Overview

URL engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
IP82.180.159.105
ASN
Location Germany
Report completed2022-09-17 13:38:34 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-17 2 engenhariadeprojetos.com.br/wp-content/plugins/instagram-feed/css/sbi-style (...) Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-includes/css/dist/block-library/style.min.cs (...) Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-content/plugins/contact-form-7/includes/css/ (...) Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-content/plugins/search-filter/style.css?ver=1 Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-content/themes/4up/files/css/style.css?ver= Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-content/plugins/heateor-social-comments/css/ (...) Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-content/themes/4up/files/js/bootstrap.min.js (...) Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-content/plugins/contact-form-7/includes/js/i (...) Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-includes/js/dist/vendor/regenerator-runtime. (...) Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-content/plugins/contact-form-7/modules/recap (...) Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-content/plugins/revslider/public/assets/css/ (...) Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?v (...) Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-content/plugins/wp-whatsapp-chat/build/front (...) Phishing
2022-09-17 2 engenhariadeprojetos.com.br/wp-content/plugins/revslider/public/assets/js/r (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (24)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.googletagmanager.com (2) 75 2012-12-25 14:52:06 UTC 2022-09-17 04:53:05 UTC 142.250.74.72
mnemonic passive DNS cdn-images.mailchimp.com (1) 5284 2013-08-01 03:40:12 UTC 2022-09-17 05:18:56 UTC 54.230.217.92
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-17 08:08:43 UTC 142.250.74.10
mnemonic passive DNS fonts.gstatic.com (3) 0 2014-08-29 13:43:22 UTC 2022-09-17 04:50:23 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS www.gstatic.com (4) 0 2016-07-26 09:37:06 UTC 2022-09-17 04:54:18 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-17 04:54:02 UTC 34.117.237.239
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-17 04:50:44 UTC 34.120.237.76
mnemonic passive DNS cdnjs.cloudflare.com (4) 235 2020-10-20 10:17:36 UTC 2022-09-17 07:18:33 UTC 104.17.24.14
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-17 08:31:42 UTC 142.250.74.174
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-17 04:50:33 UTC 23.36.76.226
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-17 05:33:00 UTC 216.239.32.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-17 05:57:39 UTC 35.155.157.101
mnemonic passive DNS ocsp.pki.goog (18) 175 2017-06-14 07:23:31 UTC 2022-09-17 04:50:28 UTC 142.250.74.3
mnemonic passive DNS use.fontawesome.com (3) 942 2017-01-30 04:43:25 UTC 2022-09-17 04:51:51 UTC 104.21.63.54
mnemonic passive DNS translate.googleapis.com (1) 1005 2014-07-21 13:19:59 UTC 2022-09-17 08:02:14 UTC 142.250.74.74
mnemonic passive DNS chimpstatic.com (1) 4832 2017-04-24 07:02:55 UTC 2022-09-17 05:17:01 UTC 96.6.17.210
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-17 08:11:16 UTC 143.204.55.115
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-17 06:12:04 UTC 143.204.55.35
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-17 08:47:22 UTC 93.184.220.29
mnemonic passive DNS googleads.g.doubleclick.net (4) 42 2021-02-20 15:43:32 UTC 2022-09-17 09:29:17 UTC 216.58.207.194
mnemonic passive DNS www.google.no (4) 25607 2016-04-05 19:50:59 UTC 2022-09-17 05:33:00 UTC 142.250.74.3
mnemonic passive DNS translate.google.com (1) 1156 2012-05-30 01:30:32 UTC 2022-09-17 07:15:57 UTC 142.250.74.46
mnemonic passive DNS engenhariadeprojetos.com.br (33) 0 2017-05-04 15:33:08 UTC 2022-09-17 09:25:35 UTC 82.180.159.105 Unknown ranking
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-17 04:50:22 UTC 142.250.74.164


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 82.180.159.105

Date UQ / IDS / BL URL IP
2022-09-17 14:25:22 +0000
0 - 0 - 16 engenhariadeprojetos.com.br/dan/auth.php?KCYr (...) 82.180.159.105
2022-09-17 14:19:29 +0000
0 - 0 - 16 engenhariadeprojetos.com.br/dan/auth.php?md=y (...) 82.180.159.105
2022-09-17 13:58:32 +0000
0 - 0 - 13 engenhariadeprojetos.com.br/dan/auth.php?md=k (...) 82.180.159.105
2022-09-17 13:48:27 +0000
0 - 0 - 16 engenhariadeprojetos.com.br/dan/auth.php?md=r (...) 82.180.159.105
2022-09-17 13:38:34 +0000
0 - 0 - 15 engenhariadeprojetos.com.br/dan/auth.php?md=S (...) 82.180.159.105

Last 5 reports on ASN:

Date UQ / IDS / BL URL IP
2022-11-28 22:09:24 +0000
0 - 0 - 2 176.65.137.5/zero.sh 176.65.137.5
2022-11-28 21:56:35 +0000
0 - 0 - 8 the-best-cams.life/?u=bt1k60t&o=xqt63qn&t=cid (...) 194.87.208.16
2022-11-28 21:49:31 +0000
1 - 0 - 6 ing-info.kind-margulis.185-237-15-232.plesk.p (...) 185.237.15.232
2022-11-28 21:46:21 +0000
0 - 0 - 1 flow.just4melifestyle.com/ga/click/2-40471114 (...) 194.34.232.5
2022-11-28 21:31:26 +0000
0 - 0 - 0 us06web.zoom.us/u/kfVHFXjvh 170.114.52.6

Last 5 reports on domain: engenhariadeprojetos.com.br

Date UQ / IDS / BL URL IP
2022-09-17 14:25:22 +0000
0 - 0 - 16 engenhariadeprojetos.com.br/dan/auth.php?KCYr (...) 82.180.159.105
2022-09-17 14:19:29 +0000
0 - 0 - 16 engenhariadeprojetos.com.br/dan/auth.php?md=y (...) 82.180.159.105
2022-09-17 13:58:32 +0000
0 - 0 - 13 engenhariadeprojetos.com.br/dan/auth.php?md=k (...) 82.180.159.105
2022-09-17 13:48:27 +0000
0 - 0 - 16 engenhariadeprojetos.com.br/dan/auth.php?md=r (...) 82.180.159.105
2022-09-17 13:38:34 +0000
0 - 0 - 15 engenhariadeprojetos.com.br/dan/auth.php?md=S (...) 82.180.159.105

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-17 14:25:22 +0000
0 - 0 - 16 engenhariadeprojetos.com.br/dan/auth.php?KCYr (...) 82.180.159.105
2022-09-17 07:13:46 +0000
0 - 0 - 14 engenhariadeprojetos.com.br/dan/auth.php?hxML (...) 82.180.159.105
2022-09-17 06:02:55 +0000
0 - 0 - 16 engenhariadeprojetos.com.br/dan/auth.php?ywro (...) 82.180.159.105
2022-09-17 05:14:13 +0000
0 - 0 - 16 engenhariadeprojetos.com.br/dan/auth.php?md=m (...) 82.180.159.105
2022-09-16 20:43:44 +0000
0 - 0 - 16 engenhariadeprojetos.com.br/dan/auth.php?md=j (...) 82.180.159.105


JavaScript

Executed Scripts (57)


Executed Evals (6)

#1 JavaScript::Eval (size: 16032, repeated: 1) - SHA256: 4c4a028f9b75bab06ae145adc274053cc1501e88756dc5cdbad39980763cb47b

