www.rindegastos.com/document/
143.204.55.33301 Moved Permanently 167 B URL HTTP/1.1 www.rindegastos.com/document/
IP 143.204.55.33:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /document/ HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 18 Jan 2023 18:48:29 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://www.rindegastos.com/document/
X-Cache: Redirect from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lJ_076SQ9vvE-8xTJiTVviyTCqvSNLVP44ElFKNdQBlu3TJBYfrfaQ==
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5756
Expires: Wed, 18 Jan 2023 20:24:26 GMT
Date: Wed, 18 Jan 2023 18:48:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash bb0c8d0984a1f09a012961a54cda03c6
1a8ad450a0241554ee4fc7d02fac7b83529e60f6
eee3ca879a67cc25ea89cb83de9521eea1b82845705c3e82169d4787ecb7dd3a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EEE3CA879A67CC25EA89CB83DE9521EEA1B82845705C3E82169D4787ECB7DD3A"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2832
Expires: Wed, 18 Jan 2023 19:35:42 GMT
Date: Wed, 18 Jan 2023 18:48:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 18:34:26 GMT
content-type: application/json
age: 844
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17845
Expires: Wed, 18 Jan 2023 23:45:55 GMT
Date: Wed, 18 Jan 2023 18:48:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nqdIK6hB+A8nepu/zCYox2+b7W2ezYzC89jWTOudd89wcJIe6W1K1BXqlRp83UHun4qQpy3mS9o=
x-amz-request-id: 5NVSTBC373RD98Q0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 17:56:46 GMT
age: 3104
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash a6d4f41db9e2cb7c0a7733aa503b2a17
4ed987bad92e70efc3b87f0fbb8691203c9d3287
93a0e0ab6c158917ea44e56a30b90a3efb52e23d96a1eb3a861bb4ad76e514d7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148330
Date: Wed, 18 Jan 2023 18:48:30 GMT
Etag: "63c7df67-1d7"
Expires: Fri, 20 Jan 2023 12:00:40 GMT
Last-Modified: Wed, 18 Jan 2023 12:00:39 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1R64_nsqAnJT8QafJ306MhzTX9O2mAMGEr-fGchrZF5W6YYNJcQhSA==
Age: 1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 18:48:30 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
js-na1.hs-scripts.com/3276114.js
104.17.210.204200 OK 1.0 kB URL HTTP/2 js-na1.hs-scripts.com/3276114.js
IP 104.17.210.204:0
File type ASCII text, with very long lines (2874), with no line terminators
Hash 53753b758f646dbc0164fe26ab59f12f
a652711a1c7c1b313b0bd679097b52efaa7a9acf
6f2f0940dce8fad99f1a4f95a8d1603e773fbb8943d0555d9431ac1293fffc28
GET /3276114.js HTTP/1.1
Host: js-na1.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:30 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://www.rindegastos.com
access-control-max-age: 3600
cache-control: public, max-age=30
cf-bgj: minify
cf-polished: origSize=2985
last-modified: Wed, 18 Jan 2023 14:13:36 GMT
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 5354f320-7133-4595-a7f2-d762876aeb3d
x-trace: 2B8E54B234E6CE79872F7EAB977D6DC2A49086EC72000000000000000000
cf-cache-status: HIT
age: 5
server: cloudflare
cf-ray: 78b981584d32b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaBTMnFcQ.woff2
216.58.207.227200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaBTMnFcQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 35848, version 1.0\012- data
Hash 12bb96876fc38b93380a6cc76267bd0b
8a71285da71a177d92bb605fb89825f199a81b5b
7da5e32922590d2ca6057bd7f2882269bdbcce1f53d3b622cfa1b7fcb95cca5b
GET /s/nunito/v25/XRXV3I6Li01BKofINeaBTMnFcQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 21:09:39 GMT
expires: Tue, 16 Jan 2024 21:09:39 GMT
cache-control: public, max-age=31536000
age: 164331
last-modified: Mon, 18 Jul 2022 19:34:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 17:48:57 GMT
age: 3574
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 79af32d8e279b4cfec147ab51cb6fcb3
d726903292bd1e08a6d9fe0719d2cd5b33dc5fe6
bfcb2d8f14d89736ac6b771f1618a8fc5e707691d60807a574fb719c8e9393ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2037
Cache-Control: max-age=139934
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:31 GMT
Etag: "63c7b6a8-1d7"
Expires: Fri, 20 Jan 2023 09:40:45 GMT
Last-Modified: Wed, 18 Jan 2023 09:06:48 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
www.rindegastos.com/runtime.b95b2890cfd3ed70.js
143.204.55.45200 OK 1.9 kB URL HTTP/2 www.rindegastos.com/runtime.b95b2890cfd3ed70.js
IP 143.204.55.45:0
File type ASCII text, with very long lines (3390)
Hash a807de6d8e6b165a444d73ce298c0119
a9c31d3bd1c4a32d0be4a1d79f67afd1fb16cfd7
b31ab6530b01f1dd17809ba6778298eca29c080399dfecdc2a91441ad5df383a
GET /runtime.b95b2890cfd3ed70.js HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/document/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 18 Jan 2023 18:48:27 GMT
last-modified: Mon, 16 Jan 2023 13:30:14 GMT
etag: W/"435d89e622924a1469495868771e6f13"
x-amz-server-side-encryption: AES256
server: AmazonS3
cache-control: public, max-age=0, s-maxage=600
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2P03MwCInXCehXjZnuA4-gdN61AqB8bYS4tOps4b-AE8Mm18mcNekw==
age: 4
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 773596e36fe4af70225f1ee08e977461
5595433fd09a22008b2c739f6626aef116ad5285
fb18080471e9a54e7d1c060d2e26b023f09c135e0d195e48917cd064549d7fdc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.hsadspixel.net/fb.js
104.17.114.176200 OK 88 kB IP 104.17.114.176:0
File type ASCII text, with very long lines (5960)
Hash 07529ae3ccfc41db509b3b389ce8bb4a
3105d2819e349557a84368be6bfd897b981789c7
8fd8709f5666b83c9f870a7ea59a9c31702cb0cfdfaea556128b2a7bd82eee55
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Tue, 03 Jan 2023 01:54:30 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: Pzk5Y6yW4FTLubLBTP3MgGAHjRxytAJ0
etag: W/"83a5a8783c71c1074cc34ecd8c8615de"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 305fa1d7f9df4e42edba1bba6d0ebb56.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P4
x-amz-cf-id: eM8dz_xQ9JP6qbtRjaHa0U9IDVC4eKvp5CXqRDlGDJIELQvqPWOD7g==
age: 219
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.304/bundles/pixels-release.js&cfRay=78b69e5de8ceb509-OSL
x-hs-target-asset: adsscriptloaderstatic/static-1.304/bundles/pixels-release.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 78b9815a98b5b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash e1d0a943e8f5e6aac39de98d318e4008
fe73305134744cb7611e80caf36744d4ee5f2342
6fda1beb7d0ce8406529ea6fb0dddba426ce499551d08e95cc35867aa55631f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2275
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:31 GMT
Last-Modified: Wed, 18 Jan 2023 18:10:36 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 773596e36fe4af70225f1ee08e977461
5595433fd09a22008b2c739f6626aef116ad5285
fb18080471e9a54e7d1c060d2e26b023f09c135e0d195e48917cd064549d7fdc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 309180d35b92d3617160a20d1421d5d7
daf1bbbedbf521e82bf3170fe86820245a1870df
dea6f607cfe93e8d52b4f94d010b72556dd144fcea3aec0f1b56484f12156022
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 18:48:31 GMT
Last-Modified: Wed, 18 Jan 2023 18:15:28 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8aZLWHRkfvJ_6_HkQZv_TxTeowDdMKGS-7M4AzThzXRr9-GK5Y0BuA==
Age: 1984
api.hubspot.com/livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11763&mobile=false&messagesUtk=b01867ecfb8c4d9595adf236cb3d56b3&traceId=b01867ecfb8c4d9595adf236cb3d56b3
104.19.154.83200 OK 18 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11763&mobile=false&messagesUtk=b01867ecfb8c4d9595adf236cb3d56b3&traceId=b01867ecfb8c4d9595adf236cb3d56b3
IP 104.19.154.83:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11763&mobile=false&messagesUtk=b01867ecfb8c4d9595adf236cb3d56b3&traceId=b01867ecfb8c4d9595adf236cb3d56b3 HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.rindegastos.com/
Origin: https://www.rindegastos.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:32 GMT
content-type: text/plain; charset=utf-8
content-length: 18
cf-ray: 78b9815f8969b515-OSL
access-control-allow-origin: https://www.rindegastos.com
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 54fdc614-f487-4134-b35b-2c80cb329a9c
x-trace: 2B2738DD39BD308F5D523E9FF486111156B648E2FF000000000000000000
set-cookie: __cf_bm=iF8eiXYw9RKtEfkXzbEF4yrnG7J2Cqjm7.FOlVzeLp4-1674067712-0-AZ8RUKFW0SDEYPK+gbWxsqUulvvTRT1CGrLoI7sPH5rDS1b79lXMgy6e+m6FXQdox3K/Rz+wmcpmTGYMOcu9qtE=; path=/; expires=Wed, 18-Jan-23 19:18:32 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=clqrtBuXkgoLFnQfXGPpm50t09KoFASsDSrKFopNmAkIJfYLdaPXU3myJfulxfR%2BDbDOLn49xzLMW19R73Sek9ESNPX7k0Ed2zDDw1N%2BNayRNAHj2E1UjTvbIFLyOdNmMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ppstatic.s3.amazonaws.com/expenses/images/favicon2.ico
54.231.163.89200 OK 1.2 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/images/favicon2.ico
IP 54.231.163.89:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash ab1b5d3ea1643adbed14b554fd131466
e3b69849873f35a32c98b1fea73df9bb8aaed225
ddb06601aec50dc72f2770116d568ede3292901ef3370f8616f1a8bb4724a4d3
GET /expenses/images/favicon2.ico HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: V5bwlXPZFLARgauC7euWMyOb9aBt8M4NNrZbBxM+ek4kE4VTYeJludVnZqPiNqPmr3dDkHYbfYw=
x-amz-request-id: 6ZBM0FCAXNP4RJ7A
Date: Wed, 18 Jan 2023 18:48:33 GMT
Last-Modified: Wed, 13 Dec 2017 14:12:22 GMT
ETag: "ab1b5d3ea1643adbed14b554fd131466"
Cache-Control: no-cache
x-amz-version-id: hYFIoSr0PhyTkwLVbxMVAttv52IimHjq
Accept-Ranges: bytes
Content-Type: image/x-icon
Server: AmazonS3
Content-Length: 1150
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 5fdf56bf2697ccd0195baad3a7aaae84
456e615d8d01f8d13cb6404111c2d5bf165ce995
a498ed67be74306ed6dab5ceec79c2fb3391a9c62efb8289dacb06ff0524ad75
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 18:48:32 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 15 Jan 2023 09:46:11 GMT
Expires: Sun, 22 Jan 2023 09:46:10 GMT
Etag: "456e615d8d01f8d13cb6404111c2d5bf165ce995"
Cache-Control: max-age=312457,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78b9816098a8b50c-OSL
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash e1d0a943e8f5e6aac39de98d318e4008
fe73305134744cb7611e80caf36744d4ee5f2342
6fda1beb7d0ce8406529ea6fb0dddba426ce499551d08e95cc35867aa55631f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2276
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:32 GMT
Last-Modified: Wed, 18 Jan 2023 18:10:36 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash e1d0a943e8f5e6aac39de98d318e4008
fe73305134744cb7611e80caf36744d4ee5f2342
6fda1beb7d0ce8406529ea6fb0dddba426ce499551d08e95cc35867aa55631f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 189
Cache-Control: max-age=169446
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:32 GMT
Etag: "63c83129-118"
Expires: Fri, 20 Jan 2023 17:52:38 GMT
Last-Modified: Wed, 18 Jan 2023 17:49:29 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280
api.hubspot.com/livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11763&mobile=false&messagesUtk=b01867ecfb8c4d9595adf236cb3d56b3&traceId=b01867ecfb8c4d9595adf236cb3d56b3
