firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 13 Sep 2022 14:08:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bR0TColzVL_zgRlqOzjVLeHYf1sy6aph5NcFOATdIh1nH0ya6_2Tbg==
Age: 2178
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8101
Expires: Tue, 13 Sep 2022 17:00:05 GMT
Date: Tue, 13 Sep 2022 14:45:04 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 13 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZJYv7-VDRgDyzqvTN-0LxVSDtxgu_tGRwul42hubVPcXmh5vjYxIMA==
age: 36590
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:45:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
138.128.188.18200 OK 14 kB URL HTTP/1.1 viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
IP 138.128.188.18:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (337)
Hash 8756f05b595e8a2317d0e85031731b6a
8df1f5c019cee2567384764b984f50ed90f8bb6d
df63530e3c46da2f02e0969404eee5e9d5947437a5cf48fa65d362c7058ad15d
Analyzer Verdict Alert fortinet Phishing
GET /naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3 HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: MyContentUserAcess=1663080280
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:04 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=iai232dde1gcvrd9v4bgq9noq3; path=/
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 13 Sep 2022 14:03:22 GMT
Cache-Control: max-age=3600
Expires: Tue, 13 Sep 2022 14:06:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ar0VJHC0cT0AjvBInp5OFlfnwLvojh6DGPNQSLSq7jaHQAmi37kidg==
Age: 2503
viabrasilaventura.com.br/js-plugin/magnific-popup/magnific-popup.css
138.128.188.18200 OK 8.4 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/magnific-popup/magnific-popup.css
IP 138.128.188.18:0
Hash 033817749c00e7cdf789de6328148f7f
21c39b85a7184f0033a65edba67a9166dc23f7f1
3be08f001a84d8a374195713ca80ccab1a57ba1cc218477601b1680032ebf3c2
GET /js-plugin/magnific-popup/magnific-popup.css HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:58:44 GMT
Accept-Ranges: bytes
Content-Length: 8363
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
viabrasilaventura.com.br/js-plugin/owl.carousel/owl-carousel/owl.carousel.css
138.128.188.18200 OK 5.6 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/owl.carousel/owl-carousel/owl.carousel.css
IP 138.128.188.18:0
Hash ee29144cd108f33e2bf0df85c59e562b
3e2c1355fe16c9a4f22bad83b0e22b6334c0e9b2
a9796e03216e0594bbe7fae0f0f68ff45ead76fd09c874f90730e318d5e5a464
GET /js-plugin/owl.carousel/owl-carousel/owl.carousel.css HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 28 Jul 2014 00:01:49 GMT
Accept-Ranges: bytes
Content-Length: 5600
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
viabrasilaventura.com.br/js-plugin/ytplayer/YTPlayer.css
138.128.188.18200 OK 9.2 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/ytplayer/YTPlayer.css
IP 138.128.188.18:0
File type Unicode text, UTF-8 text, with very long lines (5002)
Hash 085b8ac1eae7324c797019cbd5af9faa
b17ddf2dabc38a0fdd244fc1678a0c684188b311
8d6ffad717b67e903d4a17219baad971337a290ae8839d839691080c46d085ad
GET /js-plugin/ytplayer/YTPlayer.css HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 28 Jul 2014 00:06:19 GMT
Accept-Ranges: bytes
Content-Length: 9229
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
viabrasilaventura.com.br/js-plugin/owl.carousel/owl-carousel/owl.theme.css
138.128.188.18200 OK 1.7 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/owl.carousel/owl-carousel/owl.theme.css
IP 138.128.188.18:0
Hash 9bef12e6fb62923e3ef6b7c6621c6cdc
6ed54b76c0c463822dc60a835e4ebd59121003cc
e530e9b5ebcc982bacc081c15a0a9d98e8b4a77a1b818ad41df52ddb191aa433
GET /js-plugin/owl.carousel/owl-carousel/owl.theme.css HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 28 Jul 2014 00:02:11 GMT
Accept-Ranges: bytes
Content-Length: 1664
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e96dbe1b54932c8f447bbbfc9d31cfb0
b15d4a54fbdf95b0af8bd34b6f8ef03055eef0cd
427326963ac1ef6ddeeaf52ab07807c694b82effa6111671ada8270b1faecdae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4175
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:45:05 GMT
Last-Modified: Tue, 13 Sep 2022 13:35:30 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
