099979aebc07d7ba8c7b02da95afd733083d266cf672329a284cbf7087ebb10
GET /expenses/js/ajaxupload.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: d9aT6azPf0tQBorcg2OdpvI2GsPr62nmT+0N7UK3iKUAToElPFRQ1U7vQK8DFTnmgfmVh//dPUM=
x-amz-request-id: 4KMNAV5NQMHND55M
Date: Sat, 28 Jan 2023 00:48:38 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Thu, 17 May 2018 21:44:53 GMT
ETag: "6e1afbb205e505fe40f5644aa608d278"
Cache-Control: no-cache
x-amz-version-id: qCo0lWot.1MaQ.7bupKELNTNhk56.Nn1
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 13965
ppstatic.s3.amazonaws.com/expenses/js/jquery.gdocsviewer2.min.js
52.216.40.121200 OK 748 B URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/jquery.gdocsviewer2.min.js
IP 52.216.40.121:0
File type ASCII text, with very long lines (575)
Hash 3a328a49ed19de5159e05427341cc6d3
9fdc928c44ce000307dd751e42c08ebd599fac79
038cf89078c60faed0eff6d37c3572524693655ec766c14872c66ab5b8ee1e40
GET /expenses/js/jquery.gdocsviewer2.min.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: OUah6TAPrbqvpTYYXp6Dj6Y0gz3hUtjN6w64rRUT3zH7vv0ZnpsNhHu8v7lPSgVTObMVkP7sXoA=
x-amz-request-id: 4KMPR23ZP8D26FF7
Date: Sat, 28 Jan 2023 00:48:38 GMT
Last-Modified: Fri, 05 Feb 2016 12:53:56 GMT
ETag: "3a328a49ed19de5159e05427341cc6d3"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 748
ppstatic.s3.amazonaws.com/expenses/js/jquery.panzoom.js
52.216.40.121200 OK 12 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/jquery.panzoom.js
IP 52.216.40.121:0
File type ASCII text, with very long lines (12131)
Hash 9dd3f95de028e069807a46e929345e48
134e3c3b98b0e5139dfaf2644f1c3a28e176ea8c
96e074a0f68fba607a772b6d2dda7598e3d5e75378b185465862b59a07c65f76
GET /expenses/js/jquery.panzoom.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 26o3HvjZX5oh3tBctLiJcJB8E0YFDEkzNniSsAmFH6T/tYeSARjCSqN+TM9JWgDiFrMYe3fqlA4=
x-amz-request-id: 4KMN2JMZ85GAHCGP
Date: Sat, 28 Jan 2023 00:48:38 GMT
Last-Modified: Tue, 11 Aug 2015 14:45:53 GMT
ETag: "9dd3f95de028e069807a46e929345e48"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 12398
ppstatic.s3.amazonaws.com/expenses/js/account50.js?v=20220224
52.216.40.121200 OK 50 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/account50.js?v=20220224
IP 52.216.40.121:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 344017a9838b5e78b6f3144d92eaff06
ead0e3d4f3692fbe51ae5f56e7663366d84dc95d
be089c8b39c6a09495ce979e76be499e1f5769066318844c28bc3d75a5360b9e
GET /expenses/js/account50.js?v=20220224 HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 0Hro0nh6HMM9vnAltKOVkmjiV5dW3d/zoLxQC3+CRTsl5Ql3wm8HV4vO/QfpRwiVmq99DuUU9zk=
x-amz-request-id: 4KMTZ0NE2RT04TC6
Date: Sat, 28 Jan 2023 00:48:38 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Thu, 24 Feb 2022 14:14:17 GMT
ETag: "344017a9838b5e78b6f3144d92eaff06"
x-amz-version-id: k5Q9boB7PWEj2aoy369KbtKn9T5v0jEK
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 50096
ppstatic.s3.amazonaws.com/expenses/js/highcharts/highcharts.js
52.216.40.121200 OK 154 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/highcharts/highcharts.js
IP 52.216.40.121:0
File type Unicode text, UTF-8 text, with very long lines (596)
Size 154 kB (153909 bytes)
Hash bdd06f45e34c33dfaaac249f3eb50040
9305510952cfeb4ed26cc43965d070afadc1e021
af5e4f327b79424352a42bf43df71e6a2f52d6f8948b82d6a42b4c2e97f7bfea
GET /expenses/js/highcharts/highcharts.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Bml/pLBjUgK783Hw56g6U/oCWCvU0OWUm1Ppb240JGmmzbwQflGGmq022/CwGshu6P7LuxZzL7k=
x-amz-request-id: 4KMXXDYJYH3XVT49
Date: Sat, 28 Jan 2023 00:48:38 GMT
Last-Modified: Thu, 16 Oct 2014 03:29:55 GMT
ETag: "bdd06f45e34c33dfaaac249f3eb50040"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 153909
ppstatic.s3.amazonaws.com/expenses/js/font-awesome/css/font-awesome.min.css
52.216.40.121200 OK 29 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/font-awesome/css/font-awesome.min.css
IP 52.216.40.121:0
File type ASCII text, with very long lines (28900)
Hash 4083f5d376eb849a458cc790b53ba080
fb5b49426dee7f1508500e698d1b3c6b04c8fcce
008a1d103902f15fdb1c191fcb1ce8954330e7b8de43d09abb08555ba609f420
GET /expenses/js/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: BxwJoFUQ5g+h4tZad9CZPVHPhX54gkbjtSH8iBYyiW9risbi4vKlhbwiJKIU4fqXUZyAWY1GiEI=
x-amz-request-id: 4KMP1VVH6QBNQGD6
Date: Sat, 28 Jan 2023 00:48:38 GMT
Last-Modified: Wed, 05 Oct 2016 16:10:59 GMT
ETag: "4083f5d376eb849a458cc790b53ba080"
x-amz-version-id: 5_kOOOaG7DJerDKp8FxPHwxzBf3Fivtm
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 29063
ppstatic.s3.amazonaws.com/expenses/js/html2canvas.min.js
52.216.40.121200 OK 166 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/html2canvas.min.js
IP 52.216.40.121:0
File type Unicode text, UTF-8 text, with very long lines (64457)
Size 166 kB (166241 bytes)
Hash 0e52edb30e4a8b8d654d5db2a09203a1
d63ed0421a511ffb8f5907ae367c368871092a8c
e5dc6a09d90978d0f0f63aa53ea44b20dd7be7903ef9b1a831e27ad994346ec0
GET /expenses/js/html2canvas.min.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: CNap678B7tMng0bI2HF8QqBMvkq13SLR/FbhJsjHOW+50DIPqhhSLpKbgqlDVaqTvm3u1MGZ2fk=
x-amz-request-id: 4KMSMHVER14SDFHS