104.19.154.83200 OK 1.5 kB URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11763&mobile=false&messagesUtk=b01867ecfb8c4d9595adf236cb3d56b3&traceId=b01867ecfb8c4d9595adf236cb3d56b3
IP 104.19.154.83:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2954), with no line terminators
Hash b4540f8056bb1dbefdf119704bf1b792
9a963b83354d1e3ce6040b4f0f1cd200adb9e037
058b0ce5993eb69d042723e173c1cb22ac8d5f15d3688b4f187ae54fc586ebae
GET /livechat-public/v1/message/public?portalId=3276114&conversations-embed=static-1.11763&mobile=false&messagesUtk=b01867ecfb8c4d9595adf236cb3d56b3&traceId=b01867ecfb8c4d9595adf236cb3d56b3 HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.rindegastos.com/redirect
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:32 GMT
content-type: application/json;charset=utf-8
content-length: 1456
cf-ray: 78b981609abdb515-OSL
access-control-allow-origin: https://www.rindegastos.com
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 94e48081-774b-4c8a-b7b2-ae52ea70adeb
x-trace: 2B887BDEC1AFE172EAB28AD16B6D16507A401B6C38000000000000000000
set-cookie: __cf_bm=MQWN59rizh0C9eNPLyflJRsvSsT1z_5dCsGgF7u45oo-1674067712-0-AUlTE96JwdVQF00yWjqA9ZAHXgn5waC8FXIBPFIA/seL4tkPcjAV1U68y8il1ffwnCh+/yLNtLT1uZqP//8+qpU=; path=/; expires=Wed, 18-Jan-23 19:18:32 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xf7%2B1il9mskepuBkWHMkefi9t8KiVU%2FU2%2Fk8vo%2F71gOUUY1nPjPleO5YyfgsCaxlexS2mK%2F0oIqX9cKf9j9gXhg3h1BeATFxzMOSnL3k2Ljbz7P80FYUMaTSD5cdCX0V%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1674067500000/3276114.js
104.17.70.176200 OK 21 kB URL HTTP/2 js.hs-analytics.net/analytics/1674067500000/3276114.js
IP 104.17.70.176:0
File type ASCII text, with very long lines (64494)
Hash 0e956b103df00b1b8bd9972e83f516e1
53cfc261ad179b179a71f316aa78cac8ee07cb44
2f7d60f627abc2d69b1945077088eb680040ab2ca0256f8155f6a63f1c0f4d4c
GET /analytics/1674067500000/3276114.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:31 GMT
content-type: text/javascript
x-amz-id-2: 6eLkBeXfxLTnvqEUHHCGv7ZchyGYiDXNUn7VwsGexURWeggcM4ACtkm0Ed+GPxnAQVNkB9fQLDI=
x-amz-request-id: HDP2P9Q3EY610ES4
last-modified: Tue, 17 Jan 2023 22:12:06 GMT
etag: W/"473e12fe4151d685b506c859f3011acd"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Wed, 18 Jan 2023 18:53:27 GMT
cf-cache-status: HIT
age: 4
server: cloudflare
cf-ray: 78b9815dfde20b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
95.101.11.48200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 95.101.11.48:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=12402
date: Wed, 18 Jan 2023 18:48:32 GMT
content-length: 4777
x-cdn: AKAM
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 18 Jan 2023 18:41:07 GMT
expires: Wed, 18 Jan 2023 20:41:07 GMT
cache-control: public, max-age=7200
age: 445
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 948e6eab4e0fbb57ec991519b205a62b
d85968f393cf652627a14b5afd00e17d46bdfa13
4b1931c60a3b716142ac04c9b573f15dc7cef2297b62c1fad93d132cc6c05391
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2889
Cache-Control: max-age=137208
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:32 GMT
Etag: "63c7a8af-1d7"
Expires: Fri, 20 Jan 2023 08:55:20 GMT
Last-Modified: Wed, 18 Jan 2023 08:07:11 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ffc62725eb8d702d9aebcb456457fb2
0b5f6c5f99abfc8cc37016f8b76e19097c3ba294
f0d158f00224cad7d42c75dfdbbbe4f7ab6a4cdb221d3faa5aeb9917d98d4f0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 1AHO2dvTcchHLzX3QpSsFgsHVdhW0uqYb7i6OQtae78npxNT7X02zuXcaF411MJ1TAqtLWjIBZTpG4tOskE4VA==
content-length: 27815
x-fb-trip-id: 1904183273
date: Wed, 18 Jan 2023 18:48:32 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 38de5599544ffa789bad3f8686808c5e
fa442ea8ec124d47130fe75d0e848330a279e19e
d0344819ecf4cb1795fcd668d5f1a806121a48e174588ecd2eb8751595ac61ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/950321305/?random=1674067711844&cv=11&fst=1674067711844&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&auid=309543641.1674067712&rfmt=3&fmt=4
142.250.74.98200 OK 903 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/950321305/?random=1674067711844&cv=11&fst=1674067711844&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&auid=309543641.1674067712&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (1915), with no line terminators
Hash 39c8ad941c71230cf78bb4a05ad29b40
6a6568551f7878a2c6bd58d3131a5b727ff56e07
221714f6e0ad097c92cc402554cc25ddb718a2992913216d39dafec8961cd99b
GET /pagead/viewthroughconversion/950321305/?random=1674067711844&cv=11&fst=1674067711844&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&auid=309543641.1674067712&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 18:48:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 903
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 18-Jan-2023 19:03:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 948e6eab4e0fbb57ec991519b205a62b
d85968f393cf652627a14b5afd00e17d46bdfa13
4b1931c60a3b716142ac04c9b573f15dc7cef2297b62c1fad93d132cc6c05391
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2889
Cache-Control: max-age=137208
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:32 GMT
Etag: "63c7a8af-1d7"
Expires: Fri, 20 Jan 2023 08:55:20 GMT
Last-Modified: Wed, 18 Jan 2023 08:07:11 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-0CNWYJZDVN&cid=1071305514.1674067712>m=2oe1a1&aip=1&z=561874477
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-0CNWYJZDVN&cid=1071305514.1674067712>m=2oe1a1&aip=1&z=561874477
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-0CNWYJZDVN&cid=1071305514.1674067712>m=2oe1a1&aip=1&z=561874477 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 18:48:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/66325/domain/rindegastos.com/token
54.230.111.78200 OK 534 B URL HTTP/2 cdn.linkedin.oribi.io/partner/66325/domain/rindegastos.com/token
IP 54.230.111.78:0
Hash 5a29415a956bf6fa24f93049b42c0a60
71e69b15e402420a04bd6a353b2ebeae01652c10
37040e204f3155a78e5bd97d8d956e19a042a4f2326bd9ea6548aa877d63499a
GET /partner/66325/domain/rindegastos.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Wed, 18 Jan 2023 18:48:27 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Iap9tx5WxMf0IsJ_gTq4p5qp_x8nMtD5S7p89zqLdgaIHpqOOn9EiQ==
age: 5
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/950321305/?random=1674067711844&cv=11&fst=1674064800000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&fmt=3&is_vtc=1&random=4150339117&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/950321305/?random=1674067711844&cv=11&fst=1674064800000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&fmt=3&is_vtc=1&random=4150339117&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/950321305/?random=1674067711844&cv=11&fst=1674064800000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&fmt=3&is_vtc=1&random=4150339117&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 18:48:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 38de5599544ffa789bad3f8686808c5e
fa442ea8ec124d47130fe75d0e848330a279e19e
d0344819ecf4cb1795fcd668d5f1a806121a48e174588ecd2eb8751595ac61ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e1c7515ba5231aaae042ef63071a8562
676673d88597e11f572ac38844b18562ab57b920
002b5adabb3fb37aa6c0f18adee2f221a770e217fe95a027fcf8b8fe84794a19
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/950321305/?random=1674067711844&cv=11&fst=1674064800000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&fmt=3&is_vtc=1&random=4150339117&rmt_tld=0&ipr=y
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/950321305/?random=1674067711844&cv=11&fst=1674064800000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&fmt=3&is_vtc=1&random=4150339117&rmt_tld=0&ipr=y
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/950321305/?random=1674067711844&cv=11&fst=1674064800000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tiba=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&fmt=3&is_vtc=1&random=4150339117&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 18:48:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 96932e7ee122dfbe89a87a0265f8bf94
a260e5fb88fa73efaedcd7880f4bfea7acf44fbb
e806134fe3187494ab16df5a777bb4d7b8d0a8c400b542a5414b63c7ef3ac3e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674067712268&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tm=gtmv2
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674067712268&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tm=gtmv2
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=66325&time=1674067712268&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tm=gtmv2 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674067712268%26url%3Dhttps%253A%252F%252Fwww.rindegastos.com%252Fredirect%26tm%3Dgtmv2%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQL3ujgstJqAKAAAAYXGNhqdiWKriNAXCPyE5kaKfze_YUfeT15c5lr6O8WzpmxhS2pCj4rJhS87WA; Max-Age=2592000; Expires=Fri, 17 Feb 2023 18:48:32 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKOwvZWTBMJSwAAAYXGNhqdTkMQ8QuHA5urcNfWh42Wfcjald-Dcqx7FACVGqE7aQv_EesbMZkf3HutcncgfA; Max-Age=2592000; Expires=Fri, 17 Feb 2023 18:48:32 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&ec1513ba-6bf6-4bce-81f9-f9a9ee8f4297"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 18-Jan-2024 18:48:32 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2413:u=1:x=1:i=1674067712:t=1674154112:v=2:sig=AQH57A67VDAd0taDC_qMmiXUEcWGdX0E"; Expires=Thu, 19 Jan 2023 18:48:32 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-source-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXyjkNXZpD44znlMJS3fQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 3E82423134E54D4C9FB242DA3A323A94 Ref B: OSL30EDGE0417 Ref C: 2023-01-18T18:48:32Z
date: Wed, 18 Jan 2023 18:48:32 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=137915846834106&ev=PageView&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&rl=&if=false&ts=1674067712612&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&cs_est=true&fbp=fb.1.1674067712611.545547259&it=1674067712333&coo=false&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=137915846834106&ev=PageView&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&rl=&if=false&ts=1674067712612&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&cs_est=true&fbp=fb.1.1674067712611.545547259&it=1674067712333&coo=false&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=137915846834106&ev=PageView&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&rl=&if=false&ts=1674067712612&sw=1280&sh=1024&v=2.9.92&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&cs_est=true&fbp=fb.1.1674067712611.545547259&it=1674067712333&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 18 Jan 2023 18:48:32 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 76c3eb9f14e54c6cfec2c673fd4a89b3
5ccb48a80b3555d9d3b4686f84b035db939d475b