viabrasilaventura.com.br/bootstrap/css/bootstrap.min.css
138.128.188.18200 OK 97 kB URL HTTP/1.1 viabrasilaventura.com.br/bootstrap/css/bootstrap.min.css
IP 138.128.188.18:0
File type ASCII text, with very long lines (65316)
Hash 4eadbf7d1721bb2729e398595bc7f0bc
cde1a9a9098238450afb8fccfce94c22fa2743e3
1cbda21998b65e08a7e936114cabd7f7783d0f590dd6efdd58c7faa8b6e7b9aa
GET /bootstrap/css/bootstrap.min.css HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 28 Jul 2014 00:01:05 GMT
Accept-Ranges: bytes
Content-Length: 97339
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
viabrasilaventura.com.br/js-plugin/appear/nekoAnim.css
138.128.188.18200 OK 15 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/appear/nekoAnim.css
IP 138.128.188.18:0
File type ASCII text, with very long lines (469)
Hash 34f20d7f0a50022fd3791755908c8aab
cb127d1d030b980ec072febb1d875bbeb8fa612b
466db7cc84062c6d0a8fea0d1cefbc1d9783a3e59e33c4d60f52615c64c7e266
GET /js-plugin/appear/nekoAnim.css HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:56:03 GMT
Accept-Ranges: bytes
Content-Length: 15312
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
viabrasilaventura.com.br/css/custom.css
138.128.188.18200 OK 30 B URL HTTP/1.1 viabrasilaventura.com.br/css/custom.css
IP 138.128.188.18:0
File type ASCII text, with no line terminators
Hash ce6b9cd4f9ea18bc3afba771903f7189
59462b393f0f1bd250a22441dca28256e977a1b9
85e7426c35e8cd67780ca8492e8c8ddbc4a2d6987d21635fd7d7633b61b4dfef
GET /css/custom.css HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:55:27 GMT
Accept-Ranges: bytes
Content-Length: 30
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
viabrasilaventura.com.br/font-icons/custom-icons/css/custom-icons.css
138.128.188.18200 OK 23 kB URL HTTP/1.1 viabrasilaventura.com.br/font-icons/custom-icons/css/custom-icons.css
IP 138.128.188.18:0
Hash b5c87cc001ea5f5248f43af02a8077b7
7bc563ebfa890dff7636211f95b70e7da0222aec
699dd962d7056edc749be5ca076ec649f69c905b870f70310c472d7dd471968e
GET /font-icons/custom-icons/css/custom-icons.css HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:55:36 GMT
Accept-Ranges: bytes
Content-Length: 22820
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
viabrasilaventura.com.br/css/green.css
138.128.188.18200 OK 19 kB URL HTTP/1.1 viabrasilaventura.com.br/css/green.css
IP 138.128.188.18:0
Hash 5a2dcae55972e71e90eecd94b33688e9
337678aff06934b0da49044a07cab4314cd7aaeb
6d4fb1b847d4066d6f448c097844456247afbc7c5c239efdb57ece20825f9cb9
GET /css/green.css HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:55:41 GMT
Accept-Ranges: bytes
Content-Length: 18892
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
viabrasilaventura.com.br/js-plugin/magnific-popup/jquery.magnific-popup.min.js
138.128.188.18200 OK 21 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/magnific-popup/jquery.magnific-popup.min.js
IP 138.128.188.18:0
File type ASCII text, with very long lines (20619)
Hash 59e1748e3aca465f9acafa3c0b154864
beee2aa1fe1e8dabe90209071f0eb3857afae471
2d914f96945b4d9d24d4de3e844e77652d4692c671db265d4cc726ee90570ac8
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/magnific-popup/jquery.magnific-popup.min.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:58:44 GMT
Accept-Ranges: bytes
Content-Length: 20748
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/font-icons/custom-icons/css/custom-icons-ie7.css
138.128.188.18200 OK 41 kB URL HTTP/1.1 viabrasilaventura.com.br/font-icons/custom-icons/css/custom-icons-ie7.css
IP 138.128.188.18:0
Hash 252356409dc0b9aff0d887cc3b3bba75
6ce5d2ed5042b31beaf288c2dde722e5062b70ac
efda081dd9b7e48f57fcc7507a9c00ef6c88c9819dd5800e46a27bc636dc1983
GET /font-icons/custom-icons/css/custom-icons-ie7.css HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:55:31 GMT
Accept-Ranges: bytes
Content-Length: 40707
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
viabrasilaventura.com.br/js/modernizr-2.6.1.min.js
138.128.188.18200 OK 15 kB URL HTTP/1.1 viabrasilaventura.com.br/js/modernizr-2.6.1.min.js
IP 138.128.188.18:0
File type HTML document, ASCII text, with very long lines (14709)
Hash cf69c6f2c78375458ada961b78c76005
7a33327d4f193071e46b0ca1112b6594f06d9f90