                                        (function() {
    var hj = function(T, J, Q, W, v) {
            for (W = (J.DX = (J.zH = ((J.WC = y0, J).XJ = (J.gv = J[E], Jj), Q0({get: function() {
                        return this.concat()
                    }
                }, J.D)), d[J.D](J.zH, {
                    value: {
                        value: {}
                    }
                })), v = [], 0); 128 > W; W++) v[W] = String.fromCharCode(W);
            f(true, J, (n([(n((x(152, (x(494, J, (x(119, J, ((x(365, J, (x(181, J, (x(290, J, (x(428, J, (x((x(478, J, (x(103, J, (x(105, (x(216, (x((x(122, J, (x(118, J, (x(371, (x(112, (x(224, (x(35, J, (x(242, J, (x(156, J, (x((x(346, J, (x(184, (x(4, (x(94, (x(84, (x(210, J, (x(357, (x(64, (x(367, J, (x(266, J, (x(412, J, (x(130, J, (J.cC = (x(264, (x(178, (J.SS = (x(344, (x(194, J, (x((x(13, J, ((x(218, J, ((J.P = 0, (J.S = void 0, J).V = false, J).lz = ((W = (J.C = (J.B = 0, void 0), ((J.pB = 0, J.I = void 0, J).l = (J.N = 1, J.H = [], 0), J.L = [], J).u = void 0, J.LB = false, J.F = false, (J.Y = (J.J = void 0, []), J.G = (J.v = void 0, 0), J).j = null, J.KB = [], J.s9 = function(y) {
                this.K = y
            }, J.A = void 0, (J.X = [], J).K = J, (J.R = 0, J.o = 0, window.performance) || {}), (J.h = 25, J).s = [], J).Z = 8001, W).timeOrigin || (W.timing || {}).navigationStart || 0, 0)), x)(284, J, 0), function(y, Z) {
                y = (Z = S(y), b(y.K, Z)), y[0].removeEventListener(y[1], y[2], M)
            })), 352), J, function(y, Z, z, U, F, h, k) {
                for (z = (F = (U = (Z = G((k = S(y), y)), ""), b(y, 369)), F.length), h = 0; Z--;) h = ((h | 0) + (G(y) | 0)) % z, U += v[F[h]];
                x(k, y, U)
            }), function(y) {
                Zn(3, y)
            })), J), function(y, Z, z, U) {
                Z = b(y, (U = (Z = (z = S(y), S(y)), S(y)), Z)), z = b(y, z), x(U, y, z[Z])
            }), 0), J), function(y, Z, z) {
                x((Z = L((Z = (z = (Z = S(y), S(y)), b)(y, Z), Z)), z), y, Z)
            }), J), function(y, Z) {
                (Z = b(y, S(y)), zS)(Z, y.K)
            }), 0), 0)), 630)), I(4))), function(y, Z, z, U) {
                (z = (Z = b(y, (U = (Z = S(y), z = S(y), S(y)), Z)), b)(y, z), x)(U, y, Z in z | 0)
            })), J), function(y, Z, z, U, F, h) {
                t(y, true, Z, false) || (z = s4(y.K), Z = z.U, F = Z.length, U = z.T, h = z.kF, z = z.wv, Z = 0 == F ? new h[U] : 1 == F ? new h[U](Z[0]) : 2 == F ? new h[U](Z[0], Z[1]) : 3 == F ? new h[U](Z[0], Z[1], Z[2]) : 4 == F ? new h[U](Z[0], Z[1], Z[2], Z[3]) : 2(), x(z, y, Z))
            }), J), function() {}), function(y, Z, z, U) {
                !t(y, true, Z, false) && (Z = s4(y), U = Z.T, z = Z.kF, y.K == y || U == y.s9 && z == y) && (x(Z.wv, y, U.apply(z, Z.U)), y.P = y.g())
            })), J), [0, 0, 0]), J), 0), J), function(y, Z, z) {
                x((Z = (z = S(y), S(y)), Z), y, "" + b(y, z))
            }), J), function(y, Z, z, U, F) {
                (U = (z = (F = b(y, (Z = b(y, (U = (Z = (z = S(y), S)(y), S)(y), F = S(y), Z)), F)), b)(y.K, z), b)(y, U), 0) !== z && (U = U4(1, U, y, F, z, Z), z.addEventListener(Z, U, M), x(130, y, [z, Z, U]))
            }), function(y, Z, z, U) {
                x((Z = b(y, (U = b(y, (z = (U = S((Z = S(y), y)), S(y)), U)), Z)) == U, z), y, +Z)
            })), 485), J, function(y, Z, z, U, F, h) {
                if (!t(y, true, Z, true)) {
                    if ("object" == L((y = b((Z = (Z = S((h = (z = S((F = S(y), y)), S(y)), y)), b(y, Z)), h = b(y, h), z = b(y, z), y), F), y))) {
                        for (U in F = [], y) F.push(U);
                        y = F
                    }
                    for (F = (U = y.length, h = 0 < h ? h : 1, 0); F < U; F += h) z(y.slice(F, (F | 0) + (h | 0)), Z)
                }
            }), function(y, Z, z, U) {
                (Z = b(y, (z = (Z = S(y), S(y)), U = b(y, z), Z)), x)(z, y, U + Z)
            })), function(y) {
                vN(4, y)
            })), [])), J), p), J), function(y, Z, z, U, F) {
                z = b((Z = (U = (U = (Z = (z = (F = S(y), S(y)), S(y)), S(y)), b(y, U)), b(y, Z)), y), z), x(F, y, U4(U, z, y, Z))
            }), J), function(y, Z, z, U) {
                x((Z = (U = (z = S(y), V(y)), S(y)), Z), y, b(y, z) >>> U)
            }), J)), function(y, Z, z) {
                t(y, true, Z, false) || (Z = S(y), z = S(y), x(z, y, function(U) {
                    return eval(U)
                }(WN(b(y.K, Z)))))
            })), 283), J, function(y, Z, z) {
                (Z = b(y, (z = 0 != (Z = (z = S(y), S(y)), b(y, z)), Z)), z) && x(218, y, Z)
            }), J), function(y, Z, z, U) {
                x((U = S((Z = S((z = S(y), y)), y)), U), y, b(y, z) || b(y, Z))
            }), J), function(y) {
                E4(1, y)
            }), function(y, Z, z, U) {
                (z = (U = (Z = S(y), S(y)), S(y)), y.K == y) && (U = b(y, U), z = b(y, z), b(y, Z)[U] = z, 187 == Z && (y.A = void 0, 2 == U && (y.I = P(y, false, 32), y.A = void 0)))
            })), 2048)), 114), J, function(y, Z, z, U, F) {
                for (Z = (F = (z = G((U = S(y), y)), 0), []); F < z; F++) Z.push(V(y));
                x(U, y, Z)
            }), [])), function(y, Z, z, U) {
                if (U = y.KB.pop()) {
                    for (Z = V(y); 0 < Z; Z--) z = S(y), U[z] = y.L[z];
                    U[478] = y.L[U[428] = y.L[428], 478], y.L = U
                } else x(218, y, y.l)
            })), function(y) {
                E4(4, y)
            })), {})), J).PC = 0, [160, 0, 0])), function(y) {
                Zn(4, y)
            })), J), function(y, Z, z, U, F, h, k, B, c, w, X, a) {
                function D(r, l) {
                    for (; w < r;) Z |= V(y) << w, w += 8;
                    return l = (w -= r, Z & (1 << r) - 1), Z >>= r, l
                }
                for (B = (h = (Z = w = (c = S(y), 0), z = (D(3) | 0) + 1, D)(5), X = 0, []), a = 0; a < h; a++) F = D(1), B.push(F), X += F ? 0 : 1;
                for (X = ((X | 0) - 1).toString(2).length, a = 0, U = []; a < h; a++) B[a] || (U[a] = D(X));
                for (X = 0; X < h; X++) B[X] && (U[X] = S(y));
                for (k = []; z--;) k.push(b(y, S(y)));
                x(c, y, function(r, l, Y, m, TS) {
                    for (l = (Y = (TS = [], 0), []); Y < h; Y++) {
                        if (!B[m = U[Y], Y]) {
                            for (; m >= l.length;) l.push(S(r));
                            m = l[m]
                        }
                        TS.push(m)
                    }
                    r.S = dX((r.u = dX(k.slice(), r), TS), r)
                })
            }), [F_]), J), K), T], J), n([xd, Q], J), true))
        },
        P = function(T, J, Q, W, v, y, Z, z, U, F, h, k, B, c) {
            if (z = b(T, 218), z >= T.l) throw [R, 31];
            for (U = (v = z, B = Q, Z = 0, T.gv.length); 0 < B;) k = v % 8, c = v >> 3, W = T.X[c], h = 8 - (k | 0), h = h < B ? h : B, J && (F = T, F.A != v >> 6 && (F.A = v >> 6, y = b(F, 187), F.J = kd([0, 0, y[1], y[2]], F.A, F.I)), W ^= T.J[c & U]), Z |= (W >> 8 - (k | 0) - (h | 0) & (1 << h) - 1) << (B | 0) - (h | 0), B -= h, v += h;
            return x(218, T, (J = Z, (z | 0) + (Q | 0))), J
        },
        wX = function(T, J, Q, W) {
            function v() {}
            return {
                invoke: (Q = BN(T, function(y) {
                    v && (J && C(J), W = y, v(), v = void 0)
                }, (W = void 0, !!J))[0], function(y, Z, z, U) {
                    function F() {
                        W(function(h) {
                            C(function() {
                                y(h)
                            })
                        }, z)
                    }
                    if (!Z) return Z = Q(z), y && y(Z), Z;
                    W ? F() : (U = v, v = function() {
                        U(), C(F)
                    })
                })
            }
        },
        kd = function(T, J, Q, W, v) {
            for (T = T[W = T[3] | 0, 2] | 0, v = 0; 15 > v; v++) J = J >>> 8 | J << 24, J += Q | 0, W = W >>> 8 | W << 24, W += T | 0, Q = Q << 3 | Q >>> 29, J ^= T + 823, T = T << 3 | T >>> 29, W ^= v + 823, T ^= W, Q ^= J;
            return [Q >>> 24 & 255, Q >>> 16 & 255, Q >>> 8 & 255, Q >>> 0 & 255, J >>> 24 & 255, J >>> 16 & 255, J >>> 8 & 255, J >>> 0 & 255]
        },
        Sr = function(T, J) {
            if ((T = (J = null, p).trustedTypes, !T) || !T.createPolicy) return J;
            try {
                J = T.createPolicy("bg", {
                    createHTML: X_,
                    createScript: X_,
                    createScriptURL: X_
                })
            } catch (Q) {
                p.console && p.console.error(Q.message)
            }
            return J
        },
        $d = function(T, J) {
            return (T = T.create().shift(), J.u.create().length) || J.S.create().length || (J.S = void 0, J.u = void 0), T
        },
        V = function(T) {
            return T.u ? $d(T.S, T) : P(T, true, 8)
        },
        vN = function(T, J, Q, W) {
            for (W = (Q = S(J), 0); 0 < T; T--) W = W << 8 | V(J);
            x(Q, J, W)
        },
        H = function(T, J, Q) {
            Q = this;
            try {
                hj(T, this, J)
            } catch (W) {
                q(this, W), J(function(v) {
                    v(Q.v)
                })
            }
        },
        cN = function(T, J, Q, W, v, y, Z, z) {
            return Z = d[(W = [2, 15, 64, -58, 80, -100, (z = Q & 7, v = aX, W), 17, -45, -4], T).D](T.zH), Z[T.D] = function(U) {
                z += (y = U, 6) + 7 * Q, z &= 7
            }, Z.concat = function(U) {
                return ((U = (y = (U = (U = J % 16 + 1, 43 * y * y - 3483 * y + 4 * J * J * U + z) - 645 * J * y - 172 * J * J * y + W[z + 19 & 7] * J * U + (v() | 0) * U - U * y, void 0), W)[U], W)[(z + 53 & 7) + (Q & 2)] = U, W)[z + (Q & 2)] = 15, U
            }, Z
        },
        bf = function(T, J, Q, W) {
            try {
                W = T[((J | 0) + 2) % 3], T[J] = (T[J] | 0) - (T[((J | 0) + 1) % 3] | 0) - (W | 0) ^ (1 == J ? W << Q : W >>> Q)
            } catch (v) {
                throw v;
            }
        },
        Mk = function(T, J) {
            J.push(T[0] << 24 | T[1] << 16 | T[2] << 8 | T[3]), J.push(T[4] << 24 | T[5] << 16 | T[6] << 8 | T[7]), J.push(T[8] << 24 | T[9] << 16 | T[10] << 8 | T[11])
        },
        E4 = function(T, J, Q, W) {
            W = (Q = S(J), S)(J), e(J, W, O(b(J, Q), T))
        },
        Q0 = function(T, J) {
            return d[J](d.prototype, {
                replace: T,
                console: T,
                pop: T,
                floor: T,
                call: T,
                propertyIsEnumerable: T,
                stack: T,
                parent: T,
                document: T,
                length: T,
                prototype: T,
                splice: T
            })
        },
        Lq = function(T, J, Q, W, v) {
            if ((W = J[0], W) == u) T.h = 25, T.W(J);
            else if (W == E) {
                Q = J[1];
                try {
                    v = T.v || T.W(J)
                } catch (y) {
                    q(T, y), v = T.v
                }
                Q(v)
            } else if (W == GS) T.W(J);
            else if (W == K) T.W(J);
            else if (W == xd) {
                try {
                    for (v = 0; v < T.Y.length; v++) try {
                        Q = T.Y[v], Q[0][Q[1]](Q[2])
                    } catch (y) {}
                } catch (y) {}(0, (T.Y = [], J)[1])(function(y, Z) {
                    T.i(y, true, Z)
                }, function(y) {
                    (n([jr], (y = !T.s.length, T)), y) && f(true, T, false)
                })
            } else {
                if (W == rX) return v = J[2], x(501, T, J[6]), x(365, T, v), T.W(J);
                W == jr ? (T.H = [], T.X = [], T.L = null) : W == F_ && "loading" === p.document.readyState && (T.j = function(y, Z) {
                    function z() {
                        Z || (Z = true, y())
                    }(p.document.addEventListener("DOMContentLoaded", (Z = false, z), M), p).addEventListener("load", z, M)
                })
            }
        },
        IX = function(T, J, Q) {
            return T.i(function(W) {
                Q = W
            }, false, J), Q
        },
        dX = function(T, J, Q) {
            return ((Q = d[J.D](J.DX), Q)[J.D] = function() {
                return T
            }, Q).concat = function(W) {
                T = W
            }, Q
        },
        X_ = function(T) {
            return T
        },
        tj = function(T, J, Q, W, v) {
            for (v = (Q = (T = T.replace(/\r\n/g, "\n"), J = 0), []); J < T.length; J++) W = T.charCodeAt(J), 128 > W ? v[Q++] = W : (2048 > W ? v[Q++] = W >> 6 | 192 : (55296 == (W & 64512) && J + 1 < T.length && 56320 == (T.charCodeAt(J + 1) & 64512) ? (W = 65536 + ((W & 1023) << 10) + (T.charCodeAt(++J) & 1023), v[Q++] = W >> 18 | 240, v[Q++] = W >> 12 & 63 | 128) : v[Q++] = W >> 12 | 224, v[Q++] = W >> 6 & 63 | 128), v[Q++] = W & 63 | 128);
            return v
        },
        BN = function(T, J, Q, W) {
            return (W = g[T.substring(0, 3) + "_"]) ? W(T.substring(3), J, Q) : lf(T, J)
        },
        lf = function(T, J) {
            return [(J(function(Q) {
                Q(T)
            }), function() {
                return T
            })]
        },
        x = function(T, J, Q) {
            if (218 == T || 284 == T) J.L[T] ? J.L[T].concat(Q) : J.L[T] = dX(Q, J);
            else {