9a168e65a7b73db1d414579bf825ccbfc26bcc8827511d8734302e4c7be46f8b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9A168E65A7B73DB1D414579BF825CCBFC26BCC8827511D8734302E4C7BE46F8B"
Last-Modified: Wed, 18 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4314
Expires: Wed, 18 Jan 2023 20:00:26 GMT
Date: Wed, 18 Jan 2023 18:48:32 GMT
Connection: keep-alive
region1.analytics.google.com/g/collect?v=2&tid=G-0CNWYJZDVN>m=2oe1a1&_p=136589287&_gaz=1&cid=1071305514.1674067712&ul=en-us&sr=1280x1024&_s=1&sid=1674067712&sct=1&seg=0&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&dt=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-0CNWYJZDVN>m=2oe1a1&_p=136589287&_gaz=1&cid=1071305514.1674067712&ul=en-us&sr=1280x1024&_s=1&sid=1674067712&sct=1&seg=0&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&dt=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-0CNWYJZDVN>m=2oe1a1&_p=136589287&_gaz=1&cid=1071305514.1674067712&ul=en-us&sr=1280x1024&_s=1&sid=1674067712&sct=1&seg=0&dl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&dt=RindeGastos%20-%20La%20soluci%C3%B3n%20para%20tus%20rendiciones%20de%20gastos&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.rindegastos.com
date: Wed, 18 Jan 2023 18:48:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6a6b2d9466c78838d5b89a24b1afc5f1
056b045d2648e975609cc689aace2cebf56dc4b8
87f1afd429d569be0ae89952298d447806d8c9d543b4ed8d2bc80cd9dc3d125d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6a6b2d9466c78838d5b89a24b1afc5f1
056b045d2648e975609cc689aace2cebf56dc4b8
87f1afd429d569be0ae89952298d447806d8c9d543b4ed8d2bc80cd9dc3d125d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674067712268%26url%3Dhttps%253A%252F%252Fwww.rindegastos.com%252Fredirect%26tm%3Dgtmv2%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674067712268%26url%3Dhttps%253A%252F%252Fwww.rindegastos.com%252Fredirect%26tm%3Dgtmv2%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674067712268%26url%3Dhttps%253A%252F%252Fwww.rindegastos.com%252Fredirect%26tm%3Dgtmv2%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rindegastos.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674067712268&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tm=gtmv2&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&741a25b2-1a50-4905-8fb2-f44f416974b2"; Domain=.linkedin.com; Expires=Thu, 18-Jan-2024 18:48:32 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20230118184832849f249c-6b0b-4be4-8910-3b5b77cf7e94AQEGZuWNRhai7oAa6ubu4ExDXfxpAeaS"; Domain=.www.linkedin.com; Expires=Thu, 18-Jan-2024 18:48:32 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzQwNjc3MTI7MjswMjFwkMaE7dUDB7yfSi568lPuKxBgULXHrWTbNHuXfqzE9g==; Domain=.linkedin.com; Expires=Mon, 17 Jul 2023 18:48:32 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2413:u=1:x=1:i=1674067712:t=1674154112:v=2:sig=AQH57A67VDAd0taDC_qMmiXUEcWGdX0E"; Expires=Thu, 19 Jan 2023 18:48:32 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXyjkNbqW0U3YzwZcLSSQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 0FA5F688A8FA4D059A9C1919578F8407 Ref B: OSL30EDGE0417 Ref C: 2023-01-18T18:48:32Z
date: Wed, 18 Jan 2023 18:48:32 GMT
content-length: 0
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-0CNWYJZDVN&cid=1071305514.1674067712>m=2oe1a1&aip=1
64.233.165.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-0CNWYJZDVN&cid=1071305514.1674067712>m=2oe1a1&aip=1
IP 64.233.165.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-0CNWYJZDVN&cid=1071305514.1674067712>m=2oe1a1&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.rindegastos.com
date: Wed, 18 Jan 2023 18:48:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-61358101-1&cid=1071305514.1674067712&jid=482535863&gjid=829083862&_gid=655017493.1674067712&_u=YADAAEAAAAAAACAAI~&z=1485300058
64.233.165.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-61358101-1&cid=1071305514.1674067712&jid=482535863&gjid=829083862&_gid=655017493.1674067712&_u=YADAAEAAAAAAACAAI~&z=1485300058
IP 64.233.165.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-61358101-1&cid=1071305514.1674067712&jid=482535863&gjid=829083862&_gid=655017493.1674067712&_u=YADAAEAAAAAAACAAI~&z=1485300058 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.rindegastos.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 18 Jan 2023 18:48:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6747
Expires: Wed, 18 Jan 2023 20:41:00 GMT
Date: Wed, 18 Jan 2023 18:48:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6747
Expires: Wed, 18 Jan 2023 20:41:00 GMT
Date: Wed, 18 Jan 2023 18:48:33 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6a6b2d9466c78838d5b89a24b1afc5f1
056b045d2648e975609cc689aace2cebf56dc4b8
87f1afd429d569be0ae89952298d447806d8c9d543b4ed8d2bc80cd9dc3d125d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ipinfo.io/91.90.42.154?token=2037724775731b
34.117.59.81200 OK 229 B URL HTTP/2 ipinfo.io/91.90.42.154?token=2037724775731b
IP 34.117.59.81:0
Hash 8e20400a74f67a3838f357ef60c70134
84aca76b6e955e62edb560942c08928b0922a752
aa8261dda82408a6df64f6cb9607fe0bbffe850bc7009fd884ff741784bd7bbe
GET /91.90.42.154?token=2037724775731b HTTP/1.1
Host: ipinfo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-type: application/json; charset=utf-8
date: Wed, 18 Jan 2023 18:48:33 GMT
x-envoy-upstream-service-time: 2
strict-transport-security: max-age=2592000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6747
Expires: Wed, 18 Jan 2023 20:41:00 GMT
Date: Wed, 18 Jan 2023 18:48:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f112ea3865f38cbbcc8400b58320fa0
dacc584338546bf60f26b2a0bec48e9b584640dc
7feb3c0691f40354701d1cb0bf3c834d1eeead4a7297fac3afc0f4a7ca2c94cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8853
x-amzn-requestid: ff98ec33-294a-4a13-b064-3cd4744cd2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LLKHPnIAMF0vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf14-233cbc6407c6b138144d7abb;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:05:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QZZaGtGl3Z-4G4DxO4R_gjfDdQVgJc30Ur9EyLAvbGFhv4LfaXziPQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:21:58 GMT
etag: "dacc584338546bf60f26b2a0bec48e9b584640dc"
content-type: image/jpeg
age: 73595
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f491398239265c63ac162d47ab006ce6
c95e1bba76e910100e86f8abf789e5b5c1a2baa6
cdada2d9608e9d3f8e03cf9ced211550b6f7c8f7e0b5ee027a96f45af38523f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7741
x-amzn-requestid: 9af04340-5be9-42b0-96be-0264661c6dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A6LEMtoAMFW_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7150d-2348c8846249175e74efc226;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:37:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _7YOm38n8-T2LAL-cRA7R8KvEUBhXEM0dOXjOZ6HyPRNfMu6Z0Fh3g==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:03 GMT
age: 74310
etag: "c95e1bba76e910100e86f8abf789e5b5c1a2baa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8069887e5e81584380ef3f819bcfab6e
3794126935a3e08de469ea37d29cba7be412d408
934e0982c1d49f06c64f524698b93fb1abf3b8833785d633bad104d052dd3ef0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7871
x-amzn-requestid: 212d220f-c590-4c72-9508-e481cd5045ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1UGmeoAMFzpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ee-273c8bb54acc0f2b6d12b567;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xwxzja4wdr7AfJC7BU10NpD4zbhg8MLdQ35gmo9LP75IFy9WDaDInw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:53:53 GMT
age: 75280
etag: "3794126935a3e08de469ea37d29cba7be412d408"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9200e43ca808b9ecec74828e03853d4c
3070340147ced46e5fdf73408272aa39391976fb
abdaedfc2da45180c463607686b20afd82113b78cfa78b0f28ab169b9858469b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6454
x-amzn-requestid: 79329eb3-8d89-423f-8626-32c5e2e2831a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gHpeoAMF-Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-5e859dc121cd322c6b684eee;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cwgL1L8gf7dxKO3A9rfi25VzKbT77kkpJzF8gv1niNJ-p5rL6FYPrw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:45:08 GMT
age: 75805
etag: "3070340147ced46e5fdf73408272aa39391976fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ec6c49f056e786896d54fe22c242391
cc6b64ff3f09853843b62e555456a1ad9f0909fb
42f0571efba18630c8deee17e98c6939a7050b04f613ad10515caf503e496b4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5663
x-amzn-requestid: 9a1c75a4-1c8d-4bd2-b6ca-7fccb8b43c12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gF5goAMFveA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-1d274e8074771db651e80979;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sAxuQECVKx0dfc2UM_E_70nKN8za1SBN4opMWr_74gT5ScurgZGVLw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:07 GMT
age: 74306
etag: "cc6b64ff3f09853843b62e555456a1ad9f0909fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d134f7ac9a5ca8ab7a9461bd20706bb7
aa47af3e7517390d10e89f0f18237cfdcc63cbed
3431c8027f09bb284fe48ef8e4458fd43d8cc961250601b3028b83a7ba19f6ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13111
x-amzn-requestid: 7a9bb405-c68d-496f-b608-e9d295c44c50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0MStGBBIAMFXag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4c0dd-75d87c0d763744951f13febd;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:13:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jkIL919Q7OFO6bACXTrDan0f9D9rgrN0DJMQv1DYPLeWqT1CywCAEg==
via: 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 03:29:16 GMT
age: 55157
etag: "aa47af3e7517390d10e89f0f18237cfdcc63cbed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 76c3eb9f14e54c6cfec2c673fd4a89b3
5ccb48a80b3555d9d3b4686f84b035db939d475b
9a168e65a7b73db1d414579bf825ccbfc26bcc8827511d8734302e4c7be46f8b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9A168E65A7B73DB1D414579BF825CCBFC26BCC8827511D8734302E4C7BE46F8B"
Last-Modified: Wed, 18 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4313
Expires: Wed, 18 Jan 2023 20:00:26 GMT
Date: Wed, 18 Jan 2023 18:48:33 GMT
Connection: keep-alive
px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674067712268&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tm=gtmv2&liSync=true
13.107.42.14200 OK 17 kB URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674067712268&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tm=gtmv2&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 58ab90266b77376f054a2437b2ca6383
decc5d0ac3e0a5073ded3380ee761a4cec2fc52e
99c32b7c2f6ecdd41870f6b480747f97bcc05ca7471370e01a109f38208bdc60
GET /collect?v=2&fmt=js&pid=66325&time=1674067712268&url=https%3A%2F%2Fwww.rindegastos.com%2Fredirect&tm=gtmv2&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rindegastos.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&ab20f0c9-69f6-419b-87bc-8344655dc525"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 18-Jan-2024 18:48:33 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2413:u=1:x=1:i=1674067713:t=1674154113:v=2:sig=AQFeXKmPsGVCyA-fmDHyhDt6sSSA1cbv"; Expires=Thu, 19 Jan 2023 18:48:33 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXyjkNgOTl7irgXNWXueA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: AFC22C2C8D14435BB55F9A0729B796BA Ref B: OSL30EDGE0417 Ref C: 2023-01-18T18:48:33Z