Date: Sat, 28 Jan 2023 00:48:38 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Wed, 02 Jan 2019 13:12:52 GMT
ETag: "0e52edb30e4a8b8d654d5db2a09203a1"
x-amz-version-id: Mmr7detyCxze9vMZZBuh0XwqmcjvuoER
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 166241
ppstatic.s3.amazonaws.com/expenses/images/new-home/logo_rindegastos_hdr.png
52.216.40.121200 OK 17 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/images/new-home/logo_rindegastos_hdr.png
IP 52.216.40.121:0
File type PNG image data, 510 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 60b6932c25162cb574edbc934c7ce50d
69bae3f5aabb36115e4e09cf20cf984dc887a196
18c63b4dae26e479dc4c4d41458bc6339d59e768964f44054741142a4812e6e8
GET /expenses/images/new-home/logo_rindegastos_hdr.png HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: v2P30nFMoFfa2HE5YRwIjaO0/9JLOciloQCY0w0a7UBN5ws9l7Xt7gifeSpAVAxF57xQh1XZH5c=
x-amz-request-id: 4KMK6VZVAR4BMZRA
Date: Sat, 28 Jan 2023 00:48:38 GMT
Last-Modified: Wed, 13 Dec 2017 13:33:34 GMT
ETag: "60b6932c25162cb574edbc934c7ce50d"
Cache-Control: no-cache
x-amz-version-id: nM2d9I4Iq4zkUR48ncMyuIHX2hQG_6Zw
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 16620
ppstatic.s3.amazonaws.com/expenses/images/icon-expenses-ios-152x152.png
52.216.40.121200 OK 3.8 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/images/icon-expenses-ios-152x152.png
IP 52.216.40.121:0
File type PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced\012- data
Hash 63df7eed418e312e68ff89f8b4481439
42b16982196af6551599ada2057000a9a00722a2
3b747819b66f74855363f0302566954d462bb457920fdef69c1d9a8a38eb09d7
GET /expenses/images/icon-expenses-ios-152x152.png HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 8slk5kVF3y24tzjzVa1UNujYkqvI0PyBlrzc0CxvQlnhPp2NA+7dWf5aTrWX7Jm+/9Oz+XtRtso=
x-amz-request-id: GC7C251G2BF7FHEX
Date: Sat, 28 Jan 2023 00:48:39 GMT
Last-Modified: Thu, 04 Sep 2014 21:53:59 GMT
ETag: "63df7eed418e312e68ff89f8b4481439"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3753
ekr.zdassets.com/compose/4f349ffb-427f-4fb0-934a-55bdcc3319d2
104.18.72.113200 OK 1.1 kB URL HTTP/2 ekr.zdassets.com/compose/4f349ffb-427f-4fb0-934a-55bdcc3319d2
IP 104.18.72.113:0
File type JSON data\012- , ASCII text, with very long lines (325), with no line terminators
Hash b74be4b25c2d5ef56b968fce3dcaca14
b0464ce0b6657ac4ebf5a0281377fdd282300805
486448f531874996575792e55564027bbcc4f4958b09e17a8a88768492114079
GET /compose/4f349ffb-427f-4fb0-934a-55bdcc3319d2 HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.rindegastos.com
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:38 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"0008ebae97651e5a3524476c5fea3ef1"
x-request-id: 7901b30ead13b4f7-ORD, 7901b30ead13b4f7-ORD
x-runtime: 0.002624
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0HxrSclhveIOvflpJvHIhcV0oaagrq63ZFxns1D%2FaonLFOSADVT0tjXv9iCk%2F%2BXv7A7g5dwt0NQLDr0Op8c3g08xcU%2FRfc9v9Nzwg2juAGEb4PK9lIdXKFnK%2FIqgECKDSQw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b93e19c2b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/web-widget-framework-59b8a859ce8a473d961c.js
104.18.70.113200 OK 50 kB URL HTTP/2 static.zdassets.com/web_widget/latest/web-widget-framework-59b8a859ce8a473d961c.js
IP 104.18.70.113:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 6d0d04c684470084e6a2f1379f786df5
3cde63c3c6f274cd99664f8ba0aba4c18b207e5b
cc38074b037fc52bfb0a8bb124785505ad5f27ddebd8208d7814dc57c0229821
GET /web_widget/latest/web-widget-framework-59b8a859ce8a473d961c.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:38 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: eqi5IJQsZltOEPYX18LZfa9yHAtGFvEXQO7zmTiGIn0VvD4F0CwBVgdFmBuHSbbKdhbjAWDPQGE=
x-amz-request-id: JT3WC3ZCPKE9H3EG
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:03:21 GMT
etag: W/"6337d08bfec6eec8c5e9f218e1ca6471"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:03:19 GMT
x-amz-version-id: .eV5Z5rLMQLzZziY1JqjOEi.7xRQkb6M
cf-cache-status: HIT
age: 90945
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e1W2TrEfH99l4B1AICwgQB8r0HlVA%2FBLMvWhhvJKOjeoqfBt6UsJZfklwu7QJZQKbDvKTv44sHpZHmjnA4EefpOzoYOCI2dfRQjez24HLiC61B2Y9uNuibG4ZDB%2FBpNrBeX7uVI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b9400909b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
ppstatic.s3.amazonaws.com/expenses/js/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
52.216.40.121200 OK 72 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
IP 52.216.40.121:0
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
GET /expenses/js/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.rindegastos.com
Connection: keep-alive
Referer: https://ppstatic.s3.amazonaws.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: iuJ6ibpllEvup7hIJ/2FoX4/q6fcPOMr/7R7QR/P8U9vB3qpA7+5vcUS1bJNc3NrqVs7T9+nw1c=
x-amz-request-id: GC76FSCAQRJ08RHW
Date: Sat, 28 Jan 2023 00:48:39 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 3000
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 05 Oct 2016 16:13:05 GMT
ETag: "e6cf7c6ec7c2d6f670ae9d762604cb0b"
x-amz-version-id: OHwM4jbC4BbBa0APuMeeOZ58pwuzjSm_
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 71896