                if (J.F && 187 != T) return;
                119 == T || 266 == T || 35 == T || 428 == T || 84 == T ? J.L[T] || (J.L[T] = cN(J, T, 38, Q)) : J.L[T] = cN(J, T, 89, Q)
            }
            187 == T && (J.I = P(J, false, 32), J.A = void 0)
        },
        Dn = function(T, J, Q, W) {
            return b(Q, (x(218, (pq(((W = b(Q, 218), Q.X && W < Q.l) ? (x(218, Q, Q.l), zS(T, Q)) : x(218, Q, T), J), Q), Q), W), 365))
        },
        V0 = function(T, J, Q) {
            if (3 == T.length) {
                for (Q = 0; 3 > Q; Q++) J[Q] += T[Q];
                for (Q = (T = [13, 8, 13, 12, 16, 5, 3, 10, 15], 0); 9 > Q; Q++) J[3](J, Q % 3, T[Q])
            }
        },
        e = function(T, J, Q, W, v, y) {
            if (T.K == T)
                for (v = b(T, J), 266 == J ? (J = function(Z, z, U, F) {
                        if ((z = (F = v.length, (F | 0) - 4 >> 3), v).fB != z) {
                            z = [0, (U = ((v.fB = z, z) << 3) - 4, 0), y[1], y[2]];
                            try {
                                v.uz = kd(z, PN((U | 0) + 4, v), PN(U, v))
                            } catch (h) {
                                throw h;
                            }
                        }
                        v.push(v.uz[F & 7] ^ Z)
                    }, y = b(T, 84)) : J = function(Z) {
                        v.push(Z)
                    }, W && J(W & 255), T = 0, W = Q.length; T < W; T++) J(Q[T])
        },
        N = function(T, J, Q, W, v, y) {
            if (!T.F) {
                if (3 < (Q = b(T, ((J = (0 == (y = ((v = void 0, Q && Q[0] === R) && (J = Q[1], v = Q[2], Q = void 0), b)(T, 428), y.length) && (W = b(T, 284) >> 3, y.push(J, W >> 8 & 255, W & 255), void 0 != v && y.push(v & 255)), ""), Q) && (Q.message && (J += Q.message), Q.stack && (J += ":" + Q.stack)), 478)), Q)) {
                    T.K = (v = (J = (J = J.slice(0, (Q | 0) - 3), Q -= (J.length | 0) + 3, tj)(J), T.K), T);
                    try {
                        e(T, 266, O(J.length, 2).concat(J), 9)
                    } finally {
                        T.K = v
                    }
                }
                x(478, T, Q)
            }
        },
        n = function(T, J) {
            J.s.splice(0, 0, T)
        },
        Zn = function(T, J, Q, W, v) {
            e(((W = b(J, (v = S((W = S((T &= (Q = T & 4, 3), J)), J)), W)), Q && (W = tj("" + W)), T) && e(J, v, O(W.length, 2)), J), v, W)
        },
        G = function(T, J) {
            return (J = V(T), J) & 128 && (J = J & 127 | V(T) << 7), J
        },
        s4 = function(T, J, Q, W, v, y) {
            for (y = (J = ((W = S((Q = T[nq] || {}, T)), Q).wv = S(T), Q.U = [], T.K) == T ? (V(T) | 0) - 1 : 1, v = S(T), 0); y < J; y++) Q.U.push(S(T));
            for (Q.kF = b(T, v); J--;) Q.U[J] = b(T, Q.U[J]);
            return Q.T = b(T, W), Q
        },
        S = function(T, J) {
            if (T.u) return $d(T.S, T);
            return (J = P(T, true, 8), J) & 128 && (J ^= 128, T = P(T, true, 2), J = (J << 2) + (T | 0)), J
        },
        f = function(T, J, Q, W, v, y) {
            if (J.s.length) {
                J.LB = (J.V = (J.V && 0(), true), T);
                try {
                    y = J.g(), J.P = y, J.G = y, J.C = 0, W = Kq(J, T), v = J.g() - J.G, J.R += v, v < (Q ? 0 : 10) || 0 >= J.h-- || (v = Math.floor(v), J.H.push(254 >= v ? v : 254))
                } finally {
                    J.V = false
                }
                return W
            }
        },
        b = function(T, J) {
            if (void 0 === (T = T.L[J], T)) throw [R, 30, J];
            if (T.value) return T.create();
            return (T.create(4 * J * J + 15 * J + 81), T).prototype
        },
        Kq = function(T, J, Q, W) {
            for (; T.s.length;) {
                W = (T.j = null, T.s.pop());
                try {
                    Q = Lq(T, W)
                } catch (v) {
                    q(T, v)
                }
                if (J && T.j) {
                    J = T.j, J(function() {
                        f(true, T, true)
                    });
                    break
                }
            }
            return Q
        },
        O = function(T, J, Q, W) {
            for (W = (J | 0) - (Q = [], 1); 0 <= W; W--) Q[(J | 0) - 1 - (W | 0)] = T >> 8 * W & 255;
            return Q
        },
        L = function(T, J, Q) {
            if ((Q = typeof T, "object") == Q)
                if (T) {
                    if (T instanceof Array) return "array";
                    if (T instanceof Object) return Q;
                    if ("[object Window]" == (J = Object.prototype.toString.call(T), J)) return "object";
                    if ("[object Array]" == J || "number" == typeof T.length && "undefined" != typeof T.splice && "undefined" != typeof T.propertyIsEnumerable && !T.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == J || "undefined" != typeof T.call && "undefined" != typeof T.propertyIsEnumerable && !T.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == Q && "undefined" == typeof T.call) return "object";
            return Q
        },
        zS = function(T, J) {
            x(((J.KB.push(J.L.slice()), J).L[218] = void 0, 218), J, T)
        },
        t = function(T, J, Q, W, v, y, Z, z, U) {
            if ((T.K = ((v = (U = (y = (W = (z = (J || T.C++, 0 < (Z = W ? 255 : J ? 5 : 2, T.B) && T.V && T.LB && 1 >= T.o && !T.u && !T.j) && (!J || 1 < T.Z - Q) && 0 == document.hidden, 4 == T.C)) || z ? T.g() : T.P, y - T.P), U >> 14), T.I && (T.I ^= v * (U << 2)), T).N += v, v || T.K), W) || z) T.C = 0, T.P = y;
            if (!z || y - T.G < T.B - Z) return false;
            return !(x(218, (z = b(T, (T.Z = Q, J) ? 284 : 218), T), T.l), T.s.push([GS, z, J ? Q + 1 : Q]), T.j = C, 0)
        },
        g, p = this || self,
        PN = function(T, J) {
            return J[T] << 24 | J[(T | 0) + 1] << 16 | J[(T | 0) + 2] << 8 | J[(T | 0) + 3]
        },
        C = p.requestIdleCallback ? function(T) {
            requestIdleCallback(function() {
                T()
            }, {
                timeout: 4
            })
        } : p.setImmediate ? function(T) {
            setImmediate(T)
        } : function(T) {
            setTimeout(T, 0)
        },
        q = function(T, J) {
            T.v = ((T.v ? T.v + "~" : "E:") + J.message + ":" + J.stack).slice(0, 2048)
        },
        U4 = function(T, J, Q, W, v, y) {
            function Z() {
                if (Q.K == Q) {
                    if (Q.L) {
                        var z = [rX, J, W, void 0, v, y, arguments];
                        if (2 == T) var U = f((n(z, Q), false), Q, false);
                        else if (1 == T) {
                            var F = !Q.s.length;
                            (n(z, Q), F) && f(false, Q, false)
                        } else U = Lq(Q, z);
                        return U
                    }
                    v && y && v.removeEventListener(y, Z, M)
                }
            }
            return Z
        },
        M = {
            passive: true,
            capture: true
        },
        A, I = function(T, J) {
            for (J = []; T--;) J.push(255 * Math.random() | 0);
            return J
        },
        pq = function(T, J, Q, W, v, y) {
            if (!J.v) {
                J.o++;
                try {
                    for (v = (Q = 0, J.l), W = void 0; --T;) try {
                        if (y = void 0, J.u) W = $d(J.u, J);
                        else {
                            if ((Q = b(J, 218), Q) >= v) break;
                            W = (y = (x(284, J, Q), S)(J), b)(J, y)
                        }
                        W && W.call ? W(J, T) : N(J, 0, [R, 21, y]), t(J, false, T, false)
                    } catch (Z) {
                        b(J, 412) ? N(J, 22, Z) : x(412, J, Z)
                    }
                    if (!T) {
                        if (J.rv) {
                            pq(667641748788, (J.o--, J));
                            return
                        }
                        N(J, 0, [R, 33])
                    }
                } catch (Z) {
                    try {
                        N(J, 22, Z)
                    } catch (z) {
                        q(J, z)
                    }
                }
                J.o--
            }
        },
        nq = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        E = [],
        jr = [],
        R = {},
        F_ = [],
        K = ((H.prototype.O = "toString", H).prototype.GH = void 0, []),
        u = (H.prototype.rv = false, H.prototype.bz = void 0, []),
        GS = [],
        rX = [],
        xd = [],
        d = (A = ((Mk, I, bf, function() {})(V0), H.prototype), A.Iz = function() {
            return Math.floor(this.R + (this.g() - this.G))
        }, H.prototype.D = "create", R.constructor),
        aX = ((A.jS = function() {
            return Math.floor(this.g())
        }, (A.mB = function(T, J, Q) {
            return T ^ (J ^= J << 13, J ^= J >> 17, (J = (J ^ J << 5) & Q) || (J = 1), J)
        }, A).g = (window.performance || {}).now ? function() {
            return this.lz + window.performance.now()
        } : function() {
            return +new Date
        }, A.U9 = function(T, J, Q, W, v) {
            for (W = v = 0; v < T.length; v++) W += T.charCodeAt(v), W += W << 10, W ^= W >> 6;
            return (v = (W += W << 3, W ^= W >> 11, T = W + (W << 15) >>> 0, new Number(T & (1 << J) - 1)), v)[0] = (T >>> J) % Q, v
        }, A.i = function(T, J, Q, W, v) {
            if ((Q = "array" === L(Q) ? Q : [Q], this).v) T(this.v);
            else try {
                W = [], v = !this.s.length, n([u, W, Q], this), n([E, T, W], this), J && !v || f(J, this, true)
            } catch (y) {
                q(this, y), T(this.v)
            }
        }, A).qR = function(T, J, Q, W, v, y) {
            for (W = (Q = [], y = 0); W < T.length; W++)
                for (y += J, v = v << J | T[W]; 7 < y;) y -= 8, Q.push(v >> y & 255);
            return Q
        }, void 0);
    H.prototype.W = function(T, J) {
        return J = (T = {}, aX = function() {
                return T == J ? 81 : 93
            }, {}),
            function(Q, W, v, y, Z, z, U, F, h, k, B, c, w, X, a) {
                U = T, T = J;
                try {
                    if (a = Q[0], a == K) {
                        v = Q[1];
                        try {
                            for (B = (X = (w = atob(v), c = 0), []); c < w.length; c++) h = w.charCodeAt(c), 255 < h && (B[X++] = h & 255, h >>= 8), B[X++] = h;
                            x(187, (this.l = (this.X = B, this.X.length << 3), this), [0, 0, 0])
                        } catch (D) {
                            N(this, 17, D);
                            return
                        }
                        pq(8001, this)
                    } else if (a == u) Q[1].push(b(this, 266).length, b(this, 35).length, b(this, 478), b(this, 119).length), x(365, this, Q[2]), this.L[121] && Dn(b(this, 121), 8001, this);
                    else {
                        if (a == E) {
                            this.K = (Z = (X = Q[2], O((b(this, 119).length | 0) + 2, 2)), z = this.K, this);
                            try {
                                y = b(this, 428), 0 < y.length && e(this, 119, O(y.length, 2).concat(y), 10), e(this, 119, O(this.N, 1), 109), e(this, 119, O(this[E].length, 1)), w = 0, w -= (b(this, 119).length | 0) + 5, W = b(this, 266), w += b(this, 94) & 2047, 4 < W.length && (w -= (W.length | 0) + 3), 0 < w && e(this, 119, O(w, 2).concat(I(w)), 15), 4 < W.length && e(this, 119, O(W.length, 2).concat(W), 156)
                            } finally {
                                this.K = z
                            }
                            if (k = ((((B = I(2).concat(b(this, 119)), B)[1] = B[0] ^ 6, B)[3] = B[1] ^ Z[0], B)[4] = B[1] ^ Z[1], this.vC(B))) k = "!" + k;
                            else
                                for (w = 0, k = ""; w < B.length; w++) F = B[w][this.O](16), 1 == F.length && (F = "0" + F), k += F;
                            return b((x(478, (b(this, ((c = k, b(this, 266)).length = X.shift(), 35)).length = X.shift(), this), X.shift()), this), 119).length = X.shift(), c
                        }
                        if (a == GS) Dn(Q[1], Q[2], this);
                        else if (a == rX) return Dn(Q[1], 8001, this)
                    }
                } finally {
                    T = U
                }
            }
    }();
    var y0, Jj = /./,
        fq = K.pop.bind((H.prototype.vC = (H.prototype.dv = 0, H.prototype.oz = 0, H.prototype[xd] = [0, 0, 1, 1, 0, 1, 1], function(T, J, Q, W) {
            if (Q = window.btoa) {
                for (J = (W = 0, ""); W < T.length; W += 8192) J += String.fromCharCode.apply(null, T.slice(W, W + 8192));
                T = Q(J).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else T = void 0;
            return T
        }), H.prototype)[u]),
        WN = function(T, J) {
            return (J = Sr()) && 1 === T.eval(J.createScript("1")) ? function(Q) {
                return J.createScript(Q)
            } : function(Q) {
                return "" + Q
            }
        }(((y0 = (Jj[H.prototype.O] = fq, Q0({get: fq
        }, H.prototype.D)), H.prototype).AO = void 0, p));
    (g = p.botguard || (p.botguard = {}), 40) < g.m || (g.m = 41, g.bg = wX, g.a = BN), g.RBK_ = function(T, J, Q) {
        return [(Q = new H(T, J), function(W) {
            return IX(Q, W)
        })]
    };
}).call(this);
                                    

