| r3.o.lencr.org/ |  23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashef6d323da0ad155f526b4a57c2e46ccc 71686b19b3ca049b9b66f8740284c552a3f61a20 99e2f56075a08f133a9d1d0122ab9ef2d9eaa61e18f46994e52e21a8a53203f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "99E2F56075A08F133A9D1D0122AB9EF2D9EAA61E18F46994E52E21A8A53203F3"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11736
Expires: Mon, 10 Oct 2022 17:52:20 GMT
Date: Mon, 10 Oct 2022 14:36:44 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  108.157.229.61 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP108.157.229.61:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbdb8b66c705a7b996496d780f50c00b5 403ae92039fcc933870f51f913f78ccaf9652256 c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 10 Oct 2022 13:48:21 GMT
Expires: Mon, 10 Oct 2022 14:27:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 fdac35835bcf0937b6f910eeac10720e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P2
X-Amz-Cf-Id: G5G7EZJSkHtVvXre-oI5EfUENaBm0K02hyFJe-3frXhew994XD2X8A==
Age: 2903
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3d0ffae9abfdf558a6286013a0201c8b 2dc8ea0000a1b0c0f849611fdd73429bca51bfad 8e19eab9b6d16819f9ef3920971542cbcf5dd18280617e2de1a3827f0c149398
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8E19EAB9B6D16819F9EF3920971542CBCF5DD18280617E2DE1A3827F0C149398"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6713
Expires: Mon, 10 Oct 2022 16:28:37 GMT
Date: Mon, 10 Oct 2022 14:36:44 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /4NUoMzXRBJXlHnn8VQHmfew6BNI3aIS7TBee1yOPb2aggW5ds1a6wC5Pf8fqwm72xeJ7ZJkPoY=
x-amz-request-id: JVFFPKAT534TDM90
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 10 Oct 2022 14:32:32 GMT
age: 252
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hasheb7abc74181e677c01d4f432013c7ab9 85e4cf016f68510fd73a789079a06ab351611175 63294243993aad25b04cd6de49d9d6678aaaff5db1a085f6dc528d22ae14568d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63294243993AAD25B04CD6DE49D9D6678AAAFF5DB1A085F6DC528D22AE14568D"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1903
Expires: Mon, 10 Oct 2022 15:08:27 GMT
Date: Mon, 10 Oct 2022 14:36:44 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 10 Oct 2022 14:36:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 108.157.229.61 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP108.157.229.61:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Mon, 10 Oct 2022 14:29:41 GMT
Cache-Control: max-age=3600
Expires: Mon, 10 Oct 2022 14:31:49 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 d913eed4ff9d3ba68bce11280aa7e1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P2
X-Amz-Cf-Id: -m02wiGAIRPOI0eepJVOksTg7Urx08Xiz58xyPdNdbBj_PUR6fh1Ag==
Age: 423
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash43141c37657b2dc617dc65bfe97a865c df200056afa06387a505aac1d8098c6675356ba9 e9e99ad50877b82025b812718da985f84e52654af4b62244ca3a162c2da17cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashb80398e65c98d84250756256d31eed2d 3cc23d1d91745ddd04ee676f51762f37c0bcdbd3 f2cb6fda3fdbd8f04d380e7841875d322353864124bb5b25ce36fb327a2bfded
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 472 B |
IP172.64.155.188:0
Hash0cebdf750b878a3b6236fee86e10eb58 3e84bdefaffa55e20f2327ff6e5ff126f84e0986 5668c69730fd338408c592181f7a8c5d18fe1d9df0cea6172d03718a2e3b0dd6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 14:36:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 09 Oct 2022 00:26:32 GMT
Expires: Sun, 16 Oct 2022 00:26:31 GMT
Etag: "3e84bdefaffa55e20f2327ff6e5ff126f84e0986"
Cache-Control: max-age=466786,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7580170c4a29b518-OSL
|
|