3686b31cf162bf2f40544822f426317f0ddb0e57c4b9179da9c7bf74930a8312
Analyzer Verdict Alert fortinet Phishing
GET /js/modernizr-2.6.1.min.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:55:47 GMT
Accept-Ranges: bytes
Content-Length: 15367
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/css/layout.css
138.128.188.18200 OK 45 kB URL HTTP/1.1 viabrasilaventura.com.br/css/layout.css
IP 138.128.188.18:0
File type ASCII text, with very long lines (541)
Hash 4fc75dfbb9f31c0ec36c21cd8b3f09ad
eb87a739ce835dae817f6738d0ec3e11996ea7bd
e2319c05e0f3fd01519642f1f2dbdf45d3f8b765ccf742f91ac6af2ccbcc10e2
GET /css/layout.css HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:55:42 GMT
Accept-Ranges: bytes
Content-Length: 45292
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
viabrasilaventura.com.br/js-plugin/respond/respond.min.js
138.128.188.18200 OK 4.1 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/respond/respond.min.js
IP 138.128.188.18:0
File type HTML document, ASCII text, with very long lines (3214)
Hash ff4676c49703a66df7a5ff8dfe5aa444
be854f0f7076498e822f45c818ca3c3218e3377c
1574a5440e7861871b0b812a856bcb638039e6fd6fe0e362d5193694730965ff
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/respond/respond.min.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 28 Jul 2014 00:02:44 GMT
Accept-Ranges: bytes
Content-Length: 4069
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
44.237.51.86101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.51.86:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qyc2wjQOtrtFgZb7X9QRUg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: i0htrAuUqe9WNb6588Bk0VMdycQ=
viabrasilaventura.com.br/js-plugin/jquery-ui/jquery-ui-1.8.23.custom.min.js
138.128.188.18200 OK 16 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/jquery-ui/jquery-ui-1.8.23.custom.min.js
IP 138.128.188.18:0
File type ASCII text, with very long lines (7888)
Hash 9db00d6da2e770eb3707e7f548315fca
a80c0856091f109f655e2c1cc5a061ab3e2ab39b
7a161d68bca6b6c61764b4170e26fc0b8d3a146b69ef10742a5af96e17a50c06
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/jquery-ui/jquery-ui-1.8.23.custom.min.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:58:29 GMT
Accept-Ranges: bytes
Content-Length: 15546
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/js-plugin/easing/jquery.easing.1.3.js
138.128.188.18200 OK 8.1 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/easing/jquery.easing.1.3.js
IP 138.128.188.18:0
Hash 5c6c5e09019e3d618ba46b5161ee53e9
b20fa51658e6369e3e660d3abca3c4b236f36a87
e904636fdd5282609226d050bbf5f7e260ba57b074b6734747ea9000687de3bf
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/easing/jquery.easing.1.3.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:57:47 GMT
Accept-Ranges: bytes
Content-Length: 8103
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/js-plugin/owl.carousel/owl-carousel/owl.carousel.min.js
138.128.188.18200 OK 13 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/owl.carousel/owl-carousel/owl.carousel.min.js
IP 138.128.188.18:0
File type ASCII text, with very long lines (12907)
Hash accdf585e04d29f81ccab3d0ab6c2d26
ccbf5c597af732ad6bca9eb9e352db83579ace03
c1886890021c6005aa7603c3382619c6ccacd974608d83fc02a69059777b789b
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/owl.carousel/owl-carousel/owl.carousel.min.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 28 Jul 2014 00:02:04 GMT
Accept-Ranges: bytes
Content-Length: 13060
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/js-plugin/isotope/jquery.isotope.min.js
138.128.188.18200 OK 16 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/isotope/jquery.isotope.min.js
IP 138.128.188.18:0
File type HTML document, ASCII text, with very long lines (15714)
Hash 5688d1082463d6c3ebe40d4c8b32f1db
4e3ba0443b4bfe19a32653c8f6173b48de75f77a
98d6427651f10db6f71e5f7ee348dbf2718fc7079e9db54bc40846e41643dc6c
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/isotope/jquery.isotope.min.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:58:13 GMT
Accept-Ranges: bytes
Content-Length: 16033
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/js-plugin/jquery/jquery-1.10.2.min.js