#2 JavaScript::Eval (size: 22, repeated: 1) - SHA256: ec57c81fb17f8e49d6e24632131ff2435195de95932fda8509037ae4b0d41dda

                                        0,
function(y) {
    vN(1, y)
}
                                    

#3 JavaScript::Eval (size: 64, repeated: 1) - SHA256: 9ea236d2bdaebe77b1c584bccfc9e289e8fcff1a532a8796b9b59dfbe1832c60

                                        0,
function(y, Z, z) {
    x((z = (Z = (z = S(y), S(y)), y.L[z]) && b(y, z), Z), y, z)
}
                                    

#4 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 797f3a04f8544034ebbf1fbac72103451f9c802ace19cb9f057f4eb23d4200ec

                                        0,
function(y) {
    vN(2, y)
}
                                    

#5 JavaScript::Eval (size: 15546, repeated: 1) - SHA256: a4d092a9f4e4b98d5e78378f3b49bdeb5d044ece616623a34e78bc4849289d1f

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var Q = this || self,
        Z = function(J, T) {
            if (T = (J = null, Q.trustedTypes), !T || !T.createPolicy) return J;
            try {
                J = T.createPolicy("bg", {
                    createHTML: W,
                    createScript: W,
                    createScriptURL: W
                })
            } catch (y) {
                Q.console && Q.console.error(y.message)
            }
            return J
        },
        W = function(J) {
            return J
        };
    (0, eval)(function(J, T) {
        return (T = Z()) && 1 === J.eval(T.createScript("1")) ? function(y) {
            return T.createScript(y)
        } : function(y) {
            return "" + y
        }
    }(Q)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var hj=function(T,J,Q,W,v){for(W=(J.DX=(J.zH=((J.WC=y0,J).XJ=(J.gv=J[E],Jj),Q0({get:function(){return this.concat()}},J.D)),d[J.D](J.zH,{value:{value:{}}})),v=[],0);128>W;W++)v[W]=String.fromCharCode(W);f(true,J,(n([(n((x(152,(x(494,J,(x(119,J,((x(365,J,(x(181,J,(x(290,J,(x(428,J,(x((x(478,J,(x(103,J,(x(105,(x(216,(x((x(122,J,(x(118,J,(x(371,(x(112,(x(224,(x(35,J,(x(242,J,(x(156,J,(x((x(346,J,(x(184,(x(4,(x(94,(x(84,(x(210,J,(x(357,(x(64,(x(367,J,(x(266,J,(x(412,J,(x(130,J,(J.cC=(x(264,(x(178,(J.SS=(x(344,(x(194,J,(x((x(13,J,((x(218,J,((J.P=0,(J.S=void 0,J).V=false,J).lz=((W=(J.C=(J.B=0,void 0),((J.pB=0,J.I=void 0,J).l=(J.N=1,J.H=[],0),J.L=[],J).u=void 0,J.LB=false,J.F=false,(J.Y=(J.J=void 0,[]),J.G=(J.v=void 0,0),J).j=null,J.KB=[],J.s9=function(y){this.K=y},J.A=void 0,(J.X=[],J).K=J,(J.R=0,J.o=0,window.performance)||{}),(J.h=25,J).s=[],J).Z=8001,W).timeOrigin||(W.timing||{}).navigationStart||0,0)),x)(284,J,0),function(y,Z){y=(Z=S(y),b(y.K,Z)),y[0].removeEventListener(y[1],y[2],M)})),352),J,function(y,Z,z,U,F,h,k){for(z=(F=(U=(Z=G((k=S(y),y)),""),b(y,369)),F.length),h=0;Z--;)h=((h|0)+(G(y)|0))%z,U+=v[F[h]];x(k,y,U)}),function(y){Zn(3,y)})),J),function(y,Z,z,U){Z=b(y,(U=(Z=(z=S(y),S(y)),S(y)),Z)),z=b(y,z),x(U,y,z[Z])}),0),J),function(y,Z,z){x((Z=L((Z=(z=(Z=S(y),S(y)),b)(y,Z),Z)),z),y,Z)}),J),function(y,Z){(Z=b(y,S(y)),zS)(Z,y.K)}),0),0)),630)),I(4))),function(y,Z,z,U){(z=(Z=b(y,(U=(Z=S(y),z=S(y),S(y)),Z)),b)(y,z),x)(U,y,Z in z|0)})),J),function(y,Z,z,U,F,h){t(y,true,Z,false)||(z=s4(y.K),Z=z.U,F=Z.length,U=z.T,h=z.kF,z=z.wv,Z=0==F?new h[U]:1==F?new h[U](Z[0]):2==F?new h[U](Z[0],Z[1]):3==F?new h[U](Z[0],Z[1],Z[2]):4==F?new h[U](Z[0],Z[1],Z[2],Z[3]):2(),x(z,y,Z))}),J),function(){}),function(y,Z,z,U){!t(y,true,Z,false)&&(Z=s4(y),U=Z.T,z=Z.kF,y.K==y||U==y.s9&&z==y)&&(x(Z.wv,y,U.apply(z,Z.U)),y.P=y.g())})),J),[0,0,0]),J),0),J),function(y,Z,z){x((Z=(z=S(y),S(y)),Z),y,""+b(y,z))}),J),function(y,Z,z,U,F){(U=(z=(F=b(y,(Z=b(y,(U=(Z=(z=S(y),S)(y),S)(y),F=S(y),Z)),F)),b)(y.K,z),b)(y,U),0)!==z&&(U=U4(1,U,y,F,z,Z),z.addEventListener(Z,U,M),x(130,y,[z,Z,U]))}),function(y,Z,z,U){x((Z=b(y,(U=b(y,(z=(U=S((Z=S(y),y)),S(y)),U)),Z))==U,z),y,+Z)})),485),J,function(y,Z,z,U,F,h){if(!t(y,true,Z,true)){if("object"==L((y=b((Z=(Z=S((h=(z=S((F=S(y),y)),S(y)),y)),b(y,Z)),h=b(y,h),z=b(y,z),y),F),y))){for(U in F=[],y)F.push(U);y=F}for(F=(U=y.length,h=0<h?h:1,0);F<U;F+=h)z(y.slice(F,(F|0)+(h|0)),Z)}}),function(y,Z,z,U){(Z=b(y,(z=(Z=S(y),S(y)),U=b(y,z),Z)),x)(z,y,U+Z)})),function(y){vN(4,y)})),[])),J),p),J),function(y,Z,z,U,F){z=b((Z=(U=(U=(Z=(z=(F=S(y),S(y)),S(y)),S(y)),b(y,U)),b(y,Z)),y),z),x(F,y,U4(U,z,y,Z))}),J),function(y,Z,z,U){x((Z=(U=(z=S(y),V(y)),S(y)),Z),y,b(y,z)>>>U)}),J)),function(y,Z,z){t(y,true,Z,false)||(Z=S(y),z=S(y),x(z,y,function(U){return eval(U)}(WN(b(y.K,Z)))))})),283),J,function(y,Z,z){(Z=b(y,(z=0!=(Z=(z=S(y),S(y)),b(y,z)),Z)),z)&&x(218,y,Z)}),J),function(y,Z,z,U){x((U=S((Z=S((z=S(y),y)),y)),U),y,b(y,z)||b(y,Z))}),J),function(y){E4(1,y)}),function(y,Z,z,U){(z=(U=(Z=S(y),S(y)),S(y)),y.K==y)&&(U=b(y,U),z=b(y,z),b(y,Z)[U]=z,187==Z&&(y.A=void 0,2==U&&(y.I=P(y,false,32),y.A=void 0)))})),2048)),114),J,function(y,Z,z,U,F){for(Z=(F=(z=G((U=S(y),y)),0),[]);F<z;F++)Z.push(V(y));x(U,y,Z)}),[])),function(y,Z,z,U){if(U=y.KB.pop()){for(Z=V(y);0<Z;Z--)z=S(y),U[z]=y.L[z];U[478]=y.L[U[428]=y.L[428],478],y.L=U}else x(218,y,y.l)})),function(y){E4(4,y)})),{})),J).PC=0,[160,0,0])),function(y){Zn(4,y)})),J),function(y,Z,z,U,F,h,k,B,c,w,X,a){function D(r,l){for(;w<r;)Z|=V(y)<<w,w+=8;return l=(w-=r,Z&(1<<r)-1),Z>>=r,l}for(B=(h=(Z=w=(c=S(y),0),z=(D(3)|0)+1,D)(5),X=0,[]),a=0;a<h;a++)F=D(1),B.push(F),X+=F?0:1;for(X=((X|0)-1).toString(2).length,a=0,U=[];a<h;a++)B[a]||(U[a]=D(X));for(X=0;X<h;X++)B[X]&&(U[X]=S(y));for(k=[];z--;)k.push(b(y,S(y)));x(c,y,function(r,l,Y,m,TS){for(l=(Y=(TS=[],0),[]);Y<h;Y++){if(!B[m=U[Y],Y]){for(;m>=l.length;)l.push(S(r));m=l[m]}TS.push(m)}r.S=dX((r.u=dX(k.slice(),r),TS),r)})}),[F_]),J),K),T],J),n([xd,Q],J),true))},P=function(T,J,Q,W,v,y,Z,z,U,F,h,k,B,c){if(z=b(T,218),z>=T.l)throw[R,31];for(U=(v=z,B=Q,Z=0,T.gv.length);0<B;)k=v%8,c=v>>3,W=T.X[c],h=8-(k|0),h=h<B?h:B,J&&(F=T,F.A!=v>>6&&(F.A=v>>6,y=b(F,187),F.J=kd([0,0,y[1],y[2]],F.A,F.I)),W^=T.J[c&U]),Z|=(W>>8-(k|0)-(h|0)&(1<<h)-1)<<(B|0)-(h|0),B-=h,v+=h;return x(218,T,(J=Z,(z|0)+(Q|0))),J},wX=function(T,J,Q,W){function v(){}return{invoke:(Q=BN(T,function(y){v&&(J&&C(J),W=y,v(),v=void 0)},(W=void 0,!!J))[0],function(y,Z,z,U){function F(){W(function(h){C(function(){y(h)})},z)}if(!Z)return Z=Q(z),y&&y(Z),Z;W?F():(U=v,v=function(){U(),C(F)})})}},kd=function(T,J,Q,W,v){for(T=T[W=T[3]|0,2]|0,v=0;15>v;v++)J=J>>>8|J<<24,J+=Q|0,W=W>>>8|W<<24,W+=T|0,Q=Q<<3|Q>>>29,J^=T+823,T=T<<3|T>>>29,W^=v+823,T^=W,Q^=J;return[Q>>>24&255,Q>>>16&255,Q>>>8&255,Q>>>0&255,J>>>24&255,J>>>16&255,J>>>8&255,J>>>0&255]},Sr=function(T,J){if((T=(J=null,p).trustedTypes,!T)||!T.createPolicy)return J;try{J=T.createPolicy("bg",{createHTML:X_,createScript:X_,createScriptURL:X_})}catch(Q){p.console&&p.console.error(Q.message)}return J},$d=function(T,J){return(T=T.create().shift(),J.u.create().length)||J.S.create().length||(J.S=void 0,J.u=void 0),T},V=function(T){return T.u?$d(T.S,T):P(T,true,8)},vN=function(T,J,Q,W){for(W=(Q=S(J),0);0<T;T--)W=W<<8|V(J);x(Q,J,W)},H=function(T,J,Q){Q=this;try{hj(T,this,J)}catch(W){q(this,W),J(function(v){v(Q.v)})}},cN=function(T,J,Q,W,v,y,Z,z){return Z=d[(W=[2,15,64,-58,80,-100,(z=Q&7,v=aX,W),17,-45,-4],T).D](T.zH),Z[T.D]=function(U){z+=(y=U,6)+7*Q,z&=7},Z.concat=function(U){return((U=(y=(U=(U=J%16+1,43*y*y-3483*y+4*J*J*U+z)-645*J*y-172*J*J*y+W[z+19&7]*J*U+(v()|0)*U-U*y,void 0),W)[U],W)[(z+53&7)+(Q&2)]=U,W)[z+(Q&2)]=15,U},Z},bf=function(T,J,Q,W){try{W=T[((J|0)+2)%3],T[J]=(T[J]|0)-(T[((J|0)+1)%3]|0)-(W|0)^(1==J?W<<Q:W>>>Q)}catch(v){throw v;}},Mk=function(T,J){J.push(T[0]<<24|T[1]<<16|T[2]<<8|T[3]),J.push(T[4]<<24|T[5]<<16|T[6]<<8|T[7]),J.push(T[8]<<24|T[9]<<16|T[10]<<8|T[11])},E4=function(T,J,Q,W){W=(Q=S(J),S)(J),e(J,W,O(b(J,Q),T))},Q0=function(T,J){return d[J](d.prototype,{replace:T,console:T,pop:T,floor:T,call:T,propertyIsEnumerable:T,stack:T,parent:T,document:T,length:T,prototype:T,splice:T})},Lq=function(T,J,Q,W,v){if((W=J[0],W)==u)T.h=25,T.W(J);else if(W==E){Q=J[1];try{v=T.v||T.W(J)}catch(y){q(T,y),v=T.v}Q(v)}else if(W==GS)T.W(J);else if(W==K)T.W(J);else if(W==xd){try{for(v=0;v<T.Y.length;v++)try{Q=T.Y[v],Q[0][Q[1]](Q[2])}catch(y){}}catch(y){}(0,(T.Y=[],J)[1])(function(y,Z){T.i(y,true,Z)},function(y){(n([jr],(y=!T.s.length,T)),y)&&f(true,T,false)})}else{if(W==rX)return v=J[2],x(501,T,J[6]),x(365,T,v),T.W(J);W==jr?(T.H=[],T.X=[],T.L=null):W==F_&&"loading"===p.document.readyState&&(T.j=function(y,Z){function z(){Z||(Z=true,y())}(p.document.addEventListener("DOMContentLoaded",(Z=false,z),M),p).addEventListener("load",z,M)})}},IX=function(T,J,Q){return T.i(function(W){Q=W},false,J),Q},dX=function(T,J,Q){return((Q=d[J.D](J.DX),Q)[J.D]=function(){return T},Q).concat=function(W){T=W},Q},X_=function(T){return T},tj=function(T,J,Q,W,v){for(v=(Q=(T=T.replace(/\\r\\n/g,"\\n"),J=0),[]);J<T.length;J++)W=T.charCodeAt(J),128>W?v[Q++]=W:(2048>W?v[Q++]=W>>6|192:(55296==(W&64512)&&J+1<T.length&&56320==(T.charCodeAt(J+1)&64512)?(W=65536+((W&1023)<<10)+(T.charCodeAt(++J)&1023),v[Q++]=W>>18|240,v[Q++]=W>>12&63|128):v[Q++]=W>>12|224,v[Q++]=W>>6&63|128),v[Q++]=W&63|128);return v},BN=function(T,J,Q,W){return(W=g[T.substring(0,3)+"_"])?W(T.substring(3),J,Q):lf(T,J)},lf=function(T,J){return[(J(function(Q){Q(T)}),function(){return T})]},x=function(T,J,Q){if(218==T||284==T)J.L[T]?J.L[T].concat(Q):J.L[T]=dX(Q,J);else{if(J.F&&187!=T)return;119==T||266==T||35==T||428==T||84==T?J.L[T]||(J.L[T]=cN(J,T,38,Q)):J.L[T]=cN(J,T,89,Q)}187==T&&(J.I=P(J,false,32),J.A=void 0)},Dn=function(T,J,Q,W){return b(Q,(x(218,(pq(((W=b(Q,218),Q.X&&W<Q.l)?(x(218,Q,Q.l),zS(T,Q)):x(218,Q,T),J),Q),Q),W),365))},V0=function(T,J,Q){if(3==T.length){for(Q=0;3>Q;Q++)J[Q]+=T[Q];for(Q=(T=[13,8,13,12,16,5,3,10,15],0);9>Q;Q++)J[3](J,Q%3,T[Q])}},e=function(T,J,Q,W,v,y){if(T.K==T)for(v=b(T,J),266==J?(J=function(Z,z,U,F){if((z=(F=v.length,(F|0)-4>>3),v).fB!=z){z=[0,(U=((v.fB=z,z)<<3)-4,0),y[1],y[2]];try{v.uz=kd(z,PN((U|0)+4,v),PN(U,v))}catch(h){throw h;}}v.push(v.uz[F&7]^Z)},y=b(T,84)):J=function(Z){v.push(Z)},W&&J(W&255),T=0,W=Q.length;T<W;T++)J(Q[T])},N=function(T,J,Q,W,v,y){if(!T.F){if(3<(Q=b(T,((J=(0==(y=((v=void 0,Q&&Q[0]===R)&&(J=Q[1],v=Q[2],Q=void 0),b)(T,428),y.length)&&(W=b(T,284)>>3,y.push(J,W>>8&255,W&255),void 0!=v&&y.push(v&255)),""),Q)&&(Q.message&&(J+=Q.message),Q.stack&&(J+=":"+Q.stack)),478)),Q)){T.K=(v=(J=(J=J.slice(0,(Q|0)-3),Q-=(J.length|0)+3,tj)(J),T.K),T);try{e(T,266,O(J.length,2).concat(J),9)}finally{T.K=v}}x(478,T,Q)}},n=function(T,J){J.s.splice(0,0,T)},Zn=function(T,J,Q,W,v){e(((W=b(J,(v=S((W=S((T&=(Q=T&4,3),J)),J)),W)),Q&&(W=tj(""+W)),T)&&e(J,v,O(W.length,2)),J),v,W)},G=function(T,J){return(J=V(T),J)&128&&(J=J&127|V(T)<<7),J},s4=function(T,J,Q,W,v,y){for(y=(J=((W=S((Q=T[nq]||{},T)),Q).wv=S(T),Q.U=[],T.K)==T?(V(T)|0)-1:1,v=S(T),0);y<J;y++)Q.U.push(S(T));for(Q.kF=b(T,v);J--;)Q.U[J]=b(T,Q.U[J]);return Q.T=b(T,W),Q},S=function(T,J){if(T.u)return $d(T.S,T);return(J=P(T,true,8),J)&128&&(J^=128,T=P(T,true,2),J=(J<<2)+(T|0)),J},f=function(T,J,Q,W,v,y){if(J.s.length){J.LB=(J.V=(J.V&&0(),true),T);try{y=J.g(),J.P=y,J.G=y,J.C=0,W=Kq(J,T),v=J.g()-J.G,J.R+=v,v<(Q?0:10)||0>=J.h--||(v=Math.floor(v),J.H.push(254>=v?v:254))}finally{J.V=false}return W}},b=function(T,J){if(void 0===(T=T.L[J],T))throw[R,30,J];if(T.value)return T.create();return(T.create(4*J*J+15*J+81),T).prototype},Kq=function(T,J,Q,W){for(;T.s.length;){W=(T.j=null,T.s.pop());try{Q=Lq(T,W)}catch(v){q(T,v)}if(J&&T.j){J=T.j,J(function(){f(true,T,true)});break}}return Q},O=function(T,J,Q,W){for(W=(J|0)-(Q=[],1);0<=W;W--)Q[(J|0)-1-(W|0)]=T>>8*W&255;return Q},L=function(T,J,Q){if((Q=typeof T,"object")==Q)if(T){if(T instanceof Array)return"array";if(T instanceof Object)return Q;if("[object Window]"==(J=Object.prototype.toString.call(T),J))return"object";if("[object Array]"==J||"number"==typeof T.length&&"undefined"!=typeof T.splice&&"undefined"!=typeof T.propertyIsEnumerable&&!T.propertyIsEnumerable("splice"))return"array";if("[object Function]"==J||"undefined"!=typeof T.call&&"undefined"!=typeof T.propertyIsEnumerable&&!T.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==Q&&"undefined"==typeof T.call)return"object";return Q},zS=function(T,J){x(((J.KB.push(J.L.slice()),J).L[218]=void 0,218),J,T)},t=function(T,J,Q,W,v,y,Z,z,U){if((T.K=((v=(U=(y=(W=(z=(J||T.C++,0<(Z=W?255:J?5:2,T.B)&&T.V&&T.LB&&1>=T.o&&!T.u&&!T.j)&&(!J||1<T.Z-Q)&&0==document.hidden,4==T.C))||z?T.g():T.P,y-T.P),U>>14),T.I&&(T.I^=v*(U<<2)),T).N+=v,v||T.K),W)||z)T.C=0,T.P=y;if(!z||y-T.G<T.B-Z)return false;return!(x(218,(z=b(T,(T.Z=Q,J)?284:218),T),T.l),T.s.push([GS,z,J?Q+1:Q]),T.j=C,0)},g,p=this||self,PN=function(T,J){return J[T]<<24|J[(T|0)+1]<<16|J[(T|0)+2]<<8|J[(T|0)+3]},C=p.requestIdleCallback?function(T){requestIdleCallback(function(){T()},{timeout:4})}:p.setImmediate?function(T){setImmediate(T)}:function(T){setTimeout(T,0)},q=function(T,J){T.v=((T.v?T.v+"~":"E:")+J.message+":"+J.stack).slice(0,2048)},U4=function(T,J,Q,W,v,y){function Z(){if(Q.K==Q){if(Q.L){var z=[rX,J,W,void 0,v,y,arguments];if(2==T)var U=f((n(z,Q),false),Q,false);else if(1==T){var F=!Q.s.length;(n(z,Q),F)&&f(false,Q,false)}else U=Lq(Q,z);return U}v&&y&&v.removeEventListener(y,Z,M)}}return Z},M={passive:true,capture:true},A,I=function(T,J){for(J=[];T--;)J.push(255*Math.random()|0);return J},pq=function(T,J,Q,W,v,y){if(!J.v){J.o++;try{for(v=(Q=0,J.l),W=void 0;--T;)try{if(y=void 0,J.u)W=$d(J.u,J);else{if((Q=b(J,218),Q)>=v)break;W=(y=(x(284,J,Q),S)(J),b)(J,y)}W&&W.call?W(J,T):N(J,0,[R,21,y]),t(J,false,T,false)}catch(Z){b(J,412)?N(J,22,Z):x(412,J,Z)}if(!T){if(J.rv){pq(667641748788,(J.o--,J));return}N(J,0,[R,33])}}catch(Z){try{N(J,22,Z)}catch(z){q(J,z)}}J.o--}},nq=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),E=[],jr=[],R={},F_=[],K=((H.prototype.O="toString",H).prototype.GH=void 0,[]),u=(H.prototype.rv=false,H.prototype.bz=void 0,[]),GS=[],rX=[],xd=[],d=(A=((Mk,I,bf,function(){})(V0),H.prototype),A.Iz=function(){return Math.floor(this.R+(this.g()-this.G))},H.prototype.D="create",R.constructor),aX=((A.jS=function(){return Math.floor(this.g())},(A.mB=function(T,J,Q){return T^(J^=J<<13,J^=J>>17,(J=(J^J<<5)&Q)||(J=1),J)},A).g=(window.performance||{}).now?function(){return this.lz+window.performance.now()}:function(){return+new Date},A.U9=function(T,J,Q,W,v){for(W=v=0;v<T.length;v++)W+=T.charCodeAt(v),W+=W<<10,W^=W>>6;return(v=(W+=W<<3,W^=W>>11,T=W+(W<<15)>>>0,new Number(T&(1<<J)-1)),v)[0]=(T>>>J)%Q,v},A.i=function(T,J,Q,W,v){if((Q="array"===L(Q)?Q:[Q],this).v)T(this.v);else try{W=[],v=!this.s.length,n([u,W,Q],this),n([E,T,W],this),J&&!v||f(J,this,true)}catch(y){q(this,y),T(this.v)}},A).qR=function(T,J,Q,W,v,y){for(W=(Q=[],y=0);W<T.length;W++)for(y+=J,v=v<<J|T[W];7<y;)y-=8,Q.push(v>>y&255);return Q},void 0);H.prototype.W=function(T,J){return J=(T={},aX=function(){return T==J?81:93},{}),function(Q,W,v,y,Z,z,U,F,h,k,B,c,w,X,a){U=T,T=J;try{if(a=Q[0],a==K){v=Q[1];try{for(B=(X=(w=atob(v),c=0),[]);c<w.length;c++)h=w.charCodeAt(c),255<h&&(B[X++]=h&255,h>>=8),B[X++]=h;x(187,(this.l=(this.X=B,this.X.length<<3),this),[0,0,0])}catch(D){N(this,17,D);return}pq(8001,this)}else if(a==u)Q[1].push(b(this,266).length,b(this,35).length,b(this,478),b(this,119).length),x(365,this,Q[2]),this.L[121]&&Dn(b(this,121),8001,this);else{if(a==E){this.K=(Z=(X=Q[2],O((b(this,119).length|0)+2,2)),z=this.K,this);try{y=b(this,428),0<y.length&&e(this,119,O(y.length,2).concat(y),10),e(this,119,O(this.N,1),109),e(this,119,O(this[E].length,1)),w=0,w-=(b(this,119).length|0)+5,W=b(this,266),w+=b(this,94)&2047,4<W.length&&(w-=(W.length|0)+3),0<w&&e(this,119,O(w,2).concat(I(w)),15),4<W.length&&e(this,119,O(W.length,2).concat(W),156)}finally{this.K=z}if(k=((((B=I(2).concat(b(this,119)),B)[1]=B[0]^6,B)[3]=B[1]^Z[0],B)[4]=B[1]^Z[1],this.vC(B)))k="!"+k;else for(w=0,k="";w<B.length;w++)F=B[w][this.O](16),1==F.length&&(F="0"+F),k+=F;return b((x(478,(b(this,((c=k,b(this,266)).length=X.shift(),35)).length=X.shift(),this),X.shift()),this),119).length=X.shift(),c}if(a==GS)Dn(Q[1],Q[2],this);else if(a==rX)return Dn(Q[1],8001,this)}}finally{T=U}}}();var y0,Jj=/./,fq=K.pop.bind((H.prototype.vC=(H.prototype.dv=0,H.prototype.oz=0,H.prototype[xd]=[0,0,1,1,0,1,1],function(T,J,Q,W){if(Q=window.btoa){for(J=(W=0,"");W<T.length;W+=8192)J+=String.fromCharCode.apply(null,T.slice(W,W+8192));T=Q(J).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else T=void 0;return T}),H.prototype)[u]),WN=function(T,J){return(J=Sr())&&1===T.eval(J.createScript("1"))?function(Q){return J.createScript(Q)}:function(Q){return""+Q}}(((y0=(Jj[H.prototype.O]=fq,Q0({get:fq},H.prototype.D)),H.prototype).AO=void 0,p));(g=p.botguard||(p.botguard={}),40)<g.m||(g.m=41,g.bg=wX,g.a=BN),g.RBK_=function(T,J,Q){return[(Q=new H(T,J),function(W){return IX(Q,W)})]};}).call(this);'));
}).call(this);
                                    