px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674866918627&url=https%3A%2F%2Fweb.rindegastos.com%2Fdocument%2FexpenseReport%3Fe%3D2993013%26k%3D48433-11229-62f2a4e435fb1&tm=gtmv2
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674866918627&url=https%3A%2F%2Fweb.rindegastos.com%2Fdocument%2FexpenseReport%3Fe%3D2993013%26k%3D48433-11229-62f2a4e435fb1&tm=gtmv2
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=66325&time=1674866918627&url=https%3A%2F%2Fweb.rindegastos.com%2Fdocument%2FexpenseReport%3Fe%3D2993013%26k%3D48433-11229-62f2a4e435fb1&tm=gtmv2 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674866918627%26url%3Dhttps%253A%252F%252Fweb.rindegastos.com%252Fdocument%252FexpenseReport%253Fe%253D2993013%2526k%253D48433-11229-62f2a4e435fb1%26tm%3Dgtmv2%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJPlW5zZkMQ8gAAAYX12QRzrhCxUDcjMXjWn7Gs_RnxHO8mRZaPJ81Bfh25hMlYDJB_BFZ5C6B2eQ; Max-Age=2592000; Expires=Mon, 27 Feb 2023 00:48:38 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKlKSmZHsH2UAAAAYX12QRzojH2ueLcd5KyeXmBGWFQRe7u8vBZcArv-GzprdOcmbTDIwRASYkEyQTUs0pd3Q; Max-Age=2592000; Expires=Mon, 27 Feb 2023 00:48:38 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&7dfe547a-41b9-41a8-8356-781e4e7facd6"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 28-Jan-2024 00:48:38 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2478:u=1:x=1:i=1674866918:t=1674953318:v=2:sig=AQGn-rmbhNYga6ZZ5B7k2_DVDPMI90ml"; Expires=Sun, 29 Jan 2023 00:48:38 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzSFe5UFJpaEEUc0bk6w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 597FDB7DAB07403A9ACEDC4633F71CF7 Ref B: OSL30EDGE0421 Ref C: 2023-01-28T00:48:38Z
date: Sat, 28 Jan 2023 00:48:38 GMT
content-length: 0
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/66325/domain/web.rindegastos.com/token
54.230.111.112200 OK 342 B URL HTTP/2 cdn.linkedin.oribi.io/partner/66325/domain/web.rindegastos.com/token
IP 54.230.111.112:0
Hash 5c0229f35c91da4163204240a1cdbc04
9deb0018a4f5a9baeb48f3c8d7c77af52c593041
82378e1f668a4b414e7814c8987c9e32a9e8118689d63329773e5a08c8d72cc6
GET /partner/66325/domain/web.rindegastos.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.rindegastos.com
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sat, 28 Jan 2023 00:48:31 GMT
access-control-allow-origin: *
cache-control: public, max-age=6205
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e7LcisqHbw1eocasBRJtkyaE1VKhRNkEC_JlZwJy7OlshR4jJ12izw==
age: 6
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674866918627%26url%3Dhttps%253A%252F%252Fweb.rindegastos.com%252Fdocument%252FexpenseReport%253Fe%253D2993013%2526k%253D48433-11229-62f2a4e435fb1%26tm%3Dgtmv2%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674866918627%26url%3Dhttps%253A%252F%252Fweb.rindegastos.com%252Fdocument%252FexpenseReport%253Fe%253D2993013%2526k%253D48433-11229-62f2a4e435fb1%26tm%3Dgtmv2%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674866918627%26url%3Dhttps%253A%252F%252Fweb.rindegastos.com%252Fdocument%252FexpenseReport%253Fe%253D2993013%2526k%253D48433-11229-62f2a4e435fb1%26tm%3Dgtmv2%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.rindegastos.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674866918627&url=https%3A%2F%2Fweb.rindegastos.com%2Fdocument%2FexpenseReport%3Fe%3D2993013%26k%3D48433-11229-62f2a4e435fb1&tm=gtmv2&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&559bf591-132a-41f1-8354-c03fb79b1847"; Domain=.linkedin.com; Expires=Sun, 28-Jan-2024 00:48:38 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20230128004838f7ab2c5e-1947-4ddd-8759-28197d700207AQENrviEkvDz4R60j26zgsicOwirOubJ"; Domain=.www.linkedin.com; Expires=Sun, 28-Jan-2024 00:48:38 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzQ4NjY5MTg7MjswMjGfzKk2Wpzm9U1EMk1JjBwzQWJqmCn+VKeGqoO4lTPSEg==; Domain=.linkedin.com; Expires=Thu, 27 Jul 2023 00:48:38 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2422:u=1:x=1:i=1674866918:t=1674953318:v=2:sig=AQFcaAk-HR1ZQhDfdUySs4yXRqy_5WRO"; Expires=Sun, 29 Jan 2023 00:48:38 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXzSFe8NLcwtkNAbOGobg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 8846E1805F634B67A4DA665CE7DB6C99 Ref B: OSL30EDGE0421 Ref C: 2023-01-28T00:48:38Z
date: Sat, 28 Jan 2023 00:48:38 GMT
content-length: 0
X-Firefox-Spdy: h2
rindegastoshelp.zendesk.com/embeddable/config
104.16.53.111200 OK 115 kB URL HTTP/2 rindegastoshelp.zendesk.com/embeddable/config
IP 104.16.53.111:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (833), with no line terminators
Size 115 kB (115352 bytes)
Hash 653a3a6dff8175c189628ac51b71ba6d
80c920f22e5b5210f9083dd60dcaa2fd8792e2ab
a5f9c858ee385e4d9f1061663752a1719a0ae0654cd4eed99b2646f496c05bd2
GET /embeddable/config HTTP/1.1
Host: rindegastoshelp.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.rindegastos.com/
Origin: https://web.rindegastos.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:38 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-678bfc9b-5644f
x-request-id: 7905b918cef8b500-IAD
x-runtime: 0.001891
vary: Origin, Accept-Encoding
x-cached: MISS