date: Wed, 18 Jan 2023 18:48:33 GMT
content-length: 0
X-Firefox-Spdy: h2
exceptions.hubspot.com/api/242261/store/?sentry_version=7&sentry_client=raven-js%2F3.19.1&sentry_key=7ab6425e7a7c4b01b71fdb51e76514bf
104.19.154.83200 OK 0 B URL HTTP/2 exceptions.hubspot.com/api/242261/store/?sentry_version=7&sentry_client=raven-js%2F3.19.1&sentry_key=7ab6425e7a7c4b01b71fdb51e76514bf
IP 104.19.154.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/242261/store/?sentry_version=7&sentry_client=raven-js%2F3.19.1&sentry_key=7ab6425e7a7c4b01b71fdb51e76514bf HTTP/1.1
Host: exceptions.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2215
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:34 GMT
content-type: text/plain; charset=utf-8
content-length: 0
x-hubspot-correlation-id: 8bc6afa9-3f67-4313-bf4d-35262aa3aeb5
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=q3tM3A5COuDb4WEpsfW.KYLxOZON2.e5x9vw1XwKeT8-1674067714-0-AbVDWSzOR76HCoWDS/h/xjwW/f7yf4V26+fFU6Q1QtPpP/0zWvefKGp/A4iemMthKxVwhIqk8MOPVTP/AgTcQRA=; path=/; expires=Wed, 18-Jan-23 19:18:34 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wv8MId%2BAq%2Fv651srJbaKBE8FbTxrgfcLsFvg%2F%2BMwP%2BdMKX2ZRgUjSoeCIh%2FV%2FJrb6whv6WPKWcjLskAQdKDf25jl2R2sdMrPDriS7IFuRI58oTkYjarsbVfE101xBrYy3KGCXXOgEFo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78b9816c2d79b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
exceptions.hubspot.com/api/242261/store/?sentry_version=7&sentry_client=raven-js%2F3.19.1&sentry_key=7ab6425e7a7c4b01b71fdb51e76514bf
104.19.154.83200 OK 0 B URL HTTP/2 exceptions.hubspot.com/api/242261/store/?sentry_version=7&sentry_client=raven-js%2F3.19.1&sentry_key=7ab6425e7a7c4b01b71fdb51e76514bf
IP 104.19.154.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/242261/store/?sentry_version=7&sentry_client=raven-js%2F3.19.1&sentry_key=7ab6425e7a7c4b01b71fdb51e76514bf HTTP/1.1
Host: exceptions.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3364
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:34 GMT
content-type: text/plain; charset=utf-8
content-length: 0
x-hubspot-correlation-id: 2f8f8150-7811-4e08-87fa-99e07918c977
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=5UrCFPBS69xJe76mi5ugqn148g4cYaciO0zxjsQyS6w-1674067714-0-Acz7TyCtXBEkycpR2DaQzWB9X8KROzwcJ1HFKVuXlYbFxfLL7vbTAl4MhhclbvKXfcvdKv+Ha4BujcfkadY7fAA=; path=/; expires=Wed, 18-Jan-23 19:18:34 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sME6r3fhaFjpk2KoNYVVeQW2rQrU4uJ4%2BD5I%2BDztaBaRpZRJbX9OU1V%2B82xlZoXZZmbd1UPeivR6eCHRvJwc0M6ZUMov%2BoblYdEnUDbDj4vo9SdraF9pZFhIPe8NvGu%2FO7ZPzfHHElA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78b9816cdefeb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 8864fbf30d890ac81c902472609eee08
f455689fc9b9269ef115da8baa2011ccffa82f27
f95850e086a530182311d985050f04ae8721b20ec83b19cfdb0b95bc3f9c0d6a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 18:48:34 GMT
Server: ECS (dcb/7EA5)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FnPBC96PsQqIZSxW6uTzulZz5xBwBghn1jhkyIiysS-OG4InxXOqgw==
web.rindegastos.com/document
54.210.41.222404 Not Found 8.7 kB URL HTTP/1.1 web.rindegastos.com/document
IP 54.210.41.222:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2474)
Hash de8159b66da7e056e61a4cb4b7e5be1a
157609370af20e0c16dfb7786969b5f754092cb1
431c4996ace1dda821ddf678b3e0134e35d25513a50754a86db0d57f371354f4
GET /document HTTP/1.1
Host: web.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Cookie: _gcl_au=1.1.309543641.1674067712; _ga_0CNWYJZDVN=GS1.1.1674067712.1.0.1674067712.60.0.0; _ga=GA1.2.1071305514.1674067712; _gid=GA1.2.655017493.1674067712; _gat_UA-61358101-1=1; _fbp=fb.1.1674067712611.545547259; __hstc=139960876.7660696bbaadb241370b4115f3eb01e1.1674067713637.1674067713637.1674067713637.1; hubspotutk=7660696bbaadb241370b4115f3eb01e1; __hssrc=1; __hssc=139960876.1.1674067713638
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 404 Not Found
Date: Wed, 18 Jan 2023 18:48:34 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: AWSALB=Sr96tpktV6JqIK1Wvgw6izdHE9PXY6C8t4jSAsIfwTJb8cMsrR0N8KDrqrZAuKYN6hnBWC89K6YcmjLmBilGWwsVvj/3hUm8OkCtJ1HUD18kmGH8EnwXkxO/TLui; Expires=Wed, 25 Jan 2023 18:48:34 GMT; Path=/
AWSALBCORS=Sr96tpktV6JqIK1Wvgw6izdHE9PXY6C8t4jSAsIfwTJb8cMsrR0N8KDrqrZAuKYN6hnBWC89K6YcmjLmBilGWwsVvj/3hUm8OkCtJ1HUD18kmGH8EnwXkxO/TLui; Expires=Wed, 25 Jan 2023 18:48:34 GMT; Path=/; SameSite=None; Secure
YUR5aYTheba=hbpd72s5gk0obtfgjks0n0q2e5; expires=Tue, 07-Feb-2023 18:48:34 GMT; Max-Age=1728000; path=/
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000
Status: 404 Not Found
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 607bf9684e4803d817fdd1120427dcdd
886fa77396c792751868f05806793937a4f11be6
d17df5470015b9c3be3fc1e9c8fa5f2b732231eed453b689e94897f6f1da3911
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 18:48:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ppstatic.s3.amazonaws.com/expenses/css/main54.css?v=20220224
54.231.163.89200 OK 77 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/css/main54.css?v=20220224
IP 54.231.163.89:0
File type ASCII text, with very long lines (573), with CRLF line terminators
Hash 50104cb9e1edd52d0e13922c8ad67ab0
d96250df8268bd261fe8e04e214234aab2db09ae
f9c3afd49814b03a5ab682e5838794e9167a70746e5ee3e449599c2998459709
GET /expenses/css/main54.css?v=20220224 HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: CiRjHgcVPR9MLC6iu/MLa3bU3Ha3s8Fl5F6GMjvHiBORNgBi8IsbeSUYFmSi93nD+zucEFV2UOg=
x-amz-request-id: JG71Q26GCF4HRGFR
Date: Wed, 18 Jan 2023 18:48:35 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Thu, 24 Feb 2022 14:13:35 GMT
ETag: "50104cb9e1edd52d0e13922c8ad67ab0"
x-amz-version-id: ET_beOaJd46CSp8w9tqpsY3etnErtYCi
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 76682
ppstatic.s3.amazonaws.com/expenses/css/datePicker.css
54.231.163.89200 OK 3.2 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/css/datePicker.css
IP 54.231.163.89:0
File type ASCII text, with CRLF line terminators
Hash caccb9800bbdc8c1e2729cb538c4cd6d
7e575859f7337b92d4207b6579b94c054afc4cdb
b06b74b85a1c8b44125433ea02b536d5a190cd0406a510f4650e24df3690880b
GET /expenses/css/datePicker.css HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: i7h+Kx9UAVl3vO2vDbIlRyGkTPEvCATrjcwPkjJxteUvjcgsIVXvfLYT+7ipZRpAw4QxpV3w9UU=
x-amz-request-id: JG736EQADX1HRN0D
Date: Wed, 18 Jan 2023 18:48:35 GMT
Last-Modified: Wed, 05 Apr 2017 18:28:06 GMT
ETag: "caccb9800bbdc8c1e2729cb538c4cd6d"
x-amz-version-id: 1jmC3lPCO39gT4Q.VzAFHjQk6MXHBJUN
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 3180
ppstatic.s3.amazonaws.com/expenses/css/tooltipster.bundle.min.css
54.231.163.89200 OK 6.5 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/css/tooltipster.bundle.min.css
IP 54.231.163.89:0
File type ASCII text, with very long lines (6495), with no line terminators
Hash b15ef24270546e5fe896d3ea387ea134
63910103e8cc5e4bdeb2c289cfbf41f89966ea5b
41ce2509fa9959868717986010e16b6334885fd46bc64d0d3c745a73ed3c41e4
GET /expenses/css/tooltipster.bundle.min.css HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: dISdud3u7f5pnUvzJLxM+GHr0qz+bGNqCzWeWeX+a8lOAvYdY/j+2DqtfCNZnmLyT0lZ7Z36PhQ=
x-amz-request-id: JG74ENDGBAJ6T60X
Date: Wed, 18 Jan 2023 18:48:35 GMT
Last-Modified: Wed, 05 Apr 2017 18:28:05 GMT
ETag: "b15ef24270546e5fe896d3ea387ea134"
x-amz-version-id: Ue0uZuGQcSHE1GxhyUC9_LvTvFo5Ze3q
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 6495
ppstatic.s3.amazonaws.com/expenses/js/date.js
54.231.163.89200 OK 12 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/date.js
IP 54.231.163.89:0
Hash 374ce79d1b314709ed0c44a76ff7aba6
0d5ebdb756cb488ee6dfec452fc1cd8803a4ef8b
5f44b926675e71ca114904c21159edabb035f508976986931f9f9762b483a564
GET /expenses/js/date.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 3UnO6V/qH3S41MXRfizgd+w5zXUelxw6cHauVhssceTXmYLCDb5ZqtXbMR6pSVGyq9NuyBdqNNU=
x-amz-request-id: JG79X53RDKBZ0DA9
Date: Wed, 18 Jan 2023 18:48:35 GMT
Last-Modified: Tue, 11 Aug 2015 14:45:22 GMT
ETag: "374ce79d1b314709ed0c44a76ff7aba6"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 12278
ppstatic.s3.amazonaws.com/expenses/css/tooltipster-sideTip-light.min.css
54.231.163.89200 OK 1.8 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/css/tooltipster-sideTip-light.min.css
IP 54.231.163.89:0
File type ASCII text, with very long lines (1799), with no line terminators
Hash 69a5477b4beb94b3accb2f5d95e1a42a
b66fa6a4df5d7da4b6bc9fc66d6001cef748e3c5
37a741f36d0ce77a5c3b191d2c4151630fd5643f18fae8acfb2b68699aa49b3f
GET /expenses/css/tooltipster-sideTip-light.min.css HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: KDFEXvFS2sYGkw+s1wHUg5S2rE+lX3+f53JP3pIRN+/rH5fvUvLPDJYtqJuGxErpnYZUDq71BQA=
x-amz-request-id: JG79X6264NABR8Y4
Date: Wed, 18 Jan 2023 18:48:35 GMT
Last-Modified: Wed, 05 Apr 2017 18:28:04 GMT
ETag: "69a5477b4beb94b3accb2f5d95e1a42a"
x-amz-version-id: CToi1nIQnjkQG43CSdIRPudk2XhwsiWQ
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 1799
ppstatic.s3.amazonaws.com/expenses/js/formato30.js?v=20220224
54.231.163.89200 OK 13 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/formato30.js?v=20220224
IP 54.231.163.89:0
File type Algol 68 source text\012- Pascal source, ASCII text
Hash eb46238c034d15ea34b6e7e098d8a9e4
16d8653b54fbe7b0f3c897857902bcde19a4a308
926acb7dade2a5192733f5c2ec32e7871c3591f364b436ace4181bd01b8b65ba
GET /expenses/js/formato30.js?v=20220224 HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: n+LNoP9xY0xdiJzH7gIjymMSGB/3JCMufiTYBF4MAIRkXD3QcZ5UXkXtEHZsD+v9WGQOZY2V0lQ=
x-amz-request-id: 2FQEV30B4HYNX629
Date: Wed, 18 Jan 2023 18:48:36 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Fri, 29 Jun 2018 16:17:57 GMT
ETag: "eb46238c034d15ea34b6e7e098d8a9e4"
x-amz-version-id: IR4f9O.zU.P1OSLzYzkcP4.Ai6BV3VhJ
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 13255
ppstatic.s3.amazonaws.com/expenses/js/validaciones1.js?v=20220224
54.231.163.89200 OK 12 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/validaciones1.js?v=20220224
IP 54.231.163.89:0
File type Unicode text, UTF-8 text, with very long lines (959)
Hash 9615bf8ab37b1bc3e48054d612090dd0
8028055ebc7894f70c423be64f2b920015ea58f7
0244489e3c9dc4bb2ad94802ea990d00ae1ccb9b386c3a9acbf86653ea8b80ed
GET /expenses/js/validaciones1.js?v=20220224 HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +k79hM2BL5sm7msDP7vAujLW5agIB0lv1A8aCXIynH5no3b/E1YrC39sM03AP9TsqTSwinW6KIA=
x-amz-request-id: 2FQ8THYM8GE0A7AZ
Date: Wed, 18 Jan 2023 18:48:36 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Fri, 29 Jun 2018 16:17:58 GMT
ETag: "9615bf8ab37b1bc3e48054d612090dd0"
x-amz-version-id: 8_lnZFQiJDQwMqbpZzaxKfUb7KUsv5PV
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 12361