| www.googletagmanager.com/gtag/js?id=G-DK12Q7BP4E | 142.250.74.168 | 200 OK | 76 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-DK12Q7BP4E IP142.250.74.168:0
File typeASCII text, with very long lines (21373) Hashf6e12cf5a7c5bb1bb92b163f9c2f78ec 4e92467155c652504af3b4784dae01c0472aa245 c27c8fc20687adbb078ce55b83b903ff2747fae650e15c2f590dee9b8103fa92
GET /gtag/js?id=G-DK12Q7BP4E HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 10 Oct 2022 14:36:44 GMT
expires: Mon, 10 Oct 2022 14:36:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76456
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| components.mywebsitebuilder.com/fonts/font-awesome.css | 35.190.14.35 | 200 OK | 31 kB |
URL HTTP/2components.mywebsitebuilder.com/fonts/font-awesome.css IP35.190.14.35:0
File typeASCII text, with very long lines (30584) Hash9f3af79fa00509146c92bd91454d4eaf 5d0330dd4eff48533a6dd559fc4eadc611ebb255 bd1411968f2f8d6fac8407f679d31f30939345c45bf1df811ba149120d879fb1
GET /fonts/font-awesome.css HTTP/1.1
Host: components.mywebsitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsPMxRxQdYuge0BRnhSwKlynaWH0AcRoGMpuXAeo9BVm-83Gu3cEySp-cKvn8MMArIDTbqyj1P2nstBiestWECwOx12m7Qg
x-goog-generation: 1608286413516447
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 30748
x-goog-meta-:
x-goog-custom-time: 1970-01-01T00:00:00Z
x-goog-hash: crc32c=ghVUSQ==, md5=nzr3n6AFCRRskr2RRU1Orw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 30748
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Sun, 25 Sep 2022 12:31:02 GMT
expires: Mon, 25 Sep 2023 12:31:02 GMT
cache-control: Cache-Control:public,max-age=315360001
age: 1303542
last-modified: Fri, 18 Dec 2020 10:13:33 GMT
etag: "9f3af79fa00509146c92bd91454d4eaf"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?display=swap&family=Anton:400,700|Signika:300,400,700 | 142.250.74.10 | 200 OK | 973 B |
URL HTTP/2fonts.googleapis.com/css?display=swap&family=Anton:400,700|Signika:300,400,700 IP142.250.74.10:0
Hashd59abf606b4e730c7235eeed8f24ec3e e7aa5b78143bcda7751e91e40de02baa191bea73 c891da4a719a0886ca64a211ad6a261131ce8bc68489362ab0769ca22535d07d
GET /css?display=swap&family=Anton:400,700|Signika:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 10 Oct 2022 14:36:44 GMT
date: Mon, 10 Oct 2022 14:36:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashb80398e65c98d84250756256d31eed2d 3cc23d1d91745ddd04ee676f51762f37c0bcdbd3 f2cb6fda3fdbd8f04d380e7841875d322353864124bb5b25ce36fb327a2bfded
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash43141c37657b2dc617dc65bfe97a865c df200056afa06387a505aac1d8098c6675356ba9 e9e99ad50877b82025b812718da985f84e52654af4b62244ca3a162c2da17cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 472 B |
IP172.64.155.188:0
Hash0cebdf750b878a3b6236fee86e10eb58 3e84bdefaffa55e20f2327ff6e5ff126f84e0986 5668c69730fd338408c592181f7a8c5d18fe1d9df0cea6172d03718a2e3b0dd6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 10 Oct 2022 14:36:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 09 Oct 2022 00:26:32 GMT
Expires: Sun, 16 Oct 2022 00:26:31 GMT
Etag: "3e84bdefaffa55e20f2327ff6e5ff126f84e0986"
Cache-Control: max-age=466785,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7580170d4b86b518-OSL
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F4990346cc3b242aca5b33efdd4cb85bb&methods=resize%2C500%2C5000 |  104.18.150.9 | 200 OK | 28 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F4990346cc3b242aca5b33efdd4cb85bb&methods=resize%2C500%2C5000 IP104.18.150.9:0
File typePNG image data, 500 x 179, 8-bit/color RGBA, non-interlaced\012- data Hash5e0842aa087566f6e5a6e035e1ea1fd1 5198dfb08036d143ee4cb798d6be4fe9cac7c8a6 92792ccb4975c9ef0f75ab1c444ba8e6b61b5f65618bb6c53d89cc72c034895a
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F4990346cc3b242aca5b33efdd4cb85bb&methods=resize%2C500%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:45 GMT