last-modified: Fri, 27 Jan 2023 14:33:16 GMT
cf-cache-status: HIT
age: 6
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mwPrWtz6NBUVpgBoLP%2BLmq%2FnFGPQ22jQy%2FJ32mjZAWMxTRbkhm2FYtSseR%2BiH3HbNmjfIIF93C9vQ0gN%2FDsMCjz7WW50%2Fyvit2q24Tiz%2FBqXW%2FjlUjIVREz1q5hy2B2dCXA05Z%2B1EmKRFj%2BjhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=455c51c09f46eb59ae56c43cc56f03cbe030fc0c-1674866918; path=/; domain=.rindegastoshelp.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7905b9420967b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-9865-3789e01.js
104.18.70.113200 OK 3.3 kB URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-9865-3789e01.js
IP 104.18.70.113:0
File type ASCII text, with very long lines (12831), with no line terminators
Hash 53e1b6ca09a8a740056b62b43a86dbf9
e3044e643759ab9a5f6420745a54533fd9c0364f
4a90107b464fa237e5e153bfbfab37fd8a8bcee444abb35790dff70e3bec48cf
GET /web_widget/latest/messenger/web-widget-9865-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:39 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: jkOJ8wlVQ5lZ+CK5YgrtnrHVEdSVvw6lh5sFpRmB3rTYlNUTnAIWILxe46S6B8yONQUBeGOWUwzPic6EDPqXlA==
x-amz-request-id: SG7DBG9SK2E4YR4Z
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:08:38 GMT
etag: W/"6825954fa6a452cbc50034ed21755927"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:08:37 GMT
x-amz-version-id: wdVJ01gKI3ZR5JjGvZNeyb9Ss687Op4o
cf-cache-status: HIT
age: 90934
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e%2BR7cUltnFVs%2FFLnlT6%2B2fg%2BJL9Z3MVCBaBMJdgVbLHeG6RmvmJx5aH3AnbDyejvaGvZp6MKub0Ws4zsj8AoiE7uzy0XHZsab8LM3t3x24qVBo40PewJYewxe1zjbu1MyKmGuUQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b9441c23b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hsleadflows.net/leadflows.js
104.17.233.204200 OK 0 B URL HTTP/2 js.hsleadflows.net/leadflows.js
IP 104.17.233.204:0
GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:34 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 12 Jan 2023 01:15:58 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: cBWlZpBPNqCcN4.OsLoqDE.Qz8k.oCDt
etag: W/"81f94bb71da5bf7e447ae1cd97c54e62"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: RefreshHit from cloudfront
via: 1.1 4715507645a6516d2df35cd342cb5be0.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: Zlnl0yWVHFeqAxahJmhiVxQMJ_ogING2II0b6PsGtpyO283PFWs9mA==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=lead-flows-js/static-1.1126/bundle/main/lead-flows-release.js&cfRay=78e2048c8ee5b505-IAD
x-hs-target-asset: lead-flows-js/static-1.1126/bundle/main/lead-flows-release.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 42199
server: cloudflare
cf-ray: 7905b92589561bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/66325/domain/rindegastos.com/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/66325/domain/rindegastos.com/token
IP 54.230.111.112:0
GET /partner/66325/domain/rindegastos.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Sat, 28 Jan 2023 00:48:28 GMT
access-control-allow-origin: *
cache-control: public, max-age=20974
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nNiUHWPT4P7_gKA6ApQtLdYGeqXUx2Jfrggai5E0svCMH8sPpBkzAQ==
age: 7
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-9809-3789e01.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-9809-3789e01.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-9809-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:39 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 26nMbylIxiip7pVRPXDer7Hb5F5E0F0III9sTLG5UjSMBZpfL/gLH/3EVkEkypi5Pov5pahFELdl/+MdOsQiKQ==
x-amz-request-id: SG79P35V7GA0RS6S
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:08:38 GMT
etag: W/"7f90e3a97a3bcf5c1aab74f58af70fcf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:08:37 GMT
x-amz-version-id: nBrdeyloE7m11T9t0cB1Z8pOeL5SkhWL
cf-cache-status: HIT
age: 90934
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hkcEt6bWAPs0IhZhvdmchsoc%2BtngC41Cez%2B8kYChN4is0KgMC3ltrX6S0tAjgavXP06FUyMGz1Ts51rNyNxBo4ufEm61KwfkzllKotpkwBs4xuwxcPMT9es5eQQ%2FZfG2wyhr3Mg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b9440c20b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
js-na1.hs-scripts.com/3276114.js
104.17.211.204200 OK 0 B URL HTTP/2 js-na1.hs-scripts.com/3276114.js
IP 104.17.211.204:0
GET /3276114.js HTTP/1.1
Host: js-na1.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:33 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://www.rindegastos.com
access-control-max-age: 3600
cache-control: public, max-age=30
cf-bgj: minify
cf-polished: origSize=2985
last-modified: Fri, 27 Jan 2023 14:33:30 GMT
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 0a0d3679-0eb2-4522-89cd-2af355a9ea10
x-trace: 2B129D5F892BBA27BA8E16DB6A8964B3051C4C8D08000000000000000000
cf-cache-status: HIT
age: 6
server: cloudflare
cf-ray: 7905b9230b0b0b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Arimo:400,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Arimo:400,700
IP 142.250.74.106:0
GET /css?family=Arimo:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 28 Jan 2023 00:48:36 GMT