ppstatic.s3.amazonaws.com/expenses/js/jquery.datePicker.js
54.231.163.89200 OK 44 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/jquery.datePicker.js
IP 54.231.163.89:0
File type assembler source, Unicode text, UTF-8 text, with very long lines (477), with CRLF line terminators
Hash b0c26cee7599d645540dc356b421d9f7
96fb8befcf172da3c53e56b986296b6a1dba1443
bee659daf21c4ce2125626060f7a8defd277622284628db71686b9b41b929cc4
GET /expenses/js/jquery.datePicker.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: r14/OPaaAjBVdROPyHCkQlh3Z5ixhq1WJOkhuUtT3PsJ03dGh3vNI5TiOkYcaZWTKg+8oA4McZQ=
x-amz-request-id: 2FQ77CJ9TG0CXYQ4
Date: Wed, 18 Jan 2023 18:48:36 GMT
Last-Modified: Tue, 11 Aug 2015 14:45:43 GMT
ETag: "b0c26cee7599d645540dc356b421d9f7"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 43739
ppstatic.s3.amazonaws.com/expenses/js/highcharts/highcharts.js
54.231.163.89200 OK 154 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/highcharts/highcharts.js
IP 54.231.163.89:0
File type Unicode text, UTF-8 text, with very long lines (596)
Size 154 kB (153909 bytes)
Hash bdd06f45e34c33dfaaac249f3eb50040
9305510952cfeb4ed26cc43965d070afadc1e021
af5e4f327b79424352a42bf43df71e6a2f52d6f8948b82d6a42b4c2e97f7bfea
GET /expenses/js/highcharts/highcharts.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: YhIX8AjZI9QbKnOIFGCc/zwACQmf+dHqVRvXTavY6TSmVjXV5258FxU+uKKKcc1eUKM0VCZXvuA=
x-amz-request-id: 2FQBH5KP7XAW4GD5
Date: Wed, 18 Jan 2023 18:48:36 GMT
Last-Modified: Thu, 16 Oct 2014 03:29:55 GMT
ETag: "bdd06f45e34c33dfaaac249f3eb50040"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 153909
ppstatic.s3.amazonaws.com/expenses/js/tooltipster.bundle.min.js
54.231.163.89200 OK 39 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/tooltipster.bundle.min.js
IP 54.231.163.89:0
File type ASCII text, with very long lines (32111)
Hash 62adf085c6b904a8425c58015cf476d3
d6027daae195119fd76ca4e53a4576fec3501880
736c0c08baa411f097cdb53c270b645f636cc74d9f3c0d9f31c2413dba8e5f99
GET /expenses/js/tooltipster.bundle.min.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 1LP/GjYsyxQquwKDJbnVFrerOVvMAtfHhVUekUEH2lntYIciVCuFj68/WTEH3y1/TSlRTwGu+Xg=
x-amz-request-id: 2FQDQ0EDAE2VM8JR
Date: Wed, 18 Jan 2023 18:48:36 GMT
Last-Modified: Wed, 05 Apr 2017 18:29:22 GMT
ETag: "62adf085c6b904a8425c58015cf476d3"
x-amz-version-id: ALb3CfmUDqru3ydrMPJw9usP2XFCpSA4
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 39392
ppstatic.s3.amazonaws.com/expenses/js/gestor-archivos6.js?v=20220224
54.231.163.89200 OK 10 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/gestor-archivos6.js?v=20220224
IP 54.231.163.89:0
Hash 9a9ce396838a593113305df6433d8cc2
96706158e4309297ecc54b66ce9e0fc81617604c
1b33bfc8c2369ae0e2403aebb1a91bd727ff3494561602072c23b96b5de05325
GET /expenses/js/gestor-archivos6.js?v=20220224 HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: iEQMIBJo4fwWzlAn+RE9bhm8xe7pifPl9w/HXMc6zNB5J6n+6+648Rc08htylMQABqxsY4ZuPPY=
x-amz-request-id: 2FQ74DMNDJVC55J6
Date: Wed, 18 Jan 2023 18:48:36 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Fri, 29 Jun 2018 16:17:58 GMT
ETag: "9a9ce396838a593113305df6433d8cc2"
x-amz-version-id: MmO4iOfFWDjE7VsntMqWXOAaC.R32HKT
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 10223
ppstatic.s3.amazonaws.com/expenses/js/dropzonejs.js
54.231.163.89200 OK 63 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/dropzonejs.js
IP 54.231.163.89:0
File type ASCII text, with very long lines (3291)
Hash 9904a99cba14bd9ac0f5b173ced7d0bf
b560fa3e373038a393898d53b9da3ab674e3623a
d808a4d57206818dd5cb6bc788fc77515fd830f5b20aacb6173356ba895eb4d1
GET /expenses/js/dropzonejs.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: LSXmx6SgK1gM18lxPNODFpgS+/097D0uPo47yFRSFFM/2b3JrmA0HpPgcS/l6aL11JzvB6hP43k=
x-amz-request-id: 2FQ5B5H6T8PWQ6ZT
Date: Wed, 18 Jan 2023 18:48:36 GMT
Last-Modified: Tue, 11 Aug 2015 14:45:26 GMT
ETag: "9904a99cba14bd9ac0f5b173ced7d0bf"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 62986
ppstatic.s3.amazonaws.com/expenses/css/jquery-ui2.css
54.231.163.89200 OK 35 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/css/jquery-ui2.css
IP 54.231.163.89:0
File type ASCII text, with very long lines (2363)
Hash f6f0d76ca650be09e00268384d00dc4a
07c6fa02eec3c15e9dbae4646144afeb1b108283
34b0e967524aca9599338d8065c22f7c0b45f7981a0946b6a558de4a7ed75fb1
GET /expenses/css/jquery-ui2.css HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: YoZUm1nYc0eei7Z2Gk9nB1UpsPcT8smrf08E9g3T4b6+FC52ZJ8tr75wxjOCLcsYzCV9EEhEjEM=
x-amz-request-id: 2FQ8ZNG2QNG0F4X5
Date: Wed, 18 Jan 2023 18:48:36 GMT
Last-Modified: Wed, 05 Apr 2017 18:28:09 GMT
ETag: "f6f0d76ca650be09e00268384d00dc4a"
x-amz-version-id: myqnckGcx6jeIh8tJhfP99A3LsiA3BpO
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 35388
static.hsappstatic.net/conversations-visitor-ui/static-1.13884/sass/visitor.css
104.17.9.210200 OK 18 kB URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.13884/sass/visitor.css
IP 104.17.9.210:0
File type ASCII text, with very long lines (14949)
Hash c8f498d2c6b0032de58d3f3388f4bcba
4cbf1b7a18db012cbd7153e1ab53aea0217be9f5
e35d5660931093abb179efb4bbb08169c4e8b4309c0f4103f7b77723e4c110af
GET /conversations-visitor-ui/static-1.13884/sass/visitor.css HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:33 GMT
content-type: text/css
x-amz-replication-status: COMPLETED
last-modified: Mon, 28 Nov 2022 19:04:10 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: hYgqjzdqx6QyhZH807FkloiLc0TGhAXY
etag: W/"0e729a3fa047d67852c356071b611db3"
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 471577f2b3efe669f21e138a1621a8ca.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: fqMPGR2MXqQBUiViAGtCKTdTp2SWVDUt2Ouq7YeE4QZxwfY50JJhFw==
cf-cache-status: HIT
age: 1393765
expires: Thu, 18 Jan 2024 18:48:33 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IXIGXUcdTQGmSo6g8d1zqOZ1oE5E3f32j4XP1crc6XUGKzJzUbWYjj76vNcC5rKvOcmNgrngFUAFXVZUfNRSbTUDBBKXK5QZqT%2FUMZRwXAod9RnVmVjGf9owx3ba4RWc%2Fndul9j9WSA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78b98167acd1b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
forms.hubspot.com/lead-flows-config/v1/config/json?portalId=3276114&utk=7660696bbaadb241370b4115f3eb01e1&__hstc=139960876.7660696bbaadb241370b4115f3eb01e1.1674067713637.1674067713637.1674067713637.1&__hssc=139960876.1.1674067713638¤tUrl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect
104.19.154.83200 OK 105 kB URL HTTP/2 forms.hubspot.com/lead-flows-config/v1/config/json?portalId=3276114&utk=7660696bbaadb241370b4115f3eb01e1&__hstc=139960876.7660696bbaadb241370b4115f3eb01e1.1674067713637.1674067713637.1674067713637.1&__hssc=139960876.1.1674067713638¤tUrl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect
IP 104.19.154.83:0
File type JSON data\012- , ASCII text, with no line terminators
Size 105 kB (104597 bytes)
Hash deccaeb8ff29407c1d797a1d8961adf3
930cab92743b2625fe30f010fac07fdd01fb9869
b917c362c0850575819ea96bdd0208f534037a55669e7c9ea1c41cc9697f6a22
GET /lead-flows-config/v1/config/json?portalId=3276114&utk=7660696bbaadb241370b4115f3eb01e1&__hstc=139960876.7660696bbaadb241370b4115f3eb01e1.1674067713637.1674067713637.1674067713637.1&__hssc=139960876.1.1674067713638¤tUrl=https%3A%2F%2Fwww.rindegastos.com%2Fredirect HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:34 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: 89b30301-f50f-4deb-909b-2f0380317432
access-control-allow-credentials: false
access-control-allow-origin: https://www.rindegastos.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent
access-control-max-age: 180
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=mnCtU_ptQP32B476a_KPK2aDiA4uSKz40rTYBt0NTqE-1674067714-0-AYF7R19Ol+SATIuHlHCX147ID8ByaB1ELB7r3FCN1QJSGVh0SL5/V+hqRg4o5ATnBPbMSRbq4rOzhbsSHPsM5cc=; path=/; expires=Wed, 18-Jan-23 19:18:34 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KCUW25d%2FSCHV05mCKGMB6WK6cs3l1k0DgqsKOXA0%2B%2FMugXKQ9eKTxIheNv8PPwRQ515169tyWOr5CH7Tqw3qo112T4tEaedM0wtR0Kl4Z8LfUygKZ6rM86hTdjwFnufQKL6n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78b9816c1d49b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ppstatic.s3.amazonaws.com/expenses/js/jquery.gdocsviewer2.min.js
54.231.163.89200 OK 748 B URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/jquery.gdocsviewer2.min.js
IP 54.231.163.89:0
File type ASCII text, with very long lines (575)
Hash 3a328a49ed19de5159e05427341cc6d3
9fdc928c44ce000307dd751e42c08ebd599fac79
038cf89078c60faed0eff6d37c3572524693655ec766c14872c66ab5b8ee1e40
GET /expenses/js/jquery.gdocsviewer2.min.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Bn8gOcdN5coCaZFnPeR4Q2Y2zT2ezBcQkMjZvoEBvPb8zU0xYqxRGInX+YHk3JcyrF/oWqOBbH8=
x-amz-request-id: 2FQ01BF6RDS8DZ1K
Date: Wed, 18 Jan 2023 18:48:36 GMT
Last-Modified: Fri, 05 Feb 2016 12:53:56 GMT
ETag: "3a328a49ed19de5159e05427341cc6d3"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 748
ppstatic.s3.amazonaws.com/expenses/js/account50.js?v=20220224
54.231.163.89200 OK 50 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/account50.js?v=20220224
IP 54.231.163.89:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 344017a9838b5e78b6f3144d92eaff06
ead0e3d4f3692fbe51ae5f56e7663366d84dc95d
be089c8b39c6a09495ce979e76be499e1f5769066318844c28bc3d75a5360b9e
GET /expenses/js/account50.js?v=20220224 HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: RvgKYIp7jepEWFIMwNsC2/3/35bLLsA0cCVLNM1aDYULRbiRE1/n4pQ98xcGY3FFy7DrphM+IGc=
x-amz-request-id: 2FQ0MNAGB0Q9NWCN
Date: Wed, 18 Jan 2023 18:48:36 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Thu, 24 Feb 2022 14:14:17 GMT
ETag: "344017a9838b5e78b6f3144d92eaff06"
x-amz-version-id: k5Q9boB7PWEj2aoy369KbtKn9T5v0jEK
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 50096
ppstatic.s3.amazonaws.com/expenses/js/jquery.panzoom.js
54.231.163.89200 OK 12 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/jquery.panzoom.js
IP 54.231.163.89:0
File type ASCII text, with very long lines (12131)
Hash 9dd3f95de028e069807a46e929345e48
134e3c3b98b0e5139dfaf2644f1c3a28e176ea8c
96e074a0f68fba607a772b6d2dda7598e3d5e75378b185465862b59a07c65f76
GET /expenses/js/jquery.panzoom.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: f/kbgtiMsxrohI4zLkq21CrbcHA0gGcWHaXo5GhL7crAVrwwgx1NRq1IBBsPvq4wYp+6VApZbWU=
x-amz-request-id: 2FQBXP94M25XAYPJ
Date: Wed, 18 Jan 2023 18:48:36 GMT
Last-Modified: Tue, 11 Aug 2015 14:45:53 GMT
ETag: "9dd3f95de028e069807a46e929345e48"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Content-Length: 12398
ppstatic.s3.amazonaws.com/expenses/js/font-awesome/css/font-awesome.min.css
54.231.163.89200 OK 29 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/font-awesome/css/font-awesome.min.css
IP 54.231.163.89:0
File type ASCII text, with very long lines (28900)
Hash 4083f5d376eb849a458cc790b53ba080
fb5b49426dee7f1508500e698d1b3c6b04c8fcce
008a1d103902f15fdb1c191fcb1ce8954330e7b8de43d09abb08555ba609f420