content-type: image/png
content-length: 28477
cf-ray: 7580170d7afab50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227431
cache-control: public, max-age=2678400
etag: "cfwh3bZy7qLskZWWcHiqKwEg:320c802f9ae09915f6cda0cac10fb19c"
last-modified: Wed, 02 Feb 2022 16:49:56 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=8 c=15+21 v=2022.10.3 l=28477
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F932f6271055745dfac29fc8d210d6dac&methods=resize%2C1000%2C5000 | 104.18.150.9 | 200 OK | 195 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F932f6271055745dfac29fc8d210d6dac&methods=resize%2C1000%2C5000 IP104.18.150.9:0
File typePNG image data, 1000 x 1001, 8-bit/color RGBA, non-interlaced\012- data Size195 kB (194608 bytes) Hash28ef88d8aade353f94f3f5c56d8936d6 90c4047ef42dcbdeedfed6e0aa42de7a1059ed5d f6aa4c6dd05701fee304a1e9ff9f5b7d747663a6300228ad5587b86d8312ed38
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F932f6271055745dfac29fc8d210d6dac&methods=resize%2C1000%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:45 GMT
content-type: image/png
content-length: 194608
cf-ray: 7580170d7af9b50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227431
cache-control: public, max-age=2678400
etag: "cfsWd14hGT4RFCvlF0mq8BbA:ff2eff81d1ca76c1b2858b047d01c689"
last-modified: Wed, 02 Feb 2022 17:10:29 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=4 c=4+58 v=2022.10.3 l=194608
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| flexmedicao.com.br/inicio.cb34de2d.js | 162.241.60.121 | 200 OK | 16 kB |
URL HTTP/2flexmedicao.com.br/inicio.cb34de2d.js IP162.241.60.121:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeUnicode text, UTF-8 text, with very long lines (39212), with no line terminators Hashd523ef412f5bc29d877045ca07f01580 978c50ee3c255b02adcbff7455a911ef3b6f2361 8a3185a8cf6c20dbfc2212e05cd57e6993142b306c71578f36ac841225056793
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | | | quad9 | Sinkholed | |
GET /inicio.cb34de2d.js HTTP/1.1
Host: flexmedicao.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/ps/iuelumiisqsiaq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 11:33:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15508
content-type: application/javascript
date: Mon, 10 Oct 2022 14:36:45 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash5855dca2f41651669a3211635c24ce5a 3f17ede289a3ac814e80a0acefbcd97246ab51de ca400e5e49929039d4382b1ce2defadc76d86b5756fac8dbaa6d237d5ef1699c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash29a32d9388903ec730ac67b6b1f10269 6d54710f2bf0b284533005d8c783f3f15c9920af cd03b8d5ae307fb1b3d976457c9762a743d5268ddd1f82c1fb5ae2fcd3e3d6d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 35.167.231.108 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.167.231.108:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y+0txcQchqAgzNJxDHreMg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zxguzF2ueFKIek05CI42BbtMPN8=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash29a32d9388903ec730ac67b6b1f10269 6d54710f2bf0b284533005d8c783f3f15c9920af cd03b8d5ae307fb1b3d976457c9762a743d5268ddd1f82c1fb5ae2fcd3e3d6d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashd86e14ff3ce5350e8b876fa551583c57 f5d6a4f4a7da1e11bc5bebd89a1fe6f3ac60cb30 6db523ab57767f22ee6cebc4050b55f11ffc9937ad3868c63090df084cc9a7b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/signika/v20/vEFR2_JTCgwQ5ejvG1EmBg.woff2 | 216.58.207.195 | 200 OK | 40 kB |
URL HTTP/2fonts.gstatic.com/s/signika/v20/vEFR2_JTCgwQ5ejvG1EmBg.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 39776, version 1.0\012- data Hash4f71bc01b8741decea03ed8f778e82ba 32d83a7d5d23603f7e2e95480ce01bd45fe8602f e36ecb4b8f63375fe634496441f39c6165c5504f3d4dbe8ae47caae8d7730e38