date: Sat, 28 Jan 2023 00:48:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-9352-3789e01.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-9352-3789e01.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-9352-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:38 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: BPfrqW2otZVhq7Zt29lmj74+JvapuT6iAUGvzq43i8pWUa8sLcWseN43vbjECmkQZ6M83NMwXzjiYJz3yJIhew==
x-amz-request-id: XZJX9SFKTYCY94PP
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:08:38 GMT
etag: W/"75cbe5d2f9523420cd75ea3f672b4a58"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:08:37 GMT
x-amz-version-id: FGUn3K_J10E7K2EKkgWA0m54uandzL0l
cf-cache-status: HIT
age: 90935
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rjNdOjoWYb23cflhplxT9Of%2FjhNed7b18h0PHsAJICMjVRPmufqk709uGPyitvgchXyQBUJV7N86U3kUqdROB78oVGv5vTkAez8KdK%2B0R60YB5ccmG5xGpVmzaVXjg%2B9eMtLQDc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b9426aa8b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-2294-3789e01.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-2294-3789e01.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-2294-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:39 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: M9HwRTPSf4/O4MuN3ZiGQzAsi/jghsfl9JR4HVyawp7oGQJgxiam0dQfB/wFQikNgG00zTEo6w/txvhSYF7aHA==
x-amz-request-id: SG72VXMACY7V64KW
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:08:38 GMT
etag: W/"26ffd532833c050a2d0721bd59dd40b0"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:08:37 GMT
x-amz-version-id: X9Xic9pbnHXQLOJ5Mq.c1IhPICzc_c_n
cf-cache-status: HIT
age: 90934
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wWhXHeOB4jLudiWBXm8pzHtUWbW4%2FFhi5VII1RozUcsPexLwDEm6GnrD0oYHJFAjdRcb7KN1InfOGDzd281jDiEPt0yz2C5s%2FELcki%2Fi7mhV0c1ityXfQVmVwoSA8KYIH3nhqVI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b9440c1ab527-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.hsappstatic.net/conversations-visitor-ui/static-1.14196/i18n-data-data-locales-en-us.js
104.17.7.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.14196/i18n-data-data-locales-en-us.js
IP 104.17.7.210:0
GET /conversations-visitor-ui/static-1.14196/i18n-data-data-locales-en-us.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:35 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2023 18:35:18 GMT
etag: W/"528f80e11add00c031037c5ad43e48cd"
x-amz-server-side-encryption: AES256
x-amz-version-id: ciO4xW1Oh9nDEI7ATDDi_OuHch6NaNXE
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 283a3ebaefd33728d45267e54657c3e2.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: CecxHoARbOrxZfFagldNR3IfjLqulHfm4VNiTZ4l9EOJEPF5B0syUg==
cf-cache-status: HIT
age: 1407174
expires: Sun, 28 Jan 2024 00:48:35 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v3m4ki1cW6i1M2zCWOyM4k2mqclk1kPRJPkdMsQdsqa30qOBrgzAWRYbEWf6fc9MK0fdTisIqdbBWluoY1ZpFMC6vje1msnyujKKaaPNZzAdWZr7iMZEY%2Be%2FrqAL6hpaBwyckiXNMB8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7905b92fdc460b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-7551-3789e01.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-7551-3789e01.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-7551-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:39 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: j63Wj5CfBUwkoNO/wm6YtLbokvhjNp42YqKk+Bbv3lUZv9K984vuQpVEt24WbX27hbFhyml+v/c=
x-amz-request-id: SG79E2XFTSA5BH60
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:08:38 GMT
etag: W/"b6375fecac03a35b22cde2f004c0fa57"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:08:37 GMT
x-amz-version-id: ff92HrVK4xgI0kalkwinizP2mMwsZy_N
cf-cache-status: HIT
age: 90934
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pGE3jlMxS4YL53WfG48dRdp6rfiCQ7Gw4FlJpSj6rDw7UlaUvY5WHCWi4lz1IhcUydiXo1Eit7tBKV%2FA%2FA5EkYYMK8uzMmz2uw7zIvY2c6Jg31G2hBBA4%2Bdnq9T4kMH4WlC6tdQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b9440c1eb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/66325/domain/rindegastos.com/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/66325/domain/rindegastos.com/token
IP 54.230.111.112:0
GET /partner/66325/domain/rindegastos.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Sat, 28 Jan 2023 00:48:28 GMT
access-control-allow-origin: *
cache-control: public, max-age=20974
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nBhsRLVbq3FGBsZaZ4WpVU6uBc2HNb7sJZRjBu5nBLH69OBvDSjxTA==
age: 7
X-Firefox-Spdy: h2
static.hsappstatic.net/hubspot-dlb/static-1.346/bundle.production.js
104.17.7.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/hubspot-dlb/static-1.346/bundle.production.js
IP 104.17.7.210:0
GET /hubspot-dlb/static-1.346/bundle.production.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:35 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Wed, 11 Jan 2023 15:49:01 GMT
etag: W/"c9d81634943890d47a945251055bc14c"
x-amz-server-side-encryption: AES256
x-amz-version-id: wc3c.cxve2vx.dFUj.2aLlVX_oTdGd2y
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1a8662d51ed58f0336021036df8bf88a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: ngbRgom1g3b8S5Q3Lxk_6V-ea4V3tm4SRbdt0KGygFDDRVd-XwOdcg==
cf-cache-status: HIT
age: 1411649