GET /expenses/js/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: B+2eTn24E1C3BQcJmKbOxT6MEwW9q1BuL0Lo4GaOujND8KEXl0tiFB/K0c7z29mjB35pdExcO/A=
x-amz-request-id: 2FQ2Y7GZD7NMWSS8
Date: Wed, 18 Jan 2023 18:48:36 GMT
Last-Modified: Wed, 05 Oct 2016 16:10:59 GMT
ETag: "4083f5d376eb849a458cc790b53ba080"
x-amz-version-id: 5_kOOOaG7DJerDKp8FxPHwxzBf3Fivtm
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 29063
static.hsappstatic.net/conversations-visitor-ui/static-1.14196/i18n-data-data-locales-en-us.js
104.17.9.210200 OK 471 kB URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.14196/i18n-data-data-locales-en-us.js
IP 104.17.9.210:0
File type ASCII text, with very long lines (719)
Size 471 kB (470976 bytes)
Hash 9c30a173049aaa9026b15dbb2c887b88
3ec48ea7ca1b05177e9e32360d2dbae5927652ef
2e38b895c3a17520826136c20f3bde9c815fdb91614d696dff200255635ad2a0
GET /conversations-visitor-ui/static-1.14196/i18n-data-data-locales-en-us.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:33 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2023 18:35:18 GMT
etag: W/"528f80e11add00c031037c5ad43e48cd"
x-amz-server-side-encryption: AES256
x-amz-version-id: ciO4xW1Oh9nDEI7ATDDi_OuHch6NaNXE
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 283a3ebaefd33728d45267e54657c3e2.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: CecxHoARbOrxZfFagldNR3IfjLqulHfm4VNiTZ4l9EOJEPF5B0syUg==
cf-cache-status: HIT
age: 607972
expires: Thu, 18 Jan 2024 18:48:33 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jkeGNySzCMpedwl3vFXMxcEBkpndmKpKAec%2BxH7Uh%2F9Q9Q21BdipOEngiY1qGPKyZ%2F7I9GZh8CwIlSnhhPhy2OU0VQ0PMNsXUmOd32ybj8mMrA67n3Ond4nThx8ias2ZF3p%2FQ2uHGvU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78b9816ada020b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ppstatic.s3.amazonaws.com/expenses/js/html2canvas.min.js
54.231.163.89200 OK 166 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/html2canvas.min.js
IP 54.231.163.89:0
File type Unicode text, UTF-8 text, with very long lines (64457)
Size 166 kB (166241 bytes)
Hash 0e52edb30e4a8b8d654d5db2a09203a1
d63ed0421a511ffb8f5907ae367c368871092a8c
e5dc6a09d90978d0f0f63aa53ea44b20dd7be7903ef9b1a831e27ad994346ec0
GET /expenses/js/html2canvas.min.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: hBJJkv7dI4uJvz93VgBKMXBG/mvamJskcwsUTm4CeyOIQQaO7d/dLDq3crSB4rDK3WNeIJahXpg=
x-amz-request-id: 2FQC5HZP6RJ2HB8G
Date: Wed, 18 Jan 2023 18:48:36 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Wed, 02 Jan 2019 13:12:52 GMT
ETag: "0e52edb30e4a8b8d654d5db2a09203a1"
x-amz-version-id: Mmr7detyCxze9vMZZBuh0XwqmcjvuoER
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 166241
ppstatic.s3.amazonaws.com/expenses/images/new-home/logo-rg-h3.png
54.231.163.89200 OK 7.3 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/images/new-home/logo-rg-h3.png
IP 54.231.163.89:0
File type PNG image data, 510 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 04af4869ea80e2a8060d09d213e8355a
a3902e5b4f35a7131ef1860c14e24a4dd6f740c7
f7970e674a73d38efba2ccfa2d18adf44d436483c9c9daf801043439e61ebe18
GET /expenses/images/new-home/logo-rg-h3.png HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 2dWgMGoW4s6+fNNL1HXZ8bjJ5cnCz3I1Ea1Lg2Hp4w/OE4R/2mrMqXUZTSQetZiz0hNIEtV7jhQ=
x-amz-request-id: 2FQFV0DF7NEGXNBK
Date: Wed, 18 Jan 2023 18:48:36 GMT
Last-Modified: Wed, 13 Dec 2017 13:33:35 GMT
ETag: "04af4869ea80e2a8060d09d213e8355a"
Cache-Control: no-cache
x-amz-version-id: QdqDQYBhDJver7FQGzOJsW11iT8B6mez
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 7318
ppstatic.s3.amazonaws.com/expenses/images/img_404.png
54.231.163.89200 OK 89 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/images/img_404.png
IP 54.231.163.89:0
File type PNG image data, 282 x 271, 8-bit/color RGBA, non-interlaced\012- data
Hash b28b3f343bec921058c87d047025591f
cd09862f8ef2498b663aa2110fcb6ac0e3ec0f73
209bfac0b10962f3780e8efd727d576951b9e534cdb5ced7339422d9f5d1d58c
GET /expenses/images/img_404.png HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: E05UQ/clxYJ4BtgP8f70pkKzAJDkeJnNIu9J3HyVmqKrHxeeHIz1Ag7S5chGLVqXWfv/dnSMdP0=
x-amz-request-id: 2FQ7HP171Z5KDKVK
Date: Wed, 18 Jan 2023 18:48:36 GMT
Last-Modified: Wed, 04 Mar 2015 16:24:52 GMT
ETag: "b28b3f343bec921058c87d047025591f"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 88854
ppstatic.s3.amazonaws.com/expenses/images/icon-expenses-ios-152x152.png
54.231.163.89200 OK 3.8 kB URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/images/icon-expenses-ios-152x152.png
IP 54.231.163.89:0
File type PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced\012- data
Hash 63df7eed418e312e68ff89f8b4481439
42b16982196af6551599ada2057000a9a00722a2
3b747819b66f74855363f0302566954d462bb457920fdef69c1d9a8a38eb09d7
GET /expenses/images/icon-expenses-ios-152x152.png HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: /2+O92s1bOliqKsTO8/yv5kGYfmIbvwCv8LQ3IwWV4PZyrg0RL3nNk9/UCWukZz0FIRwThOWCME=
x-amz-request-id: 2FQ7HP91KPP95REV
Date: Wed, 18 Jan 2023 18:48:36 GMT
Last-Modified: Thu, 04 Sep 2014 21:53:59 GMT
ETag: "63df7eed418e312e68ff89f8b4481439"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3753
px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674067715959&url=https%3A%2F%2Fweb.rindegastos.com%2Fdocument&tm=gtmv2
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674067715959&url=https%3A%2F%2Fweb.rindegastos.com%2Fdocument&tm=gtmv2
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=66325&time=1674067715959&url=https%3A%2F%2Fweb.rindegastos.com%2Fdocument&tm=gtmv2 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674067715959%26url%3Dhttps%253A%252F%252Fweb.rindegastos.com%252Fdocument%26tm%3Dgtmv2%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQIabOJ2Iz2xlAAAAYXGNiieQ0AVQ0nTWGb7qyYKNmq5zTdAm904nInFNNwDzplS3DKsAmlwOSX10g; Max-Age=2592000; Expires=Fri, 17 Feb 2023 18:48:36 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLjSrirPuxSFwAAAYXGNiieLTE9zlt42J60M5v0ipY8_xbYhAUpSK6iNfCv1NJp6cbrtt8SSuxHRwvvhGJYvA; Max-Age=2592000; Expires=Fri, 17 Feb 2023 18:48:36 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&6ec4ed79-b2a1-4f4f-894e-44e83a595ed8"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 18-Jan-2024 18:48:36 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2413:u=1:x=1:i=1674067716:t=1674154116:v=2:sig=AQECaVCNKMyfS6YzibjmuXHUOekyNWgu"; Expires=Thu, 19 Jan 2023 18:48:36 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXyjkOOaPb0aFdhp+qpAw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 51A730B21AF147F2B327DFA520539191 Ref B: OSL30EDGE0417 Ref C: 2023-01-18T18:48:36Z
date: Wed, 18 Jan 2023 18:48:36 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674067715959%26url%3Dhttps%253A%252F%252Fweb.rindegastos.com%252Fdocument%26tm%3Dgtmv2%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674067715959%26url%3Dhttps%253A%252F%252Fweb.rindegastos.com%252Fdocument%26tm%3Dgtmv2%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D66325%26time%3D1674067715959%26url%3Dhttps%253A%252F%252Fweb.rindegastos.com%252Fdocument%26tm%3Dgtmv2%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.rindegastos.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674067715959&url=https%3A%2F%2Fweb.rindegastos.com%2Fdocument&tm=gtmv2&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&44e7969b-64dc-4af1-8149-ceb93a422d9f"; Domain=.linkedin.com; Expires=Thu, 18-Jan-2024 18:48:36 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202301181848363cb119fe-1c8e-49b7-8430-618267d05961AQFLCw9WI-9PYTWGpLqSsmmNrYRyEZ90"; Domain=.www.linkedin.com; Expires=Thu, 18-Jan-2024 18:48:36 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzQwNjc3MTY7MjswMjEZmjqXdVmF5j+4+yV841QtGoi7Tu70gUpk+wDlrFs6MQ==; Domain=.linkedin.com; Expires=Mon, 17 Jul 2023 18:48:36 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2413:u=1:x=1:i=1674067716:t=1674154116:v=2:sig=AQECaVCNKMyfS6YzibjmuXHUOekyNWgu"; Expires=Thu, 19 Jan 2023 18:48:36 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXyjkOSzZl3OPT2IJGGRg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: BA6E5415F38B43DCA4365F79AE62845A Ref B: OSL30EDGE0417 Ref C: 2023-01-18T18:48:36Z
date: Wed, 18 Jan 2023 18:48:36 GMT
content-length: 0
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674067715959&url=https%3A%2F%2Fweb.rindegastos.com%2Fdocument&tm=gtmv2&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=66325&time=1674067715959&url=https%3A%2F%2Fweb.rindegastos.com%2Fdocument&tm=gtmv2&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=66325&time=1674067715959&url=https%3A%2F%2Fweb.rindegastos.com%2Fdocument&tm=gtmv2&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.rindegastos.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&2cf5285f-3832-45c0-8f2a-db8451a62e07"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 18-Jan-2024 18:48:36 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2413:u=1:x=1:i=1674067716:t=1674154116:v=2:sig=AQECaVCNKMyfS6YzibjmuXHUOekyNWgu"; Expires=Thu, 19 Jan 2023 18:48:36 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXyjkOWEjOGE5PiyXJ4LQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 46976D92B3C04A32BCA4851C2D55FA26 Ref B: OSL30EDGE0417 Ref C: 2023-01-18T18:48:36Z
date: Wed, 18 Jan 2023 18:48:36 GMT
content-length: 0
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-9524-c772b95.js
104.18.70.113200 OK 13 kB URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-9524-c772b95.js
IP 104.18.70.113:0
File type ASCII text, with very long lines (9043), with no line terminators
Hash e8abf062b29eb2265825544d4f7d0eb6
ec825c119489ba5dd34fdae6eb024be3db89f1be
d18daf02d66d58c546c3d522341018c3fcdead208bc9eddee45e8ffe8fb3e2f8
GET /web_widget/latest/messenger/web-widget-9524-c772b95.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:36 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: /er5emLXDqpUT4//kBaHyhmU+dVzuKJu9uFO3GBhFiQIbsVqtniOrmnubkWe79gc+NM3xDNSZFo=
x-amz-request-id: 0HNZ9ZG20XMXSY6B
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Jan 2023 08:35:38 GMT
etag: W/"8368a7ac9bda15d64ba1686611ee7347"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 16 Jan 2024 08:35:37 GMT
x-amz-version-id: vx0dFaWZbSKdI.GndXIsIWRqmMex65jk
cf-cache-status: HIT
age: 58879
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y4ArnhYuNSsMP%2FySaBn1gCsUnPfONytwDLsYVvosGWvlPVBwFD1W%2BTS7R%2FWpVmm56KvaqIfQPC8ocHHS4cKClUhOw2gj6e4NV0ydxpDOROEc3wKDEsIqjV0X9Kaolxvhqw77FtU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b9817d0a49b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.hsappstatic.net/hubspot-dlb/static-1.346/bundle.production.js
104.17.9.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/hubspot-dlb/static-1.346/bundle.production.js
IP 104.17.9.210:0
GET /hubspot-dlb/static-1.346/bundle.production.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:33 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Wed, 11 Jan 2023 15:49:01 GMT
etag: W/"c9d81634943890d47a945251055bc14c"
x-amz-server-side-encryption: AES256
x-amz-version-id: wc3c.cxve2vx.dFUj.2aLlVX_oTdGd2y