138.128.188.18200 OK 93 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/jquery/jquery-1.10.2.min.js
IP 138.128.188.18:0
File type ASCII text, with very long lines (32072)
Hash 628072e7212db1e8cdacb22b21752cda
0511abe9863c2ea7084efa7e24d1d86c5b3974f1
0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/jquery/jquery-1.10.2.min.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:58:18 GMT
Accept-Ranges: bytes
Content-Length: 93107
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/bootstrap/js/bootstrap.js
138.128.188.18200 OK 58 kB URL HTTP/1.1 viabrasilaventura.com.br/bootstrap/js/bootstrap.js
IP 138.128.188.18:0
Hash f6d4b8f4395f4353b52c85de06ea32a0
7cb9fd37e8ee2e8e072cb3c9db16e0f62d5ba356
82bc7061bbfb787e294fad29226ea9f9d77ba52c3cf77025988c2fe73d4d6df5
Analyzer Verdict Alert fortinet Phishing
GET /bootstrap/js/bootstrap.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 28 Jul 2014 00:01:40 GMT
Accept-Ranges: bytes
Content-Length: 58470
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/js-plugin/jquery.sharrre-1.3.4/jquery.sharrre-1.3.4.min.js
138.128.188.18200 OK 10 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/jquery.sharrre-1.3.4/jquery.sharrre-1.3.4.min.js
IP 138.128.188.18:0
File type ASCII text, with very long lines (10078), with CRLF line terminators
Hash b3dfa9d2c948dc368b5755c87cddd868
2228973694de0766680c7a6e4f40bac37029887f
4134ec209787953cbc3a1f2748626b49efd9cb78e596a4b97f212ab25cc5054f
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/jquery.sharrre-1.3.4/jquery.sharrre-1.3.4.min.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:58:37 GMT
Accept-Ranges: bytes
Content-Length: 10308
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/js-plugin/neko-contact-ajax-plugin/js/jquery.validate.min.js
138.128.188.18200 OK 22 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/neko-contact-ajax-plugin/js/jquery.validate.min.js
IP 138.128.188.18:0
File type Unicode text, UTF-8 text, with very long lines (21334), with CRLF line terminators
Hash 2f5746364e3ec572116550a63df36f92
4740e3f1da602d0c25ee3b423f9a882219f861df
7649d55e6b1b98bc0dc1023ffa14975e7a48c7d1d2a00b9cfffd3668a0f9191e
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/neko-contact-ajax-plugin/js/jquery.validate.min.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:59:09 GMT
Accept-Ranges: bytes
Content-Length: 21496
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/js-plugin/parallax/js/jquery.stellar.min.js
138.128.188.18200 OK 13 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/parallax/js/jquery.stellar.min.js
IP 138.128.188.18:0
File type ASCII text, with very long lines (12492)
Hash 1ce4ee7bb291b3d53147982ce64863fa
879b8992978c5f1edd55e0a580d931a7227bf7c6
690e8a1832a4ef0f1740d66c41a4276df782fff5cf508a614a9fd7fd9130b55d
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/parallax/js/jquery.stellar.min.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 28 Jul 2014 00:02:35 GMT
Accept-Ranges: bytes
Content-Length: 12636
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/js-plugin/ytplayer/jquery.mb.YTPlayer_modifed.js
138.128.188.18200 OK 38 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/ytplayer/jquery.mb.YTPlayer_modifed.js
IP 138.128.188.18:0
File type Unicode text, UTF-8 text, with very long lines (1987), with CRLF line terminators
Hash 38c7176e13c41beaa7ffa39d9cfb8f76
373f5ff6475b1606d1c2cd4ebc7397c3f7d51845
b58c9bd7c8969305111966ae4cd4f3813003ec068e85cae9db939228d570e4e3
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/ytplayer/jquery.mb.YTPlayer_modifed.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 28 Jul 2014 00:06:19 GMT
Accept-Ranges: bytes
Content-Length: 37491
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/js-plugin/appear/jquery.appear.js
138.128.188.18200 OK 4.4 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/appear/jquery.appear.js
IP 138.128.188.18:0
File type ASCII text, with CRLF line terminators
Hash 39ecc1a1295c56092991dface741e1e1
8250a540b8ac6f7c504858ab71c2ae23e6cd74fa
c19b0f2361c60f7d6f17e19d83f35f52858cfe756eb094cb9b1ed29f80a87871
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/appear/jquery.appear.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:56:01 GMT