expires: Sun, 28 Jan 2024 00:48:35 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3M7BftUV9y56sfYiWJb6NMOH%2FssNqyHCZfe8X%2FG7vJEW%2FPFsjM9hUjy9vnEwHsLlUV858ySIC8Y2jVyGKsMfEBYLJCUwlKLegXkzLSSxY%2BPu3SN7MxvNExdKXG0KvqUvB6cNvFviCdM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7905b92c8b0a0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.hs-banner.com/v2/3276114/banner.js
104.18.33.171200 OK 0 B URL HTTP/2 js.hs-banner.com/v2/3276114/banner.js
IP 104.18.33.171:0
GET /v2/3276114/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:34 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: R1oHOX335FdK35ePngVpWFPZ0Ltawd9oL8WJ9aesexBy/vpA/8xUZoknKVru364QZ9p/IMuZULY=
x-amz-request-id: JE040NY0RH71FFRK
last-modified: Thu, 26 Jan 2023 17:00:07 GMT
etag: W/"0fa6cf4f7e415eb0cd22a4b8dbddb30b"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: hmT9SdUBZLa6xTJSldJ1humGDVmywc_Z
access-control-allow-origin: https://www.rindegastos.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Sat, 28 Jan 2023 00:53:27 GMT
cf-cache-status: HIT
age: 7
server: cloudflare
cf-ray: 7905b9258fcfb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1674866700000/3276114.js
104.17.71.176200 OK 0 B URL HTTP/2 js.hs-analytics.net/analytics/1674866700000/3276114.js
IP 104.17.71.176:0
GET /analytics/1674866700000/3276114.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:34 GMT
content-type: text/javascript
x-amz-id-2: V0VKMeK2mJi/6kMIN+plptsfXYGoOmpUCKFeWrjxKq6BrB3fsy6mw5IadnuLzfxVpPef4/n8nYk=
x-amz-request-id: 1SHRW4F4PX3A1NZX
last-modified: Wed, 18 Jan 2023 20:00:38 GMT
etag: W/"b462c9dd223b55a16cab364fa64b91ec"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Sat, 28 Jan 2023 00:53:28 GMT
cf-cache-status: HIT
age: 5
server: cloudflare
cf-ray: 7905b9271985b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/ekr/snippet.js?key=4f349ffb-427f-4fb0-934a-55bdcc3319d2
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/ekr/snippet.js?key=4f349ffb-427f-4fb0-934a-55bdcc3319d2
IP 104.18.70.113:0
GET /ekr/snippet.js?key=4f349ffb-427f-4fb0-934a-55bdcc3319d2 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:36 GMT
content-type: application/javascript
x-amz-id-2: VYKORFZEK8ncQjbBiiAK6oiTYdRdkzwPfaxRM/jinB20cI8N0LqXAF6x6uRMZJVhRKA1YH5Ltb2qBhbqYLdq5g==
x-amz-request-id: EBZ4ZRD66V3TGNXR
x-amz-replication-status: COMPLETED
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: TCAqq4sghBBBAAXd3MLZ8Fy8XIds..vO
cf-cache-status: HIT
age: 18
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BNMRFWLaCvjU5MajzRh9d9l%2FJdvMOwrwfWrKTkRfu2fSOKLa8yaBImljY2gW8zth7Xk5KbsD4J2vVli6HHmIbT5kxnqSE%2FpamlrV0Y2nZXJou6i39%2BdrEzLWj1yKVh93Gmy4on4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b9355a71b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
ppstatic.s3.amazonaws.com/expenses/js/jquery-ui2.js
52.216.40.121200 OK 0 B URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/jquery-ui2.js
IP 52.216.40.121:0
GET /expenses/js/jquery-ui2.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +nRU3XaZz5VZ3NLrRaDPNAZaRoLxRf7Q8N1rPkxZiarjk3txBGXuMag0JYG/vk2UMf0qzWZdH2k=
x-amz-request-id: 4KMX4KKBYY8VJ15M
Date: Sat, 28 Jan 2023 00:48:38 GMT
Last-Modified: Wed, 30 Sep 2015 21:05:47 GMT
ETag: "04a4db2983450a2970c459ba87b4210a"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 470596
static.zdassets.com/web_widget/latest/messenger/web-widget-9524-3789e01.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-9524-3789e01.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-9524-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:38 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 0FPYhEMcwDXPosfofnQNl3jgh4r72dhJlwKf5lDO8keH+y1OwiD14/y5uv0PyhsYLWvyhDdyksU=
x-amz-request-id: XZJGBEDTMBD3G4BE
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:08:38 GMT
etag: W/"8368a7ac9bda15d64ba1686611ee7347"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:08:37 GMT
x-amz-version-id: h7akTrrjE.R8rLAIS3L62l0tHcVZ0dUj
cf-cache-status: HIT
age: 90934
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qzAR6%2F32nDjDehZgVP3LB6Hfr4savD%2Bs5Sa61FKR%2FD5uPUcgN5sTHgv5inRUeOqsi4lRBN6gyclvI%2FnRrvWhqSyioPlqGjj4J76cJsBvsWQbWYkEo2sEHPuYQqWRET0a022gc8Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b9427aaab527-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-3646-3789e01.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-3646-3789e01.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-3646-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:38 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 250Y2tuCMnIGJq+P/ZWpmqF0iK33F2FwS2IUnt/SBNJPqV4yHbHvQOKIWGEKKgrsz1vdyHNMvgARakQxdZk1WA==
x-amz-request-id: XZJZDA518Z29VVVP
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:08:37 GMT
etag: W/"b32d022ca418993db063c7ad80c035b2"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:08:36 GMT
x-amz-version-id: IXnSe_M8l5La_whKQ2YTKSwzHhsOrLdv
cf-cache-status: HIT
age: 90935
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xEkbE6hP2fjphzdpB%2FVLo6cZYkEEOf%2Fj2UvBOkXd36a9z1Nxtq7Zt29qxW7utohQ%2BIgjOQPSQxk%2B1aoZyHQve8brx1L0PJvcZlnDI5WZ4iMtJ%2F8E6bokhOLKSfuKXLxAI0QvyEs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b9427ab6b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.usemessages.com/conversations-embed.js