#6 JavaScript::Eval (size: 6, repeated: 1) - SHA256: 6d398b904574c56756ae1ec6c15991cd6daad44c1f405f2635cdd4c7332cff29

                                        133120
                                    

Executed Writes (0)



HTTP Transactions (100)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 17 Sep 2022 13:11:24 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Qow6hQAKcZbVnafFzq9nt7HLNzxgIPtOe8BDUJxYMg22S5YjWPVwnw==
Age: 1619


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4010
Expires: Sat, 17 Sep 2022 14:45:13 GMT
Date: Sat, 17 Sep 2022 13:38:23 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 17 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yoR_GI_rSUGrQdjFRwB4DOz8olTDRXPLsrZyIljGim7PS9MKJ2kZPQ==
age: 36461
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 17 Sep 2022 13:38:23 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         82.180.159.105
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-length: 707
date: Sat, 17 Sep 2022 13:38:24 GMT
server: LiteSpeed
location: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
platform: hostinger
content-security-policy: upgrade-insecure-requests


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 17 Sep 2022 13:03:22 GMT
Cache-Control: max-age=3600
Expires: Sat, 17 Sep 2022 13:41:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WLmC3dpR1Xlt6hyGa9rxaiboEOeVIzmaVrRgudZG_ThCaL-rrwTVXg==
Age: 2102