Accept-Ranges: bytes
Content-Length: 4351
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/js-plugin/neko-contact-ajax-plugin/js/jquery.form.js
138.128.188.18200 OK 45 kB URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/neko-contact-ajax-plugin/js/jquery.form.js
IP 138.128.188.18:0
File type ASCII text, with CRLF line terminators
Hash 429d694e2ba8893bd2232c82f01a7428
9e693a73858fe86c9cba9b466e1cd97fe6a39409
c9c4ea8698ca4e723c0b9d8c478ec5b2e9a68f090f067ee171b0263dcd09c0fb
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/neko-contact-ajax-plugin/js/jquery.form.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:59:06 GMT
Accept-Ranges: bytes
Content-Length: 45038
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/js-plugin/toucheeffect/toucheffects.js
138.128.188.18200 OK 441 B URL HTTP/1.1 viabrasilaventura.com.br/js-plugin/toucheeffect/toucheffects.js
IP 138.128.188.18:0
File type ASCII text, with CRLF line terminators
Hash 53377352399abaebda6fbbca67b541a6
66891d3cc6021d03377aef15db04d8b5c927679d
32babc1b97d130036545fec285ac8483e80df0ed8a94358c26a45c72b5874b94
Analyzer Verdict Alert fortinet Phishing
GET /js-plugin/toucheeffect/toucheffects.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 28 Jul 2014 00:06:18 GMT
Accept-Ranges: bytes
Content-Length: 441
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/images/main-logo.png
138.128.188.18200 OK 25 kB URL HTTP/1.1 viabrasilaventura.com.br/images/main-logo.png
IP 138.128.188.18:0
File type PNG image data, 100 x 68, 8-bit/color RGBA, non-interlaced\012- data
Hash 4b1069f47d58fbb3faaaf4a3f219cc5f
1678194e16e9d9e0c24cdfb6642461d59eafa5e4
683831e17129afd3fdd15ad8dbfde2f3ca12e7d5eb3698b53d4d46a07cb17cea
GET /images/main-logo.png HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:56:59 GMT
Accept-Ranges: bytes
Content-Length: 25330
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
viabrasilaventura.com.br/js/custom.js
138.128.188.18200 OK 43 kB URL HTTP/1.1 viabrasilaventura.com.br/js/custom.js
IP 138.128.188.18:0
Hash bf8014d58ccf675d8c68cbae818a3281
d15654fecd6af6bac30962cb60217b614c8f429b
78392416b9f137219a39d57dc9aace0e427b3edf41e4be77a1831e78520ece8e
Analyzer Verdict Alert fortinet Phishing
GET /js/custom.js HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:55:46 GMT
Accept-Ranges: bytes
Content-Length: 43336
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
viabrasilaventura.com.br/images/logo-big.png
138.128.188.18200 OK 28 kB URL HTTP/1.1 viabrasilaventura.com.br/images/logo-big.png
IP 138.128.188.18:0
File type PNG image data, 300 x 68, 8-bit/color RGBA, non-interlaced\012- data
Hash 62881b40e11414c3d6bbbfb22887b2a1
2a87ba4594466c1299b9a4a3107099e4c4c16cfd
a2ad8e4c7889794049ed6ffe93a058986f88751734ce0829b7ab38c3f2534e4b
GET /images/logo-big.png HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:56:50 GMT
Accept-Ranges: bytes
Content-Length: 27508
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
viabrasilaventura.com.br/font-icons/custom-icons/font/custom-icons.woff?71446960
138.128.188.18200 OK 66 kB URL HTTP/1.1 viabrasilaventura.com.br/font-icons/custom-icons/font/custom-icons.woff?71446960
IP 138.128.188.18:0
File type Web Open Font Format, TrueType, length 66376, version 1.0\012- data
Hash 6c5699140ee8e10893021615a26d7d8d
1b1bd698b5de0be760d5d1defda8046866c204bb
36b9371a4895fe0487a06a1da22ca104e65d25583193755e924b6b643ebace05
GET /font-icons/custom-icons/font/custom-icons.woff?71446960 HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/font-icons/custom-icons/css/custom-icons.css
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sun, 27 Jul 2014 23:55:42 GMT
Accept-Ranges: bytes
Content-Length: 66376
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 167378beef2e1b0dafefbdc6210752c2
afbdff67a5647b04de65499da7d2d00cc21eb808
1dfe3c3aa34673799955912c86f82ccf81a1110cd82058241e2e85fb84e5caa7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5341
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:45:06 GMT
Last-Modified: Tue, 13 Sep 2022 13:16:05 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/pt_BR/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/pt_BR/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash 2155380c2aaa05518a1a4c959c0a3bac