104.17.237.204200 OK 0 B URL HTTP/2 js.usemessages.com/conversations-embed.js
IP 104.17.237.204:0
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:34 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 04:00:31 UTC
etag: W/"0ea46a2ac748da80b25a4ee054a80350"
x-amz-server-side-encryption: AES256
x-amz-version-id: 8xPU0Itz3x2c97cGNkXJfntuFL6NjR5U
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16d910967d343c8da7828222a653755e.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: 14MPoEAsGFL79FMjEGp3v3j54J5Ttjx59Ew21rmyRjkVFbtHhJQRYA==
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.11886/bundles/project.js&cfRay=78ea0a749947b51d-ARN
x-hs-target-asset: conversations-embed/static-1.11886/bundles/project.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 515
server: cloudflare
cf-ray: 7905b925693ab51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.hsappstatic.net/conversations-visitor-ui/static-1.14289/sass/visitor.css
104.17.7.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.14289/sass/visitor.css
IP 104.17.7.210:0
GET /conversations-visitor-ui/static-1.14289/sass/visitor.css HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:35 GMT
content-type: text/css
x-amz-replication-status: COMPLETED
last-modified: Thu, 19 Jan 2023 19:32:55 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 8cTUQYaMqbf6Yv8IIYst6y8hd.mcxuTh
etag: W/"3192955eca3e03437d10c02e718e1960"
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FkO28Fa9v5LSI2tyL3B1VlSlvl_05wXbgeudlFXVTx33gYJ9jY58GQ==
cf-cache-status: HIT
age: 642876
expires: Sun, 28 Jan 2024 00:48:35 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xUPjLJiBGn7oR9i473GebaUm6%2FyyyuG0mTmWdj6Ieie%2B8HawVfaHxDNfwYkzZhztfJSx%2B%2BbOzDnQ57psq85nQ5%2F0awJnuhg%2Fe9ylLN2L9sgw6V0PREKTl2xTwt7SMBQK6uiCSKWQOI0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7905b92c8a54b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hsappstatic.net/head-dlb/static-1.245/bundle.production.js
104.17.7.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/head-dlb/static-1.245/bundle.production.js
IP 104.17.7.210:0
GET /head-dlb/static-1.245/bundle.production.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:35 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Mon, 07 Nov 2022 16:12:00 GMT
etag: W/"d0d928e20b2bebe8d43d510597af50e3"
x-amz-server-side-encryption: AES256
x-amz-version-id: cXTDvGuwbPuMrVAW0W63IbeHNqDKyRYR
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S4R_IdlMnmvqWOtzIw-ci7tFaeL0xuHQK1KLCodI6dVIrQAAnYes2w==
cf-cache-status: HIT
age: 2179534
expires: Sun, 28 Jan 2024 00:48:35 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MvBAveEZr2gqCLzJH%2FgGjSpfKukp4THWIKU7W%2F2lftGDkLTDn1UfcwW8l%2FyZjwqrmk3pkBOHnE6C8xGUWtw9FvoGIEAx%2F7r1JE%2BRsWqfEs3vswjSMjj4G6tOmO5aA1HYKzLVdXXL3T4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7905b92c7b010b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ppstatic.s3.amazonaws.com/expenses/js/moment.js
52.216.40.121200 OK 0 B URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/moment.js
IP 52.216.40.121:0
GET /expenses/js/moment.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: cRPVsfpbpvubRnYClVXHyBVWNi6WjAzSdwvcd3ebMIEdw8wwMl+gqeE8UGZfouA4vnypC+K4XAo=
x-amz-request-id: 4KMHZBT98G9KFZ2Y
Date: Sat, 28 Jan 2023 00:48:38 GMT
Last-Modified: Wed, 26 Aug 2015 13:26:05 GMT
ETag: "cd9f0b2d1b3e08b28f14cbb6d75217ee"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 104409
static.zdassets.com/web_widget/latest/messenger/web-widget-1663-3789e01.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-1663-3789e01.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-1663-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:38 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: rrICUt+iJhP+O2ay9uduAcz70Wi2K33w6UcjtJD7J7xeLaq0avbZsrw4menYtWdDh15XbaEfSZk=
x-amz-request-id: XZJJMN8WDCGXH41J
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:08:38 GMT
etag: W/"49256045b2d1fa7d640add6f4ec34272"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:08:37 GMT
x-amz-version-id: HTvNzsf1jkxWPpD.YTbVv8yFV0JcCWun
cf-cache-status: HIT
age: 90935
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LGA7u7KapHVQHXzGOhFkYijXYAE16EL49yB9lgfYNpsZT5LvkISPidcZ3izQstE2KS2OqPo2e6kqzJRzCYlJpDpJ1xThVScmZRXxUpyIwxOxs17yJkASRE7jkYCvzhD6VysKoMU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b9427ab5b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.rindegastos.com/document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1
54.230.111.35200 OK 0 B URL HTTP/2 www.rindegastos.com/document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1
IP 54.230.111.35:0
GET /document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1 HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html
date: Sat, 28 Jan 2023 00:48:34 GMT
last-modified: Thu, 19 Jan 2023 14:44:29 GMT
etag: W/"b5cf190fc8260cb543467c55ae0cc6d2"
x-amz-server-side-encryption: AES256
server: AmazonS3
cache-control: public, max-age=0, s-maxage=600
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4-4xHjRfIJD2tLcNJWRxYcVYYkZCCPzQeSF-YDAEu6s6Cd77KiIjzg==