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3865
Cache-Control: 'max-age=158059'
Date: Sat, 17 Sep 2022 13:38:24 GMT
Last-Modified: Sat, 17 Sep 2022 12:33:59 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SV0Li2jH6PjoAzqn8rMY1g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.155.157.101
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8CgU1KgS0nJKYGqPbwv4yI9pYlU=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6262
Expires: Sat, 17 Sep 2022 15:22:47 GMT
Date: Sat, 17 Sep 2022 13:38:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6262
Expires: Sat, 17 Sep 2022 15:22:47 GMT
Date: Sat, 17 Sep 2022 13:38:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6262
Expires: Sat, 17 Sep 2022 15:22:47 GMT
Date: Sat, 17 Sep 2022 13:38:25 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98d68511-1d61-4e7e-9647-8c57b409e85e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10127
x-amzn-requestid: d9194b5e-17bc-4e08-b1bb-97dda96ac30e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknslF7KoAMF8xQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ecb6-56733ebe2050abfd16e2d5a1;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:37:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Meblc1VO8Te1dcBvdt5QsMM6ACc9gnE0OvPomm4vjJD-_IHDefh4zA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:50:26 GMT
age: 56879
etag: "6b17fa76a13bca3d75efb59a2f4b04c4a43477b6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10127
Md5:    67046c783f8a224572cb8c70625cec67
Sha1:   6b17fa76a13bca3d75efb59a2f4b04c4a43477b6
Sha256: 44aed2e381a512e648202a775c70b7e5ebd5ce8f2c8762bb24c8bb8ee9b98f4c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4-H_LbXRjS1PJkVz9OIhwsaPfu8ZlL98zTZG--hdmij9Tc6KtmNSFQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:51:13 GMT
age: 56832
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7788
Md5:    7a22ab7dcdf50f4a297b8e117d336eae
Sha1:   e139a0974317212f094fdbe59e26ca5cf6b9e56d
Sha256: 9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: e1ca6cef-c033-4887-80cf-2014ab8e620c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykn5cEnLIAMFrzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ed09-3afc16cf66fef0e62dd6f3cc;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pPCI5VDX3PIldEnkLv-VNCFWuykiarYQdLYguNTfmbwxYCDVaS2EcA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:01:45 GMT
age: 56200
etag: "28ac45ef155c66dd79a306f14d3b38f597b6a32e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8500
Md5:    d46a910081eb782408f1a2fa3c6aabba
Sha1:   28ac45ef155c66dd79a306f14d3b38f597b6a32e
Sha256: d5787a6a12d275555c627e3245b37d4e751148345a09d5671b343cfebe7173b4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b772c6-a258-481b-9f13-545de0b247e7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9280
x-amzn-requestid: 5259d496-f145-492c-8825-579f5b107ee6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeKEwGsaIAMFR5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632256eb-71f620793182ed767adad592;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:34:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ILrdhzS2nnvB959D0ZhvdD_jqQKVc-gWgnt8NSzlC0s1Fb8vbHGKQQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 12:07:11 GMT
age: 5474
etag: "5dc0ef56244f8a5ddbb7823e25c61312860b2d0f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9280
Md5:    571f174a66e87ea77b36542c6c7a29a4
Sha1:   5dc0ef56244f8a5ddbb7823e25c61312860b2d0f
Sha256: e624e35cc734b8cacc2a8eaa80c81175a879c1195d7a4c65cdcd769836b96a1b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F269c619b-7793-4ef9-ae9d-9464582f4b56.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12221
x-amzn-requestid: ede87d50-8626-40bf-bb1a-d3f95e252f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUrGuqIAMF7tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-2952b2ba7271a5b516295a55;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 39THgu_2WIUs5Hx0CElOMyYu8f9XzzgwzO1naHT1gWJiAyo83lnzuw==
via: 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:50:31 GMT
age: 56874
etag: "5740a5507f21449319597ef49dbb456cbf7372b5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12221
Md5:    1f1583c126dab43886a89cda3f82d760
Sha1:   5740a5507f21449319597ef49dbb456cbf7372b5
Sha256: 3b8ea2490bd6d777ec64358a84a07bdb1ccd4a6dfa30969feed45cfa7725745f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6109
x-amzn-requestid: 271b006e-9d17-46ba-9eed-22fd638c4e9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2AhHZgIAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d039c-444e7d6b22f2a08f7215a986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: clBnXbh8x6GItJ6ObFVEM4Es3jAKlfMS8CMGlU6RBf_eshZ_HfFkOA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:31:13 GMT
age: 54432
etag: "c5b82c9d77851820b8d206573d5c03cd36d27a20"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6109
Md5:    8c35b7f5f8e1b0b24570a41b7d18533a
Sha1:   c5b82c9d77851820b8d206573d5c03cd36d27a20
Sha256: bb2456b31c48e6ebc9595c2bb9972b74531e93dd02ec4571d5af614f2d116ec7
                                        
                                            GET /ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Sat, 17 Sep 2022 13:38:26 GMT
content-length: 948
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e2d-f62"
last-modified: Mon, 04 May 2020 16:09:17 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 4526914
expires: Thu, 07 Sep 2023 13:38:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rj8vPyfXI0V7l5vr36YiXKKPIaApAF0UL%2Fyb%2BBXXC9t7XJSUk8tGFg8VBPJwAY6nfOD6uo0SFgj2ZUL3xUHfCV2JgxB6kRAZp8RUwG0rMU7DOVbLdxmFNP5p1odKX5QqROgBSY4D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74c23e044cf5b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1323)
Size:   948
Md5:    7ebddc52578cfcef8faf6bae26114686
Sha1:   9355e6820363f0c4ae0d31182aae76531bc82f31
Sha256: 2ca0c9f084305f3c1551e1a6eaa92bfa72fc383a706332ff2deaf7c164bef119
                                        
                                            GET /ajax/libs/ekko-lightbox/5.3.0/ekko-lightbox.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://engenhariadeprojetos.com.br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Sat, 17 Sep 2022 13:38:26 GMT
content-length: 2408
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e41-1be7"
last-modified: Mon, 04 May 2020 16:09:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3272711
expires: Thu, 07 Sep 2023 13:38:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zyINQh50mPV5a0hxKb7YDFfiLcbILoGHXIeg2iFRE34I8cX7Uwl9bRQLR1IbDLrG0npj2Ri8DmzX1z1SM%2B71%2FlQCn1ukj44hXlYUqgLL1h%2BAECdpx3jzh6ilx%2F1xoT9%2BT3TA%2B3pD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74c23e044d5d0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5169)
Size:   2408
Md5:    59824135064da3903de78b2f3d81de53
Sha1:   2eec56e04142b7dadc6d7a92bc407c569f57e980
Sha256: e9eebac56eb8d463efb02b00d20232bd46cf2ec1d748e8963f5f7fb3f551b150
                                        
                                            GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://engenhariadeprojetos.com.br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sat, 17 Sep 2022 13:38:26 GMT
content-length: 1119
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-c31"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 2133238
expires: Thu, 07 Sep 2023 13:38:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jzoh7Jcd1lMYOsTZKmYTGiZuZcCZvO5Yda04%2F2AU3AOlBVZV0DTZQnvHzNV6w6gtDRtasdGUhtYPmbbU2tGcwFiUt%2FX3KXdvmRwzmadzqDQNfQi%2B9EhzLf%2Bt3YS9M2rRsUfdOBUn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74c23e045d880b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1119
Md5:    4f44a0c228bda5c64ea8efbd21b7774e
Sha1:   8e0c9785d312d61059dcae563c8b1b7515148267
Sha256: 997de5837e81b616a6b928041c2a9a5c2d1934ccfbad5e0b5344f7008d36820a
                                        
                                            GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://engenhariadeprojetos.com.br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sat, 17 Sep 2022 13:38:26 GMT
content-length: 591
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-514"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1238887
expires: Thu, 07 Sep 2023 13:38:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QVAVd6Km7QIYme58MbXYpP%2BiZBPcDk6vbOzdCCy1o3pF6Mt6VvzO8qxBvSiObuoLTuhr9ZdsU%2B%2FxhhjsoFKTCmbKlZtGP8hFsrFqtyJU%2FnmAq4D3yrkcM53sXggeMB8DU5PrOWgs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74c23e046d8e0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1266)
Size:   591
Md5:    414869f16aa77a65b4928a018f7f1abb
Sha1:   cea521f7a2958a50239526ed6b068f0937527653
Sha256: afee364ce513c6517247b81cce5eb5eadb1dbbb35e439eb3fa97bbc15fac2cd3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=AW-392905247 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 17 Sep 2022 13:38:26 GMT
expires: Sat, 17 Sep 2022 13:38:26 GMT
cache-control: private, max-age=900
last-modified: Sat, 17 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46561
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   46561
Md5:    a03b97fb5b4995290c007ac17cc09ce1
Sha1:   231a1f98d8dc254160ab7403efffdc62175ac910
Sha256: 61b0e066f6c2d18a72eb23fcd7a4203b741ebe9f42443d7036bbfeb4e22eb1c3
                                        
                                            GET /gtag/js?id=UA-173912158-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 17 Sep 2022 13:38:26 GMT
expires: Sat, 17 Sep 2022 13:38:26 GMT
cache-control: private, max-age=900
last-modified: Sat, 17 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42379
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   42379
Md5:    a51fefa5d864d7ed233e64261d225eb6
Sha1:   7155a9c437b0e45eaf0355ae1a24c250a97bdb05
Sha256: afbffa177b9a92b70c4178d349fd7debae21b9f6c6d48273b272d5fab7332993
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/gtranslate/gtranslate-style24.css?ver=e45b7813ccec274f9981b3cc6077a952 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
cache-control: public, max-age=2592000,public
expires: Mon, 17 Oct 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:42:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 237
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   237
Md5:    c91e1bbe4e87ed37df5194bb04fe2aff
Sha1:   5511084b9c7101c0a77d7641f181c07202c2b19f
Sha256: 7d375156d026c3447eb2c3c8465cb3035317180b961b4b627cc7c6f9cf4f63c0
                                        
                                            GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.7 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
cache-control: public, max-age=2592000,public
expires: Mon, 17 Oct 2022 13:38:26 GMT
last-modified: Wed, 14 Sep 2022 11:32:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3024
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21597)
Size:   3024
Md5:    c40b2484620213c139ef6cee332b0056
Sha1:   42b07476c1ead8647b9b47c97b8d6771b852d825
Sha256: 70651b8e761f1b43061ad783d0ec0edd118109b9162e0b7423d24b75eb900855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=e45b7813ccec274f9981b3cc6077a952 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
cache-control: public, max-age=2592000,public
expires: Mon, 17 Oct 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:21:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 10703
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   10703
Md5:    3314a848319230ac733421112382eec5
Sha1:   98a167f06a0aa192b28891f8abbb13045a59cb93
Sha256: 491c2c2340db0cace5815f2434013e7fecb5bd9b1d9a721811603d7aaa485fbd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
cache-control: public, max-age=2592000,public
expires: Mon, 17 Oct 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:29:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 847
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   847
Md5:    86dd416ac852aa6d607ae198e107955c
Sha1:   dfadfe1622beeb2e283392d31299ccb1e67beac7
Sha256: 568346de9ba9e795cd5e8269e3d80542b562d540e539974c9770f52de0497142

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /embedcode/classic-10_7.css HTTP/1.1 
Host: cdn-images.mailchimp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.217.92
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 17 Dec 2015 16:52:30 GMT
x-amz-version-id: null
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 17 Sep 2022 02:29:57 GMT
ETag: W/"ae0fc9b84c30cada1784022044962394"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8ignuUhl2IbnXqdrm723_TBb-l_4UTBXL6nnm1HV4WRZozMEyk1HuQ==
Age: 40116


--- Additional Info ---
Magic:  ASCII text, with very long lines (398)
Size:   1263
Md5:    5e4b40134a8471fe4b1110bf58764e9c
Sha1:   ce96c14babd9c2139a4529fca412d597a63cc2d7
Sha256: 6552a745b136325bc30da26ec6f0aa75e5bc24daa431cfc7eb7b526d57dee82e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/search-filter/style.css?ver=1 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
cache-control: public, max-age=2592000,public
expires: Mon, 17 Oct 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:48:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 226
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   226
Md5:    4220b8e06d9aba2ff11731707fa412d4
Sha1:   229f95e3deb762d7924c0a7b35b214fb0687b66a
Sha256: feb552d9cf0c39534d93899ed46239f506c5f7edee3502650885462ba0dc9271

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?render=6LeS2LsZAAAAAGADLpMb2lb1P1aDLlD9Gb64fp7l&ver=3.0 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Sat, 17 Sep 2022 13:38:26 GMT
date: Sat, 17 Sep 2022 13:38:26 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 587
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (884), with no line terminators
Size:   587
Md5:    d96814156e59c5b2d8c633eb302207d5
Sha1:   2c22ee2e67a3291d910d1fa2d8afd93294af99c7
Sha256: 5a4479577314d7917b8e8ab4a3c4eea7353d4ab0c4b3b3125c2b758fc4900d46
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/4up/files/css/bootstrap.min.css?ver= HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
cache-control: public, max-age=2592000,public
expires: Mon, 17 Oct 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:34:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 20422
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65324)
Size:   20422
Md5:    7e1f46a931f4e6ff4a31e6096f48ce18
Sha1:   5b40a5e245d09c7ed05b6358ec039dab822a132a
Sha256: 45fe1c439e55484f811b5c948a3f6475924e698d085eba8383cc6a550057eb01
                                        
                                            GET /wp-content/themes/4up/files/css/style.css?ver= HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
cache-control: public, max-age=2592000,public
expires: Mon, 17 Oct 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:34:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 5278
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, Unicode text, UTF-8 text
Size:   5278
Md5:    28a8a5f6de8eb448672b2593f311ea38
Sha1:   83ce2438a3b8947e59af45211ba236e57d174f29
Sha256: d2c6116c65fa8f8a4bd1d8459d98a4041db6f75a5755b6c4531683204ca56f1a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/4up/files/css/owl.carousel.min.css?ver= HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
cache-control: public, max-age=2592000,public
expires: Mon, 17 Oct 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:34:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 909
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3184)
Size:   909
Md5:    9a5ce9f8945aede7b06d5fa4c9a8de93
Sha1:   2eb6435bfdc3a670393ccc9b1ee93b5f6defe6cf
Sha256: ef08c98f6f5477d326413f849fa13f18ec985c3f48f85f11c0b181fe7ba915c0
                                        