33374b0e89cddb61fbe96c83990c03d286e01425
f0e6089461e5397c9ce2a44e4a9bc4c98381e0d42786ff1092cbf4dfadee6e62
GET /pt_BR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ae6f4c4e74dc3e2e846f48cf1b94bbfa
etag: "24f6d17bad17a8ca1ed38a98b13825c5"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 13 Sep 2022 14:55:10 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: IVU4DCqqBVGKGkyVnAo7rA==
x-fb-debug: jpOdSqFsGocvE5GydkBGjkutcxO0wWnIGmc00QurmAYK6mooWev04EYPdE6pOPkkhOZElVbjNLYnwJw+C3bgrg==
content-length: 1687
x-fb-trip-id: 1679558926
date: Tue, 13 Sep 2022 14:45:06 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 167378beef2e1b0dafefbdc6210752c2
afbdff67a5647b04de65499da7d2d00cc21eb808
1dfe3c3aa34673799955912c86f82ccf81a1110cd82058241e2e85fb84e5caa7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5341
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:45:06 GMT
Last-Modified: Tue, 13 Sep 2022 13:16:05 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
viabrasilaventura.com.br/images/apple-touch-icon-144x144.png
138.128.188.18200 OK 15 kB URL HTTP/1.1 viabrasilaventura.com.br/images/apple-touch-icon-144x144.png
IP 138.128.188.18:0
File type PNG image data, 144 x 144, 8-bit/color RGB, non-interlaced\012- data
Hash 737f74eaf12caf465146bb83a632f172
99ff96f6ccdbaefdc77c157e73687fb50a7c508a
2738b3d187d6043ab08947b96835ead99c1853c3e389c05e728e3c6fb9f275ae
GET /images/apple-touch-icon-144x144.png HTTP/1.1
Host: viabrasilaventura.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/naic.inr/5/login.php?session_id=1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3
Cookie: MyContentUserAcess=1663080280; PHPSESSID=iai232dde1gcvrd9v4bgq9noq3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:45:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 17 Mar 2020 16:54:40 GMT
Accept-Ranges: bytes
Content-Length: 15141
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
connect.facebook.net/pt_BR/sdk.js?hash=3e308f258a9b1299c98482f26bd1a870
157.240.200.14200 OK 88 kB URL HTTP/2 connect.facebook.net/pt_BR/sdk.js?hash=3e308f258a9b1299c98482f26bd1a870
IP 157.240.200.14:0
File type ASCII text, with very long lines (18460)
Hash ffb5fe8ac49071779d07729186d7e869
70c0672b5dc9fdd493de7f342cdc60bc343ee983
57e7e0000a6f791ca4d8f9e7633b95e74d0f3d3f5517e1e5d3e937858e2f317c
GET /pt_BR/sdk.js?hash=3e308f258a9b1299c98482f26bd1a870 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://viabrasilaventura.com.br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 6283acae96554345a5fced48982b01f3
etag: "e326dd151a7a9303c379dbdc1f8c714e"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 13 Sep 2023 10:48:20 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: /7X+isSQcXedB3KRhtfoaQ==
x-fb-debug: 9i7Jij48qkWMqc+T/FQf0pG0GzkAkQB8LipONKTAnxlyUnvfmXov1BD7bSHRAN+MviAgxaCVs7dYno5SzoAhOg==
content-length: 88027
x-fb-trip-id: 1679558926
date: Tue, 13 Sep 2022 14:45:06 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c79a6d9219e52788c0288a4288601f0b
a55c74c35279d08872bb4b0805d3f8ff684bc322
345482ec25a567e189a52a824fa13f6bbcfa8ce636c40f3619232b9cff65fa6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:45:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
142.250.74.40200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.40:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Tue, 13 Sep 2022 14:29:20 GMT
expires: Tue, 13 Sep 2022 16:29:20 GMT
cache-control: public, max-age=7200
age: 946
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1354956991&utmhn=viabrasilaventura.com.br&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=NAIC.INR%20VIA%20BRASIL%20AVENTURA&utmhid=1054445602&utmr=-&utmp=%2Fnaic.inr%2F5%2Flogin.php%3Fsession_id%3D1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3&utmht=1663080293897&utmac=XXX&utmcc=__utma%3D178907811.1950745291.1663080294.1663080294.1663080294.1%3B%2B__utmz%3D178907811.1663080294.