X-Firefox-Spdy: h2
www.rindegastos.com/runtime.b95b2890cfd3ed70.js
54.230.111.35200 OK 0 B URL HTTP/2 www.rindegastos.com/runtime.b95b2890cfd3ed70.js
IP 54.230.111.35:0
GET /runtime.b95b2890cfd3ed70.js HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 28 Jan 2023 00:48:27 GMT
last-modified: Thu, 19 Jan 2023 14:44:29 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cache-control: public, max-age=0, s-maxage=600
content-encoding: gzip
etag: W/"435d89e622924a1469495868771e6f13"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -W3rOzUm7WOlCkg2NUqaq-QrTL8ShgmufSFPeuPL0RLccslMwilmzw==
age: 7
X-Firefox-Spdy: h2
api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3276114
104.17.203.204200 OK 0 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3276114
IP 104.17.203.204:0
GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3276114 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:34 GMT
content-type: application/json;charset=utf-8
cf-ray: 7905b9281b52b4e8-OSL
access-control-allow-origin: https://www.rindegastos.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: df0e9b15-efe5-4839-806a-ff12983353ba
x-trace: 2BDAA45C50023D227A99BF1A484D7D9D7E6ADD91AD000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LVptLqhuEySucCRlLcdK%2F6S2eQKjCnwc3muqA40cLUEqH9uw25H3Hb73tUtogZ%2F6OuHpM4PdbIqjW4qMqpxIf1gXGk1UO%2BOLqx9w1S7DqmqxzYGy2FAazR3kgrLLS%2B0c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
forms.hubspot.com/collected-forms/v1/config/json?portalId=3276114&utk=
104.19.154.83200 OK 0 B URL HTTP/2 forms.hubspot.com/collected-forms/v1/config/json?portalId=3276114&utk=
IP 104.19.154.83:0
GET /collected-forms/v1/config/json?portalId=3276114&utk= HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:34 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: 99f6a62b-b6cf-400a-acd0-c07247a07344
access-control-allow-credentials: false
access-control-allow-origin: https://www.rindegastos.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=Iy5J5vLmRRWkevn355GlWw9uifACVGmWD9durpOS3N4-1674866914-0-AbYCYfgnUeMgoE62K3sBu5/IFO9xCm8En/pZANEWg6enbh9DhQGwCgDMbunv9d/FzISbYDo0chG9lslI5XaIzqw=; path=/; expires=Sat, 28-Jan-23 01:18:34 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RyM%2FSiu9xUEA4aU7SV3e8aUePxgBXh9RM26Bp8Cac5NBHZXxFeXGENZV%2FTsGHO4cz63K3bP8XDfwpxILbDdlUiIBhp61xGnn1Xe2xPJ6FSW6A%2BWhi7SmTOLsLBJLPrhphzHa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7905b9282ecf0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ipinfo.io/91.90.42.154?token=2037724775731b
34.117.59.81200 OK 0 B URL HTTP/2 ipinfo.io/91.90.42.154?token=2037724775731b
IP 34.117.59.81:0
GET /91.90.42.154?token=2037724775731b HTTP/1.1
Host: ipinfo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 00:48:35 GMT
x-envoy-upstream-service-time: 3
strict-transport-security: max-age=2592000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-5614-3789e01.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-5614-3789e01.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-5614-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 00:48:39 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: LVS6ufu+pWYJjmqpY0Nb+jv2f+rtxdfr+jpHW9dmoibB46TIJynmO6vbpuEeglI0haQba/w6v15fqCc9Hhc65A==
x-amz-request-id: SG7EPPFPFNTFTNQG
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:08:38 GMT
etag: W/"719f990fafee92dfdd57b3143a3b0a43"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:08:37 GMT
x-amz-version-id: gR_ml7aQQ_I1o13rUX0UHSAUm7EJcat6
cf-cache-status: HIT
age: 90934
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SMnzkaNDZ4uhtIosuuiAuvQ2LYhlNh%2BGL8hguC%2FbfwJTWboB8U6Vhmgt%2F8C1z8YCHYJpMPewyx1zf56MhvxYEpX0K8fU7S3a8jypTs%2FO%2BzWH8vf8FWXKadaONI1CJm5YXQDeRWU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7905b9441c24b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.rindegastos.com/polyfills.778d7d2ca68c77f4.js
54.230.111.35200 OK 0 B URL HTTP/2 www.rindegastos.com/polyfills.778d7d2ca68c77f4.js
IP 54.230.111.35:0
GET /polyfills.778d7d2ca68c77f4.js HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/document/expenseReport?e=2993013&k=48433-11229-62f2a4e435fb1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 28 Jan 2023 00:48:27 GMT
last-modified: Thu, 19 Jan 2023 14:44:29 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cache-control: public, max-age=0, s-maxage=600
content-encoding: gzip
etag: W/"222b0f4ec57bcb8cbd0707a57e799e86"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0N70DY6MCS3YyPetY-Fz6ctYHj9NVp6JCZZPRwEyswkj1mEM3LChxA==
age: 7
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/66325/domain/web.rindegastos.com/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/66325/domain/web.rindegastos.com/token
IP 54.230.111.112:0
GET /partner/66325/domain/web.rindegastos.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.rindegastos.com
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sat, 28 Jan 2023 00:48:31 GMT
access-control-allow-origin: *
cache-control: public, max-age=6205
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: obEB2IwZNYGLaQc71kbhZIGxQRb27XqVBnDgCyJQR_W9kQDFHkvbIA==
age: 6
X-Firefox-Spdy: h2