                                            GET /wp-content/plugins/heateor-social-comments/css/front.css?ver=1.6 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
cache-control: public, max-age=2592000,public
expires: Mon, 17 Oct 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:43:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1557
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3945), with no line terminators
Size:   1557
Md5:    538a5b66122068e3d4a1ce04e96558f9
Sha1:   5196f3b1dc731d86171bd4dc38653a26cf577368
Sha256: 0d9ee0f861ee5e35ffba420a0539c82179dc873f289493c8c7b0906f809b01e6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css?ver=6.1.1 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
cache-control: public, max-age=2592000,public
expires: Mon, 17 Oct 2022 13:38:26 GMT
last-modified: Wed, 14 Sep 2022 11:33:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 10929
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (31020)
Size:   10929
Md5:    936f9920932fe23d98f0016526a54721
Sha1:   84ba7db72b5ed4ce1c540e69336d99440c4221d6
Sha256: bc3c8976eeae4c8b055b843e72ae6982fac56ded723ec62f137554323ca9899a
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:21:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 30027
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30027
Md5:    63373db5c13254717674a1af4cd88aa2
Sha1:   21a1962ab8597d9066640a7157a41370341ff0cf
Sha256: d883f77be0299ddb715175908b03076554287b13f87570369fb58adeade16891

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:21:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3984
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   3984
Md5:    4116c2be947ecf205a0c7fc117ca55f0
Sha1:   0cd8efc9fe349d67a86b49d1e5582a9b21d05add
Sha256: 6b1970b536b88a18b0eb4fe138e677b9736294057660676507fabee57cb0462c
                                        
                                            GET /wp-content/themes/4up/files/js/owl.carousel.js?ver=e45b7813ccec274f9981b3cc6077a952 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:34:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 18936
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (360)
Size:   18936
Md5:    16e3a663eeb8eb00e7ab8c3ef8a0f0a3
Sha1:   2c0fe002ed4bd4f307301c30d062743e43b78601
Sha256: b21bf700bbea6588e15e6d9496e81f4d90faf2810ad06992aada3c8a79907885
                                        
                                            GET /wp-content/themes/4up/files/js/bootstrap.min.js?ver=e45b7813ccec274f9981b3cc6077a952 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:34:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 14557
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57791)
Size:   14557
Md5:    7139d463c1817a75049bde0d196f603e
Sha1:   626a08c930f09500830a27a991d55559f258584e
Sha256: 39da3b93e5e6aefd155afc0fe6302b4d983f394961f49bba9b36aa4b18030ca9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/4up/files/js/script.js?ver=e45b7813ccec274f9981b3cc6077a952 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:34:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 642
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   642
Md5:    1f8f331532765c152e03845bc826db84
Sha1:   1b725dfb77239815a067a1f0ef586aefaa7f7446
Sha256: c9f877b9774a7749c669365d269fcb6b2296d792bdc869d562f8dbb0a8a60382
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:29:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2791
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9680), with no line terminators
Size:   2791
Md5:    fde35ed92585e1580f82fa776b7ee018
Sha1:   761c37116bc1de3752196af765470ffc0ee7ae80
Sha256: 1b436a82b614a6f516dbf635ac4a35e35e50209969268a8afbc08205d2837148
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:29:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3679
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (12211), with no line terminators
Size:   3679
Md5:    314e70832ff244a93a89b28bbbda0e3a
Sha1:   45eada0f645a0ffd86f02a578709bba023342bff
Sha256: 842e55fa7461178fd64c9b23a5e643a7bf29c9ed7bc1c68c453a4c70843183e5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:21:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2349
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6475), with no line terminators
Size:   2349
Md5:    80abfa68756de384aa21eb4bfa1abe6a
Sha1:   02c7125e1cce1a8bdb729e99bf2c19d74b65efea
Sha256: e012a513b2e1c1ba041be3618086803d20629c5fd54a6fd1f13e8268cd326e17

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.3 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:29:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 439
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (999), with no line terminators
Size:   439
Md5:    48557ae2759e292179c3f387b0ae4030
Sha1:   35fbacc402929aaa2ac835f268275fc01848e463
Sha256: b2d66eafabc104a1b628f391e4f0b17804ce7e2bf1c96d732c6bfce50a6170f5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
cache-control: public, max-age=2592000,public
expires: Mon, 17 Oct 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 17:09:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 11857
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size:   11857
Md5:    16d91bc6a6bb3e16a3fdf6e1f53c0adc
Sha1:   1e6e0b5aea0b42352c7afc6296932b473f82e005
Sha256: 367aa536f6136288831bfcb8a0210f0622415dbef99661985e2719507a68e02f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:21:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 6828
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Size:   6828
Md5:    ffb3c14bf1326bb8cd02da142982e2f5
Sha1:   bb3e99fef9fc1dcd1f55bc5f593584ab9daac3cd
Sha256: cd07aa98d73c3294cbf3de7a6538a31051e6702d28942cca0eecbc63ae1a1e21

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js?ver=10bb5618b94c9fc75aed HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Wed, 14 Sep 2022 11:33:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2062
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6521), with no line terminators
Size:   2062
Md5:    057ff6ecb69540177bb8ac4f7bc3455a
Sha1:   020a0574dbbbf7a5f1bd946bfa843801fc0b2269
Sha256: c2cde0a4ec0fb3ba149d50a2ab07097171947b721d5424edab844c72d91a494e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/4up/files/js/jquery-3.4.0.js?ver=e45b7813ccec274f9981b3cc6077a952 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 16:34:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 78872
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   78872
Md5:    6501401d9362c1ebf9e3bf4a8f5be6c7
Sha1:   427ea949442ad10aee1d827e1ec96601e7ac7a7c
Sha256: 045876d3fc90f4ce29ecb532fcd049bf73a06f527447fbcd78e0705bcb5bc912
                                        
                                            GET /css2?family=Roboto&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 17 Sep 2022 13:38:26 GMT
date: Sat, 17 Sep 2022 13:38:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   47410
Md5:    8d3bf4440058241696f0ae1828290097
Sha1:   e838855f823a3ddd1a938878c607d1cbf70edd12
Sha256: e29265a8cad3bcc9b91ff00e369dc663b9d12aa61b78eb1c0001d6bed0d7f04f
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31 HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
                                        
cache-control: public, max-age=604800,public
expires: Sat, 24 Sep 2022 13:38:26 GMT
last-modified: Mon, 05 Sep 2022 17:09:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 96624
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64288)
Size:   96624
Md5:    a9a4d8e499ae678e4299aba785f0644c
Sha1:   02f0c10fdd1c21a4de4b2ebc078f77deb5daf766
Sha256: 1f66f5b7cae781e0beed80ed55f643fc223913733c51ceaabcd6a88ea1bd80a0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/gtranslate/flags/24/pt-br.png HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000,public
expires: Sun, 17 Sep 2023 13:38:27 GMT
last-modified: Mon, 05 Sep 2022 16:42:43 GMT
accept-ranges: bytes
content-length: 1115
date: Sat, 17 Sep 2022 13:38:27 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
vary: Accept,Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   1115
Md5:    6a5938d2e7f7d6f4026d6eb1b4b4f2cd
Sha1:   7a038177fe4deec455d61d3e9c90019fa4727d40
Sha256: 0ab6c46e677fa7e49b6344fcde39c06ff6c014d9163571cdb36f8b5fc59c17eb
                                        
                                            GET /wp-content/plugins/gtranslate/flags/24/en-us.png HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000,public
expires: Sun, 17 Sep 2023 13:38:27 GMT
last-modified: Mon, 05 Sep 2022 16:42:43 GMT
accept-ranges: bytes
content-length: 656
date: Sat, 17 Sep 2022 13:38:27 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
vary: Accept,Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   656
Md5:    ae506a6c014bfeb8d8cbfdfbe94c14c9
Sha1:   f4e74440c4e79e71959b9b8f799f2e8a7e15b7ee
Sha256: bc6dd978e70894c8a0148e6806f4fde9566ee59349adb03c02a61a3b2e25b6f1
                                        
                                            GET /wp-content/plugins/gtranslate/flags/24/es.png HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000,public
expires: Sun, 17 Sep 2023 13:38:27 GMT
last-modified: Mon, 05 Sep 2022 16:42:43 GMT
accept-ranges: bytes
content-length: 873
date: Sat, 17 Sep 2022 13:38:27 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
vary: Accept,Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   873
Md5:    8bf31a924501d6db655fe75696b5f046
Sha1:   94ba0f8d4db0c35c1246a55fcbd6e0ef3cd7f0e2
Sha256: 5ae9561f31199bf8a892f797a69db1bc5d477e2f8318f2b7e95487f025f66f28
                                        
                                            GET /wp-content/themes/4up/files/img/logo.png HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=31536000,public
expires: Sun, 17 Sep 2023 13:38:27 GMT
last-modified: Mon, 05 Sep 2022 16:34:55 GMT
accept-ranges: bytes
content-length: 9690
date: Sat, 17 Sep 2022 13:38:27 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
vary: Accept,Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9690
Md5:    485618b11506059baafaa311ddda54ee
Sha1:   61616ab65dd0e9568dec8136643dbf881f16397d
Sha256: 7f35d7ce33f4cd3f61eec5e300f487ebd67e5f6a1d9d7961e71c9bd86d249a62
                                        
                                            GET /releases/v5.8.1/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://engenhariadeprojetos.com.br
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.63.54
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Sat, 17 Sep 2022 13:38:27 GMT
content-length: 74256
x-amz-id-2: K58SWHIhlsjpxVFpoAPfP8vs3nUt91mWrOwUkoJED4Le1+7aSfP9KgrLhnjnRveTS1rZg7soUaM=
x-amz-request-id: CHQDZJDR0V3FGTER
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:47:00 GMT
etag: "418dad87601f9c8abd0e5798c0dc1feb"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 50031
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SecTp7ppqQkcu2YgFARKiU9RoDy9G2AwI%2BSRlOsscnyvUfcD%2BqZ8TaKMqV57uy2nUL6Mag7qEQomAo73NhQImSjybm8KK4YDy%2FrtTa3r5jopCYgNLmg3kA4T04yvfWf09zN19%2FPX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74c23e09dc071c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761\012- data
Size:   74256
Md5:    418dad87601f9c8abd0e5798c0dc1feb
Sha1:   a6b003ef506e92d05cde73adf67487d7fd7ec6df
Sha256: f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe
                                        
                                            GET /translate_static/css/translateelement.css HTTP/1.1 
Host: translate.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.74
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 13:20:22 GMT
expires: Sat, 17 Sep 2022 14:20:22 GMT
cache-control: public, max-age=3600
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
age: 1085
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18670)
Size:   3619
Md5:    897ba9a21d9625286674da769dacc2e2
Sha1:   84b4923ab7dee562395160824d53496314499b77
Sha256: 696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
                                        
                                            GET /wp-content/themes/4up/files/img/img-footer.png HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: image/webp
                                        
cache-control: public, max-age=10368000
expires: Sun, 15 Jan 2023 13:38:27 GMT
last-modified: Wed, 14 Sep 2022 13:39:57 GMT
accept-ranges: bytes
content-length: 15326
date: Sat, 17 Sep 2022 13:38:27 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
vary: Accept,Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   15326
Md5:    1213788245a5352b8d0b3780e382b89e
Sha1:   cfd2c0cc88c30e89810058be95b505a9ba2ac063
Sha256: 5784c985ae318c2909b95365df62cdffb260a0c88f6774cc057b84d805875b6e
                                        
                                            GET /wp-content/themes/4up/files/img/4up.png HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: image/webp
                                        
cache-control: public, max-age=10368000
expires: Sun, 15 Jan 2023 13:38:27 GMT
last-modified: Wed, 14 Sep 2022 13:33:55 GMT
accept-ranges: bytes
content-length: 32962
date: Sat, 17 Sep 2022 13:38:27 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
vary: Accept,Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   32962
Md5:    727aa4b6db8678534ae0f841493c0373
Sha1:   3c758fb7344a392037d69cfca63fe9083db650c6
Sha256: 49216a0756ef701c7513af2a8381003cd3eaba53019b8367bb919317683a1eee
                                        
                                            GET /wp-content/themes/4up/files/img/popupsolar.png HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.159.105
HTTP/2 200 OK
content-type: image/webp
                                        
cache-control: public, max-age=10368000
expires: Sun, 15 Jan 2023 13:38:27 GMT
last-modified: Wed, 14 Sep 2022 13:42:08 GMT
accept-ranges: bytes
content-length: 87342
date: Sat, 17 Sep 2022 13:38:27 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
vary: Accept,Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   87342
Md5:    3a3576b9f4407f0abf3c1a8cf99bf467
Sha1:   e73d8352ed6dec0ff317aa60ecb79285f130a573
Sha256: eaf54fe2cec51158e1c4e7034ed10db46851233033643100b7d4bc209b11607c
                                        