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1a8662d51ed58f0336021036df8bf88a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: ngbRgom1g3b8S5Q3Lxk_6V-ea4V3tm4SRbdt0KGygFDDRVd-XwOdcg==
cf-cache-status: HIT
age: 612447
expires: Thu, 18 Jan 2024 18:48:33 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wky3hdqSIrDGcOG8XuJy3HxoghWupwkLEhWdB%2BAC6e82GG8ybf2whfdDWiTPcZ5HcUIFMR6b4wgnHBbQhDjdlqJFZeqW4QYYqKZ5JlU8HpiobnSbUwqe3hmU9X7gOzd5MviOOZIcr9M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78b98167aeae0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hsappstatic.net/head-dlb/static-1.245/bundle.production.js
104.17.9.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/head-dlb/static-1.245/bundle.production.js
IP 104.17.9.210:0
GET /head-dlb/static-1.245/bundle.production.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:33 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Mon, 07 Nov 2022 16:12:00 GMT
etag: W/"d0d928e20b2bebe8d43d510597af50e3"
x-amz-server-side-encryption: AES256
x-amz-version-id: cXTDvGuwbPuMrVAW0W63IbeHNqDKyRYR
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S4R_IdlMnmvqWOtzIw-ci7tFaeL0xuHQK1KLCodI6dVIrQAAnYes2w==
cf-cache-status: HIT
age: 1380332
expires: Thu, 18 Jan 2024 18:48:33 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VDE5HT%2FpIBGuJjjK%2FkkUbGz8hp%2Bo%2FYo3H5nLf8a%2B72NCN04F84IlnW%2BdtW3eI2z%2F2uf6%2FA8P%2BNzqFUpfXuPFwVYy7qBR53KWNquuXiYCoKGkS8xaSM9yXgl7FQ%2BK%2F%2FGihLuIPd%2B4xyc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78b98167aeac0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hsappstatic.net/conversations-visitor-ui/static-1.14215/bundles/visitor.js
104.17.9.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.14215/bundles/visitor.js
IP 104.17.9.210:0
GET /conversations-visitor-ui/static-1.14215/bundles/visitor.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:33 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Thu, 12 Jan 2023 22:40:17 GMT
etag: W/"6d7d7d579aafc5a811099a32a8b592c6"
x-amz-server-side-encryption: AES256
x-amz-version-id: WvBp.ljh4HDsTPrZoeYohQR0bsucqXsf
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 3ccf7f7aced0e7c558f0790a4da88a92.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: Axb1jdVYN-0VS2h79yXP0ZUCvWSNglGGm-3PIXxRQN6CLu7Wsmv2vA==
cf-cache-status: HIT
age: 498154
expires: Thu, 18 Jan 2024 18:48:33 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=76J5dyvrm3kkusNzbGR7lO6VXfsjrHjsA3I1FL7FH5IV2u0lUr96FiZ%2BWR4VuQkY677Os04d%2ByCLEH9EuxiO%2FhKFmoTgrXOzQGl49IXlkfn%2FcCZUZRmaIRpaoWrnjLDNmC2KMQ%2F0tII%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78b98167aeaf0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.hsleadflows.net/leadflows.js
104.17.231.204200 OK 0 B URL HTTP/2 js.hsleadflows.net/leadflows.js
IP 104.17.231.204:0
GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:31 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 12 Jan 2023 01:15:58 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: cBWlZpBPNqCcN4.OsLoqDE.Qz8k.oCDt
etag: W/"81f94bb71da5bf7e447ae1cd97c54e62"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: RefreshHit from cloudfront
via: 1.1 6b29c936420d116b13807604a0e67044.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: K9d_0eTWbiDP4tTkSFHQ38trjidQHNvOtP5VLAZKGNBMF_ecL9IMAA==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=lead-flows-js/static-1.1126/bundle/main/lead-flows-release.js&cfRay=78b7eeb0e9d3abc6-IAD
x-hs-target-asset: lead-flows-js/static-1.1126/bundle/main/lead-flows-release.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 5
server: cloudflare
cf-ray: 78b9815a98b3b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
ekr.zdassets.com/compose/4f349ffb-427f-4fb0-934a-55bdcc3319d2
104.18.72.113200 OK 0 B URL HTTP/2 ekr.zdassets.com/compose/4f349ffb-427f-4fb0-934a-55bdcc3319d2
IP 104.18.72.113:0
GET /compose/4f349ffb-427f-4fb0-934a-55bdcc3319d2 HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.rindegastos.com
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:36 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"3982eea3a999c3a51a92fdd3a700b15c"
x-request-id: 78b98158c995b4fd-SEA, 78b98158c995b4fd-SEA
x-runtime: 0.003101
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: HIT
age: 5
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i%2FxCQj9LQZxLeQqDN%2FREZpO7hpQeZBSqD2UXEbfgnaw%2BkatY2QT%2BZoRGRhym3LsOFkJqH%2Bd%2BdJmvaG2xYji9fsC43XhYiXRuWxA%2FlEo7I5oiZvieBrKr0Jr6wJca0lik7LI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b981796ffe0af6-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-5614-c772b95.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-5614-c772b95.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-5614-c772b95.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:36 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: /KVOfmjnywZrj+txe3O0Jj91VkGYBOJXa1SpynKOlJNFgaIw1QE+ZMROtpzaVcHgyglhYWJBI5Q=
x-amz-request-id: 0HNMWZE9YBWVQSPA
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Jan 2023 08:35:38 GMT
etag: W/"719f990fafee92dfdd57b3143a3b0a43"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 16 Jan 2024 08:35:37 GMT
x-amz-version-id: kS7tog3s_AGQzHc2keYu46WZJ04NNBSK
cf-cache-status: HIT
age: 58878
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9umfftesyJqLdvqJppzn40wFfnevaLHrRcH1wqKsp6LZSZNBTuLXcjG2zCjPmcqL%2FgIhQEXrGFdGrCG7fs7fwbwScvTJ2QfA8%2BfF3S4W17TdjhAaGSOOKTkQui7jzg1c56Eo%2Ffc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b9817efcc6b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.rindegastos.com/styles.52c8ea0761f20a0a.css
143.204.55.45200 OK 0 B URL HTTP/2 www.rindegastos.com/styles.52c8ea0761f20a0a.css
IP 143.204.55.45:0
GET /styles.52c8ea0761f20a0a.css HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/document/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Wed, 18 Jan 2023 18:48:26 GMT
last-modified: Mon, 16 Jan 2023 13:30:15 GMT
etag: W/"76c8baf810dac7dd79f807fede51ad08"
x-amz-server-side-encryption: AES256
server: AmazonS3
cache-control: public, max-age=0, s-maxage=600
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6dQ5GRZNwtyzG-i3piqpWHnM8zfHC7RAMytqIxW0hZ0m58j7rimzUQ==
age: 5
X-Firefox-Spdy: h2
js.hs-banner.com/v2/3276114/banner.js
104.18.33.171200 OK 0 B URL HTTP/2 js.hs-banner.com/v2/3276114/banner.js
IP 104.18.33.171:0
GET /v2/3276114/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:31 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: +/2F72i9sZfbIbRqSt6dnhy4whIwBvFLlYfaYFUqXSFEHAv7QU/6aNAok1IcQ22Y5i1lcAwqrV8=
x-amz-request-id: 1XRJ5S7Z12D5AXMS
last-modified: Thu, 08 Dec 2022 20:49:10 GMT
etag: W/"6427d90f4fac23c2ad9309aea3424a89"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: ta3Vgix8tvUFRrdonLynxje196UWCEQV
access-control-allow-origin: https://www.rindegastos.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Wed, 18 Jan 2023 18:53:26 GMT
cf-cache-status: HIT
age: 5
server: cloudflare
cf-ray: 78b9815a7d531c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.usemessages.com/conversations-embed.js
104.17.237.204200 OK 0 B URL HTTP/2 js.usemessages.com/conversations-embed.js
IP 104.17.237.204:0
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Fri, 13 Jan 2023 12:25:39 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: PZ.VqJdb97Sg7li94POrAGz_HafqqY_T
etag: W/"b7bd570cd2eaf6ea9eace36101424097"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 420b04515afbec0c45b59617f13f792a.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P4
x-amz-cf-id: HMxJggNzGeS8hrVeaIXP03taKJDissQAfYkBYOZw9TgX_UmzGGBWTA==
age: 381
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.11763/bundles/project.js&cfRay=78b69a623bcdb52d-IAD
x-hs-target-asset: conversations-embed/static-1.11763/bundles/project.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 78b9815a89f2b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/66325/domain/rindegastos.com/token
54.230.111.78200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/66325/domain/rindegastos.com/token
IP 54.230.111.78:0
GET /partner/66325/domain/rindegastos.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Wed, 18 Jan 2023 18:48:27 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: C3AP3VGLcAwPtBKUlhkXaGFOjr28P1lIgm_huzJZhLMzN0JFx3JU_w==
age: 5
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-c772b95.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-c772b95.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-messenger-c772b95.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:36 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 4N/EgX45KT3vAouJVUQPGXdrVFo/2SOzknC3NIcC1Flr5CX25HMGSULAsUOs2nGpBIxmKE/4bH0=
x-amz-request-id: DXRQYQ3T7266PBMK
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Jan 2023 08:35:37 GMT
etag: W/"09da66a62fc51759b4fda153acf9be80"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 16 Jan 2024 08:35:36 GMT
x-amz-version-id: y63MswNUfES8Jj8.NkFOyuMjdB3RIAFM
cf-cache-status: HIT
age: 58879
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WIIl8pSGy3zeOV80yeHwAXXO89jUafkWVyov6mrm6g%2BPZ1qJkcSMQPAEGxB4aYD5%2FDNsBON9D8pGxMS2C70mU1lckF9GAjp01CwIuVvbIVIhvozd%2FngL3g3RrYolDUY2Yzvz2UM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b9817cb98db52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-9948-c772b95.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-9948-c772b95.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-9948-c772b95.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:36 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: uD4e+XZzWbDbmLUzF45R9lrf3SOWFu1aEGYTDzYwXTerhaHxJ982joDNDwLzMfsgH3YXEixSjPQ=
x-amz-request-id: 0HNKBRTGNM55K5HW
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Jan 2023 08:35:38 GMT
etag: W/"a432cca8f92f351c91bfa3d18713dc76"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 16 Jan 2024 08:35:37 GMT
x-amz-version-id: tmKIsYUwUXKzTdRl84K.mjTzd_BCLB0s
cf-cache-status: HIT
age: 58879
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jJLCe59NljH%2BqocBaZF1XS3UxcEoTAItJLVUy9N2oxKnxe1j2N9t8RWb4yjQC08LhUSJC1HhMDvYK3%2BHkN8ZKRZeLNhlyltiqjKa97M50nwQRY1o6aYiEDWzE1NQjJtgrKXXFF4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b9817d0a3cb52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Arimo:400,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Arimo:400,700
IP 142.250.74.106:0
GET /css?family=Arimo:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 18:48:34 GMT
date: Wed, 18 Jan 2023 18:48:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/web-widget-framework-73f767e20e4f3af7aaf1.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/web-widget-framework-73f767e20e4f3af7aaf1.js
IP 104.18.70.113:0
GET /web_widget/latest/web-widget-framework-73f767e20e4f3af7aaf1.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:36 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: mq7czFgK6QKJS/nFTuwHvLtJrEhiEe7yk5CEfB3+pjYtbQNBEQ6ET7ZWVLgN1sba/JZ6g9VZMd0=
x-amz-request-id: SMYTEQGHD383CCFV
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Jan 2023 08:30:18 GMT