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=90114654&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.40200 OK 35 B URL HTTP/2 ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1354956991&utmhn=viabrasilaventura.com.br&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=NAIC.INR%20VIA%20BRASIL%20AVENTURA&utmhid=1054445602&utmr=-&utmp=%2Fnaic.inr%2F5%2Flogin.php%3Fsession_id%3D1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3&utmht=1663080293897&utmac=XXX&utmcc=__utma%3D178907811.1950745291.1663080294.1663080294.1663080294.1%3B%2B__utmz%3D178907811.1663080294.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=90114654&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.40:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1354956991&utmhn=viabrasilaventura.com.br&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=NAIC.INR%20VIA%20BRASIL%20AVENTURA&utmhid=1054445602&utmr=-&utmp=%2Fnaic.inr%2F5%2Flogin.php%3Fsession_id%3D1Sm259gYzJD1UbdykBbBJVefT4SJv4ZwXlz2vP15yF6tRk1bWcNF71V15NLASK7P6GSBwUG5zNzq7AC3&utmht=1663080293897&utmac=XXX&utmcc=__utma%3D178907811.1950745291.1663080294.1663080294.1663080294.1%3B%2B__utmz%3D178907811.1663080294.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=90114654&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Tue, 13 Sep 2022 14:45:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ec7a5bb8e310f5c9c992cf85832d5445
e32b8e200a79da9008985e8e6c272f35b02581c5
6391e4c68631e272509ade559b8f568b03dd88be1956906332ae584f9faee00a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:45:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.xx.fbcdn.net/rsrc.php/v3/yy/l/0,cross/UxJ_cEivjiG.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yy/l/0,cross/UxJ_cEivjiG.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4093)
Hash 4b7e35ed990f9f36e017e2e76a14f8be
659c0d7c07233328578a8afd883554d286133fa4
7ca535cb6106cba697fcdb2c6d7885b4c32d188e0ddd9a45459fd7971d5c84a1
GET /rsrc.php/v3/yy/l/0,cross/UxJ_cEivjiG.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 12 Sep 2023 17:27:03 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: S3417ZkPnzbgF+LnahT4vg==
x-fb-debug: Cz7hhzRmJQSw0yIiFl9aWh6xI9DU2h0NkDE9fRnuukpMPv/UHIeOTfqG2Ev3MEsecG1Axy58975YtT3hrPLIqQ==
content-length: 5358
x-fb-trip-id: 1679558926
date: Tue, 13 Sep 2022 14:45:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8165
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:45:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8165
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:45:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8165
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:45:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb9bab12-4fd5-4be7-b453-25dfb0d4c606.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb9bab12-4fd5-4be7-b453-25dfb0d4c606.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c824a7db30839607b01c7a164f6f6ec
bbab791971056750a46dd6ed9c5d7c8e12ab457e
872262a28a383a9eafd1f453014a3edfde4872160b772874271be6358a47449f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb9bab12-4fd5-4be7-b453-25dfb0d4c606.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9606
x-amzn-requestid: bf72ce8c-1272-42df-8958-d392210106c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIR7NFh2oAMFXIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631996ad-4646091a428db21e2dce1a61;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:15:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4skZVE5BinFMAJV196j5-qtDez6m26DtU8NZvU6K2VuhFnC7E1zXWw==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:56:19 GMT
age: 60528
etag: "bbab791971056750a46dd6ed9c5d7c8e12ab457e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9ab2ec10c79b91d15edb1d1e3dc763c
744fee4a0baa22ba3aa352d60620a916972b47dd
f7bb66f5bb572d73f936fc74823f51ede1f2c4e309a939b39d9529ff8f757fbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9945
x-amzn-requestid: a347749f-a63a-4533-a274-7151b9f235ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXcX8HAKoAMF5EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa765-56cff18515b2a5b3397231df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:40:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lZ3FmD1gM8YBgZNt97kuYSol1kj0GQqRjyLT_7715VtH9GR1WpMDxA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:20 GMT
age: 61367
etag: "744fee4a0baa22ba3aa352d60620a916972b47dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 838f709437b2dfbede4ee15307afe217