                                            GET /releases/v5.8.1/webfonts/fa-brands-400.woff2 HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://engenhariadeprojetos.com.br
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.63.54
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Sat, 17 Sep 2022 13:38:27 GMT
content-length: 74768
x-amz-id-2: HDFDV/jx0d85bGmt6vDYNRipSCxWKjY8YD0CYU4LTC4vcWItt8eXuuDY/FJlRIrxq6f+S4rhMjY=
x-amz-request-id: CHQCY5BK7JW1XH37
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:46:59 GMT
etag: "5e2f92123d241cabecf0b289b9b08d4a"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 50031
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L%2BSJRcFDVhCPN8T%2BrDTDBsEdViUdN%2BI%2FhF9HjV05O7N8GDgL%2BeNTvltcQEV32Ut7vFLEmUHEOu92jdVVAnVPhLRvJgbU5%2Fp%2Bo5ohTA85fzWc3MsnqTH8UWlyCKovpoatRgH5aL89"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74c23e0a2c3e1c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 74768, version 329.-17761\012- data
Size:   74768
Md5:    5e2f92123d241cabecf0b289b9b08d4a
Sha1:   7f6c682ade204e641aed8f471064c56b6eddc263
Sha256: dc64d7192f84497cacad5c10aef682562c24aa6124270f85fe247e223607f3ed
                                        
                                            GET /mcjs-connected/js/users/f4e83d58c9d24c73643b2c17b/e00c164d18da6384ded47c75a.js HTTP/1.1 
Host: chimpstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         96.6.17.210
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
x-amz-id-2: FfIC7J36+Dzkpy07xU7HrwdxZyPFF2pJxoRZM8U6ma8xkGVKdpTWNb7VdlNHwg5or4fiKIWTtsU=
x-amz-request-id: JK5NGAWYBS9N8RTX
Last-Modified: Mon, 29 Jun 2020 19:35:34 GMT
ETag: "104d46a3208b40e8ded389332f5a78a3"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 50
X-EdgeConnect-MidMile-RTT: 0, 18
X-EdgeConnect-Origin-MEX-Latency: 110, 99
Cache-Control: max-age=1761
Expires: Sat, 17 Sep 2022 14:07:48 GMT
Date: Sat, 17 Sep 2022 13:38:27 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text
Size:   50
Md5:    104d46a3208b40e8ded389332f5a78a3
Sha1:   4ab55ccb2972e9a3cb62c65c97308c2450a682bb
Sha256: f6e4f5edb3194334a199f0bf80b38d92a0b7388330fbce94c8c0fb2f852c171f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://engenhariadeprojetos.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 237859
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://engenhariadeprojetos.com.br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
age: 288058
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (581)
Size:   157726
Md5:    6519c7c04cf32a57b1c5ee45a73c233e
Sha1:   4939bb921988e9eb13780cc2244f3099776e9bfb
Sha256: 8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b
                                        
                                            GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/styles__ltr.css HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24251
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:19:12 GMT
expires: Thu, 14 Sep 2023 05:19:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
age: 289155
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (52762), with no line terminators
Size:   24251
Md5:    f2d649025c814be9c33f166a5e04fe88
Sha1:   26bf59de631415927ba2c6c9e44fe9c763f95313
Sha256: f95ec963b7657097e1ef827fc07d96eda5b63f7d3e17b5a1b5eeb7a8d0b67921
                                        
                                            GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
age: 288058
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (581)
Size:   157726
Md5:    6519c7c04cf32a57b1c5ee45a73c233e
Sha1:   4939bb921988e9eb13780cc2244f3099776e9bfb
Sha256: 8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 12:31:58 GMT
expires: Sun, 17 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 3990
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 00:48:31 GMT
expires: Sat, 16 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 132597
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size:   15552
Md5:    285467176f7fe6bb6a9c6873b3dad2cc
Sha1:   ea04e4ff5142ddd69307c183def721a160e0a64e
Sha256: 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
                                        
                                            GET /recaptcha/api2/logo_48.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 20:02:15 GMT
expires: Mon, 19 Sep 2022 20:02:15 GMT
cache-control: public, max-age=604800
age: 408973
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   2228
Md5:    ef9941290c50cd3866e2ba6b793f010d
Sha1:   4736508c795667dcea21f8d864233031223b7832
Sha256: 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sat, 17 Sep 2022 12:41:12 GMT
expires: Sat, 17 Sep 2022 14:41:12 GMT
cache-control: public, max-age=7200
age: 3436
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            GET /dan/auth.php?md=SoPFUiGWcfBMnJYaRvTX&SoPFUiGWcfBMnJYaRvTX HTTP/1.1 
Host: engenhariadeprojetos.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         82.180.159.105
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://engenhariadeprojetos.com.br/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
date: Sat, 17 Sep 2022 13:38:26 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size:   20008
Md5:    553440220cc64f9e0d5b3e62fe03b630
Sha1:   fde21ccde13783f2c272273ec03c6ab1cf3695dc
Sha256: 4812b70b819c63a39c07c180c37b713f1215937830cc4492e3176a4e8249e283
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/392905247/?random=1663421890972&cv=9&fst=1663421890972&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9e0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fengenhariadeprojetos.com.br%2Fdan%2Fauth.php%3Fmd%3DSoPFUiGWcfBMnJYaRvTX%26SoPFUiGWcfBMnJYaRvTX&tiba=P%C3%A1gina%20n%C3%A3o%20encontrada%20%E2%80%93%20Engenharia%20de%20Projetos&auid=1896770844.1663421891&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.194
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 13:38:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1113
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 17-Sep-2022 13:53:28 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2502), with no line terminators
Size:   1113
Md5:    ccf063613543c06e2664d296b7ae5a7c
Sha1:   d044ae1cd199b28718a7df08628357cc4059657f
Sha256: 2df2b0f20ffd88931fa8657d6a28e71829a79182b8865423a44c85c26151cf8e
                                        
                                            GET /pagead/viewthroughconversion/10787200650/?random=1663421891020&cv=9&fst=1663421891020&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fengenhariadeprojetos.com.br%2Fdan%2Fauth.php%3Fmd%3DSoPFUiGWcfBMnJYaRvTX%26SoPFUiGWcfBMnJYaRvTX&tiba=P%C3%A1gina%20n%C3%A3o%20encontrada%20%E2%80%93%20Engenharia%20de%20Projetos&auid=1896770844.1663421891&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.194
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 13:38:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1097
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 17-Sep-2022 13:53:28 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2444), with no line terminators
Size:   1097
Md5:    e7b7b72594ffa0179a9f0a6daeff879f
Sha1:   865edaa8be6b28bba4f4258a4eeb40e7ed2feb5c
Sha256: b829363f3d96c9240118ba6d2f3b82256981cfbe0432f1c0153b175ad5e03e04
                                        
                                            GET /pagead/viewthroughconversion/392905247/?random=1663421891024&cv=9&fst=1663421891024&num=1&fmt=3&value=0&label=YLHWCI2HxKMCEJ-ErbsB&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fengenhariadeprojetos.com.br%2Fdan%2Fauth.php%3Fmd%3DSoPFUiGWcfBMnJYaRvTX%26SoPFUiGWcfBMnJYaRvTX&tiba=P%C3%A1gina%20n%C3%A3o%20encontrada%20%E2%80%93%20Engenharia%20de%20Projetos&auid=1896770844.1663421891&hn=www.google.com&bttype=purchase&gcp=1&ct_cookie_present=1&async=1 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.194
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 13:38:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 17-Sep-2022 13:53:28 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/392905247/?random=1663421890975&cv=9&fst=1663421890975&num=1&fmt=3&label=wQjqCP-ttf4BEJ-ErbsB&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9e0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fengenhariadeprojetos.com.br%2Fdan%2Fauth.php%3Fmd%3DSoPFUiGWcfBMnJYaRvTX%26SoPFUiGWcfBMnJYaRvTX&tiba=P%C3%A1gina%20n%C3%A3o%20encontrada%20%E2%80%93%20Engenharia%20de%20Projetos&auid=1896770844.1663421891&gtm_ee=1&hn=www.google.com&gcp=1&ct_cookie_present=1&async=1 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.194
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 13:38:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 17-Sep-2022 13:53:28 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/1p-user-list/10787200650/?random=1663421891020&cv=9&fst=1663419600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fengenhariadeprojetos.com.br%2Fdan%2Fauth.php%3Fmd%3DSoPFUiGWcfBMnJYaRvTX%26SoPFUiGWcfBMnJYaRvTX&tiba=P%C3%A1gina%20n%C3%A3o%20encontrada%20%E2%80%93%20Engenharia%20de%20Projetos&async=1&fmt=3&is_vtc=1&random=3876751545&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 13:38:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/392905247/?random=1663421890972&cv=9&fst=1663419600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9e0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fengenhariadeprojetos.com.br%2Fdan%2Fauth.php%3Fmd%3DSoPFUiGWcfBMnJYaRvTX%26SoPFUiGWcfBMnJYaRvTX&tiba=P%C3%A1gina%20n%C3%A3o%20encontrada%20%E2%80%93%20Engenharia%20de%20Projetos&async=1&fmt=3&is_vtc=1&random=2379334494&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 13:38:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-conversion/392905247/?random=1663421890975&cv=9&fst=1663421890975&num=1&label=wQjqCP-ttf4BEJ-ErbsB&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9e0&sendb=1&ig=0&data=event%3Dconversion&frm=0&url=https%3A%2F%2Fengenhariadeprojetos.com.br%2Fdan%2Fauth.php%3Fmd%3DSoPFUiGWcfBMnJYaRvTX%26SoPFUiGWcfBMnJYaRvTX&tiba=P%C3%A1gina%20n%C3%A3o%20encontrada%20%E2%80%93%20Engenharia%20de%20Projetos&auid=1896770844.1663421891&gtm_ee=1&hn=www.google.com&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://engenhariadeprojetos.com.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 13:38:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   63
Md5:    0339f8f57d1bf75003db591e28957e45
Sha1:   ae2286e497c9f76a02cb40c40a674b73bd293b76
Sha256: 609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
                                        
                                            GET /pagead/1p-conversion/392905247/?random=1663421891024&cv=9&fst=1663421891024&num=1&value=0&label=YLHWCI2HxKMCEJ-ErbsB&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fengenhariadeprojetos.com.br%2Fdan%2Fauth.php%3Fmd%3DSoPFUiGWcfBMnJYaRvTX%26SoPFUiGWcfBMnJYaRvTX&tiba=P%C3%A1gina%20n%C3%A3o%20encontrada%20%E2%80%93%20Engenharia%20de%20Projetos&auid=1896770844.1663421891&hn=www.google.com&bttype=purchase&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://engenhariadeprojetos.com.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 13:38:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   63
Md5:    0339f8f57d1bf75003db591e28957e45
Sha1:   ae2286e497c9f76a02cb40c40a674b73bd293b76
Sha256: 609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 17 Sep 2022 13:38:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /g/collect?v=2&tid=G-18E1NZQ1T3&gtm=2oe9e0&_p=1286573709&cid=1693852563.1663421891&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663421890&sct=1&seg=0&dl=https%3A%2F%2Fengenhariadeprojetos.com.br%2Fdan%2Fauth.php%3Fmd%3DSoPFUiGWcfBMnJYaRvTX%26SoPFUiGWcfBMnJYaRvTX&dt=P%C3%A1gina%20n%C3%A3o%20encontrada%20%E2%80%93%20Engenharia%20de%20Projetos&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://engenhariadeprojetos.com.br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.32.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://engenhariadeprojetos.com.br
date: Sat, 17 Sep 2022 13:38:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5983
x-amzn-requestid: ba84a9a2-3ebe-4dc9-9604-98d5cccb4f2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFxpoAMFrpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-55cd6d0a6e39357c226dd21d;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: J2fbb_t40ioxBvoRAT28rW4ujQw-qpPX3mMN97GBdEK_D8_oDz2g4g==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:51:07 GMT
age: 56845
etag: "b9c4cd422b818c859ac6ca928bc9e932a578ce30"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5983
Md5:    e1b42bfa9fc6593b0444391dc260329a
Sha1:   b9c4cd422b818c859ac6ca928bc9e932a578ce30
Sha256: 89eee7200bf7a8bf100f64aee2208d7852265a85feb133fc87846b15cd96e842
                                        
                                            GET /releases/v5.8.1/css/all.css HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://engenhariadeprojetos.com.br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.63.54
HTTP/2 200 OK
content-type: text/css
                                        
date: Sat, 17 Sep 2022 13:38:26 GMT
x-amz-id-2: mtwIifVjiF//pI344k+wcN01o/4oX1w6I3GOatwPQmKRDF+Fu7hl2GJJ2j6+I0hXKDOQlbI5zjw=
x-amz-request-id: VTZ23DM4PVFDKPEF
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:46:39 GMT
etag: W/"e4c542a7f6bf6f74fdd8cdf6e8096396"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 50031
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MG%2B79Oaw7eNtwe5jQqDF%2FmKH0QHTbyiVAIDpXZ2X6nj2rt6S4r%2FUdOWOMwYC%2BW7a65DZjLP7uimtCZGTQOp%2B3sE37qfeSAvJbW83dFd4%2FvL%2BWV0RSpLpten9PBPQ9Yav0TCuGTkq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74c23e042ec51c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1 
Host: translate.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://engenhariadeprojetos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.46
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 17 Sep 2022 13:38:26 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+004; expires=Mon, 16-Sep-2024 13:38:26 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---