etag: W/"cf9c6cdd1ca55fd360e7bdc92359938a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 16 Jan 2024 08:30:17 GMT
x-amz-version-id: sTOcIduw73kbIjRTJdem6uITZKCYLKb7
cf-cache-status: HIT
age: 58904
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZJwqiWTYXUSDrWL%2BYgKtegK7VtbwSIwEDkocUvwLOEAbf568D1%2FU2XPI5cf08xzD1IC5V%2FLWV94z8lFb0IWv0JbjaNz27M4sagn7ASLic7hYw1oNfIDb6%2BCDCEZayvFy1yJkjbI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b9817b3f03b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
ppstatic.s3.amazonaws.com/expenses/js/jquery.min.js
54.231.163.89200 OK 0 B URL HTTP/1.1 ppstatic.s3.amazonaws.com/expenses/js/jquery.min.js
IP 54.231.163.89:0
GET /expenses/js/jquery.min.js HTTP/1.1
Host: ppstatic.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 5LIbefkCCJ5Hd8VkavPUdK2fBv+vI1brztB0EUHTR0i7HW0ORU14MT2H0lomHmU/AkXzSwxsjV0=
x-amz-request-id: 2FQCGHFTA9VBB43Z
Date: Wed, 18 Jan 2023 18:48:36 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Thu, 17 May 2018 21:44:56 GMT
ETag: "bb5f9cf31421aebe289fb129d5866718"
Cache-Control: no-cache
x-amz-version-id: 6t4W9Yo4jMSIjMFraoETOfUlA9Mvw54r
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 85558
www.rindegastos.com/document/
143.204.55.45200 OK 0 B URL HTTP/2 www.rindegastos.com/document/
IP 143.204.55.45:0
GET /document/ HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html
date: Wed, 18 Jan 2023 18:48:31 GMT
last-modified: Mon, 16 Jan 2023 13:30:14 GMT
etag: W/"3655082a95d9af1030e8d0ff87944b1b"
x-amz-server-side-encryption: AES256
server: AmazonS3
cache-control: public, max-age=0, s-maxage=600
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2fFpLlkBQkrIQElPssHXQkehEK9fx3hzbyeKteNkYw3FQ6bjeR6hwg==
X-Firefox-Spdy: h2
api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=3276114
104.17.203.204200 OK 0 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=3276114
IP 104.17.203.204:0
GET /hs-script-loader-public/v1/config/pixel/json?portalId=3276114 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:32 GMT
content-type: application/json;charset=utf-8
cf-ray: 78b9815f4a3fb4ff-OSL
access-control-allow-origin: https://www.rindegastos.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: 1f943e31-55c2-4c07-8361-bf7b109f2139
x-trace: 2BDF78B5725ED6096A858AD21CF2B4061C1A711107000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kbzSjFy0njBj1gafZTtqBzNoji6euDrCZV2j%2FFW31PESOfoeNLYLzUmicjcxsQDC5BoQKO7sCGlYHnc10xOFOqs4j1OpIS%2B3MPNDl15oX8nrHLw5PRWIbCAeuBVDjWo%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rindegastoshelp.zendesk.com/embeddable/config
104.16.53.111200 OK 0 B URL HTTP/2 rindegastoshelp.zendesk.com/embeddable/config
IP 104.16.53.111:0
GET /embeddable/config HTTP/1.1
Host: rindegastoshelp.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.rindegastos.com/
Origin: https://web.rindegastos.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:36 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-678bfc9b-bwz4t
x-request-id: 78b9815e1cc10af6-IAD
x-runtime: 0.002694
vary: Origin, Accept-Encoding
x-cached: MISS
last-modified: Tue, 17 Jan 2023 19:45:07 GMT
cf-cache-status: HIT
age: 4
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ozanzzgB53HqqOEvWWwCkzTePQdPOkwlzbWeC31DKSMlhkrP%2Bh4rnK4ogzRVo0YM%2Fln0ooi8nrytLvzKQfsauOXL%2F2oZqTJZ%2FuHRbWUCq%2FyyXWDeAFGJBgrDRlhoe8IaYof5aW8ajARjjQ2F1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=2d40ce837af9eadd14f27aa237a341abeb545489-1674067716; path=/; domain=.rindegastoshelp.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 78b9817c6843b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hscollectedforms.net/collectedforms.js
104.17.129.171200 OK 0 B URL HTTP/2 js.hscollectedforms.net/collectedforms.js
IP 104.17.129.171:0
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Dec 2022 02:49:13 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: SN4HXBautbT5xHa4DdPckLpyluwLE8QR
etag: W/"349cabd549e2249f8fb6ac3ac6f08e00"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 16df6ade68382d048f8aad1f7e39da28.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: tWk85sEhUlt5d-81em5C5vEEjyOc-SKK2_CK7CjWNRZ-I5m6x1XUWw==
cache-control: s-maxage=600, max-age=300
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.312/bundles/project.js&cfRay=78b9813adc330afe-IAD
x-hs-target-asset: collected-forms-embed-js/static-1.312/bundles/project.js
access-control-allow-origin: *
x-hs-cache-status: HIT
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 5
server: cloudflare
cf-ray: 78b9815a9e26b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/66325/domain/web.rindegastos.com/token
54.230.111.78200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/66325/domain/web.rindegastos.com/token
IP 54.230.111.78:0
GET /partner/66325/domain/web.rindegastos.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.rindegastos.com
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Wed, 18 Jan 2023 17:49:39 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cA2lSAMZhjfXagLxGKhsQN5I9urqKqUZOI4uGoqRbflR-Lrym6vveA==
age: 3537
X-Firefox-Spdy: h2
www.rindegastos.com/main.d1c687c79c245f95.js
143.204.55.45200 OK 0 B URL HTTP/2 www.rindegastos.com/main.d1c687c79c245f95.js
IP 143.204.55.45:0
GET /main.d1c687c79c245f95.js HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/document/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 18 Jan 2023 18:48:26 GMT
last-modified: Mon, 16 Jan 2023 13:30:15 GMT
etag: W/"b99e95fa4f8d3d39d273fb2d87d34334"
x-amz-server-side-encryption: AES256
server: AmazonS3
cache-control: public, max-age=0, s-maxage=600
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: m0TviuwLhBDDnTmrNFb1KVcwlXc7FPN0W4rhgu3J_80Gyav0v7B6wA==
age: 5
X-Firefox-Spdy: h2
forms.hubspot.com/collected-forms/v1/config/json?portalId=3276114&utk=
104.19.154.83200 OK 0 B URL HTTP/2 forms.hubspot.com/collected-forms/v1/config/json?portalId=3276114&utk=
IP 104.19.154.83:0
GET /collected-forms/v1/config/json?portalId=3276114&utk= HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rindegastos.com
Connection: keep-alive
Referer: https://www.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:32 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: 1ce9b22f-8ab2-4cfa-b14a-e385eb2c3689
access-control-allow-credentials: false
access-control-allow-origin: https://www.rindegastos.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=aTcPZJk6R7GrkeebQibt_NKXGI26z8nndhchCdVQ8Nc-1674067712-0-AVIBJr1B3llIIOJm5nxMI0hGgh86gZ91vTb6L0FsbB6fMQQXL3U9VjltkEYViUp9k1nMeT1cQ/YOo5p1WR2rQhE=; path=/; expires=Wed, 18-Jan-23 19:18:32 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GWD%2FdVPI9fZtcQ2sZaF%2FxMg%2FU%2BvpR9cJkSZ0Dw2bZhx8xMHufgvieHQT4312UQwtzXwrPXFMVwYqA%2FQPsQUMHVlozeyBRr5vY4lKYa5QgDxCog7aOlSSqyvydfCto7tRNnYB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78b9815fc9c4b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-7949-c772b95.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-7949-c772b95.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-7949-c772b95.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:36 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: Yn55bGEBi3izFpebSrcmvZoTUTEFEB8j77PvBKkYjIRXlWZUS+cuToxswVLlnoiW9nGVyxk86Uw=
x-amz-request-id: 0HNYW61D6VY7CYEB
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Jan 2023 08:35:38 GMT
etag: W/"441f172a3c826ccdcc5a19f475a95aa0"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 16 Jan 2024 08:35:37 GMT
x-amz-version-id: I6IFCMYduvst6RhTSSQUwP71lKh1uISZ
cf-cache-status: HIT
age: 58879
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BinzyhyXTj%2F5AAo7VQrFB8QQIzEMJzkaxpRUQ7xZUMOvRRhUPXLxCWvIo0HHiO8hIRyasztnSi%2FpUnCxMJftXOfVDu%2BPqE3TuV3QEOq3qDkBhp9ZDvkd7770O1qx1tOKAwykCGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b9817d1a4db52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-3646-c772b95.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-3646-c772b95.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-3646-c772b95.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:36 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: UA7MVIrbMFM5vtFYZ7NDjSat+4jQExX40FbudW/XSPKjuyHCBKUHFaJl2uEoGA+JTzhyTM0AvJA=
x-amz-request-id: 0HNZMCFHN6F352KK
x-amz-replication-status: COMPLETED
last-modified: Mon, 16 Jan 2023 08:35:37 GMT
etag: W/"a2f50e5463aacfa90ca17c1c7ba598bb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 16 Jan 2024 08:35:36 GMT
x-amz-version-id: jFXLa0TWURaTmol9Zvm5bHgAUlkehwzT
cf-cache-status: HIT
age: 58879
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sIh3ZvEmLjF2JodZhDFIuEky1w5W59Xb4NDvNIMvvU8WPTFCfCOXXo7uhyhbnLvCyLpx3PZwYmRr8YxJjY8PtxaXexgw3vQU4Bozl3QWgHaSyRjz1AV9iNF4jaf7XzQVvfm1hDQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b9817d1a5cb52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/66325/domain/web.rindegastos.com/token
54.230.111.78200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/66325/domain/web.rindegastos.com/token
IP 54.230.111.78:0
GET /partner/66325/domain/web.rindegastos.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.rindegastos.com
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Wed, 18 Jan 2023 17:49:39 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VWunmoW5RUDyEjJAM08zo61CnvBnF3gwaWnju_2SZAYI9biboeiuDw==
age: 3537
X-Firefox-Spdy: h2
www.rindegastos.com/polyfills.778d7d2ca68c77f4.js
143.204.55.45200 OK 0 B URL HTTP/2 www.rindegastos.com/polyfills.778d7d2ca68c77f4.js
IP 143.204.55.45:0
GET /polyfills.778d7d2ca68c77f4.js HTTP/1.1
Host: www.rindegastos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rindegastos.com/document/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 18 Jan 2023 18:48:26 GMT
last-modified: Mon, 16 Jan 2023 13:30:14 GMT
etag: W/"222b0f4ec57bcb8cbd0707a57e799e86"
x-amz-server-side-encryption: AES256
server: AmazonS3
cache-control: public, max-age=0, s-maxage=600
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dG2B7vRuMfSomjVs3NECpu6Blsx4-quMSKLUD9O7X3Ob7nYpgQ2weg==
age: 5
X-Firefox-Spdy: h2
static.zdassets.com/ekr/snippet.js?key=4f349ffb-427f-4fb0-934a-55bdcc3319d2
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/ekr/snippet.js?key=4f349ffb-427f-4fb0-934a-55bdcc3319d2
IP 104.18.70.113:0
GET /ekr/snippet.js?key=4f349ffb-427f-4fb0-934a-55bdcc3319d2 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.rindegastos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 18:48:34 GMT
content-type: application/javascript
x-amz-id-2: 2vczt6VEQAujZh2Sn1saK7Q0yPHQMRKRQuuC+kOwLnJ40itjD1HXfy2Id85tVz8wD4O1ArN10VQ=
x-amz-request-id: 4MARQ9YY8PDZ70A8
x-amz-replication-status: PENDING
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: TCAqq4sghBBBAAXd3MLZ8Fy8XIds..vO
cf-cache-status: HIT
age: 56
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=URaTY2XVRCSH9b%2F1IZl5n30Grg48IQKWsTzReXPooCDvswT7kmoJKWSBiUK%2FvPUOvKt3Exs2Zho3FnnmwM6LEDmAEgcPybe7EiAte94GPCY4z37vmL9RmG0hHjMUvwapWu7X20Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 78b98170d922b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2