2ab2ee20e720b78be6deb55f967ac0d8b7dad048
a3b47ce595b475f2aab6f7378888d15ba3e98453d6c8a3d88946efc5d65eedba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10849
x-amzn-requestid: 722d8d75-0911-4b59-af65-2b408bc09d80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbx6E9-oAMFT8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa672-74ea9343619d4a1865e34818;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4rpwcrZLDlgcwBtH7wpoHMOb8hhFbKbZSQpjWqUqbt_Sl4ud3dm9Vg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:18 GMT
age: 61369
etag: "2ab2ee20e720b78be6deb55f967ac0d8b7dad048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae7d16fad4da4300a1953a916fb59688
488c58f73c81bb4d45e496c458fe3197a0884c26
4d4946932d53caad6e97bcc66527bd9cad658c0cf6f4215d01943b8a9e832959
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7720
x-amzn-requestid: 7670a969-cb9c-4583-8455-10f7512ee9c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YT9YJG__oAMF4YA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e429a-674ef5a4727826ab0d60529e;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 20:18:34 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OOCryyfLht-3ebVn-5aWtQI_JnVkWxMGggv07cUoomDlgb5ogru7vg==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:01:55 GMT
age: 60192
etag: "488c58f73c81bb4d45e496c458fe3197a0884c26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d97e56f75165efcc71ae54952ded405
28d47359e70789115b2954b6c94711bb783b3c8c
564eac2ae99724e5f43aa1ae0afe4dec03697f888f51774e70e1b9c273c2d9d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8764
x-amzn-requestid: 48f44e2c-3d91-46cf-8701-3c5028e0a86d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE-gLG4_oAMFn-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63184467-46abfc77601bd90f39a2c840;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:12:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tE5GZDktiELwfFRC_IEAqoat6cN7vb_TA17d-zRO6saTLEGRqB94Pw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:01:47 GMT
age: 60200
etag: "28d47359e70789115b2954b6c94711bb783b3c8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6174529fff57758e958da5432344962f
05ec2076b32398d60ee77fab8c14345bc7dfe647
65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: -SwaUjMInlOaGpH6yK1W1a57QCQMgY-l43RdUfKVtZA1zJzMrLzC6g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 04:49:30 GMT
age: 35737
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.facebook.com/v2.0/plugins/like_box.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfddce358cb2326%26domain%3Dviabrasilaventura.com.br%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fviabrasilaventura.com.br%252Fff86a7d35861b%26relation%3Dparent.parent&color_scheme=light&container_width=263&header=false&href=https%3A%2F%2Fwww.facebook.com%2FViaBrasilAventuraVBA&locale=pt_BR&sdk=joey&show_border=false&show_faces=true&stream=false&width=300
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/v2.0/plugins/like_box.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfddce358cb2326%26domain%3Dviabrasilaventura.com.br%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fviabrasilaventura.com.br%252Fff86a7d35861b%26relation%3Dparent.parent&color_scheme=light&container_width=263&header=false&href=https%3A%2F%2Fwww.facebook.com%2FViaBrasilAventuraVBA&locale=pt_BR&sdk=joey&show_border=false&show_faces=true&stream=false&width=300
IP 157.240.200.35:0
GET /v2.0/plugins/like_box.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfddce358cb2326%26domain%3Dviabrasilaventura.com.br%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fviabrasilaventura.com.br%252Fff86a7d35861b%26relation%3Dparent.parent&color_scheme=light&container_width=263&header=false&href=https%3A%2F%2Fwww.facebook.com%2FViaBrasilAventuraVBA&locale=pt_BR&sdk=joey&show_border=false&show_faces=true&stream=false&width=300 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://viabrasilaventura.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: scYKPx01dCYe+APTJmfSAw2npvT9BpVDD2pmpA/R1td5MNdo/70VAtQ6ISr8bD39CFixRtMyXEHUDIc08AcTiQ==
date: Tue, 13 Sep 2022 14:45:06 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2