GET /s/signika/v20/vEFR2_JTCgwQ5ejvG1EmBg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flexmedicao.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 00:14:13 GMT
expires: Thu, 05 Oct 2023 00:14:13 GMT
cache-control: public, max-age=31536000
age: 483752
last-modified: Tue, 23 Aug 2022 18:45:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2 | 216.58.207.195 | 200 OK | 17 kB |
URL HTTP/2fonts.gstatic.com/s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 17020, version 1.0\012- data Hashaca09278214a7e267c0498cdd36ce416 ab7def30380e8f14e6064a9fd3c7dca6769ad85d feb9617bd3fcda1a52cbf8539985fddac2aaab0e6df8dbdac21ec3e9a179a4be
GET /s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flexmedicao.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17020
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 20:02:45 GMT
expires: Tue, 03 Oct 2023 20:02:45 GMT
cache-control: public, max-age=31536000
age: 585240
last-modified: Tue, 19 Apr 2022 18:51:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashd86e14ff3ce5350e8b876fa551583c57 f5d6a4f4a7da1e11bc5bebd89a1fe6f3ac60cb30 6db523ab57767f22ee6cebc4050b55f11ffc9937ad3868c63090df084cc9a7b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash0fa37076cf716e45f8c7d4c9d3763ec4 b5e15dbbf63afd38dafc5681994078585c2974a6 819e659d6a167e928acd75ce791dbe29c4ad44784b47a5beb0376cbfab59937f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.195 | 200 OK | 15 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 08 Oct 2022 12:31:58 GMT
expires: Sun, 08 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 180287
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| runtime.builderservices.io/runtime-endurance-21504/ef3da8e4112a1c6b9f9b2fd9d5636b8d.svg | 104.18.150.9 | 200 OK | 50 kB |
URL HTTP/2runtime.builderservices.io/runtime-endurance-21504/ef3da8e4112a1c6b9f9b2fd9d5636b8d.svg IP104.18.150.9:0
Hashe544230c0355ca6d2812c9424f486b85 5a6d00ee4bef0630120314c022bb1d80d64c780f 4965a5a655845f324c402bb7b26246adf5d799db14677c07c07dbcfd4a1b2da3
GET /runtime-endurance-21504/ef3da8e4112a1c6b9f9b2fd9d5636b8d.svg HTTP/1.1
Host: runtime.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:45 GMT
content-type: image/svg+xml
cache-control: "max-age=31536000"
content-md5: S+puKKYoLEBbyGc0PeGbhw==
last-modified: Fri, 19 Aug 2022 08:10:05 GMT
x-ms-request-id: 1052674d-d01e-0017-513f-da4847000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
cf-cache-status: HIT
age: 270587
vary: Accept-Encoding
server: cloudflare
cf-ray: 758017104cadb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.195 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 07 Oct 2022 00:48:31 GMT
expires: Sat, 07 Oct 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 308894
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| runtime.builderservices.io/runtime-endurance-21504/bundle.js | 104.18.150.9 | 304 Not Modified | 0 B |
URL HTTP/2runtime.builderservices.io/runtime-endurance-21504/bundle.js IP104.18.150.9:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /runtime-endurance-21504/bundle.js HTTP/1.1
Host: runtime.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Fri, 19 Aug 2022 08:10:04 GMT
TE: trailers
HTTP/2 304 Not Modified
date: Mon, 10 Oct 2022 14:36:45 GMT
cache-control: "max-age=31536000"
content-md5: zr1PzQZGQ1+XitxBpwPSnA==
last-modified: Fri, 19 Aug 2022 08:10:04 GMT
etag: 0x8DA81BA38DF1559
x-ms-request-id: 2b7941c9-501e-0009-32a5-b8a49f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
cf-cache-status: HIT
age: 1286489
vary: Accept-Encoding
server: cloudflare
cf-ray: 75801710edcfb51b-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash3d8a73bab6a83e1cc9b77c023c352cce 736e9abe656ec3ba32b95c45b624d5ed4b133ef7 aba5906acbbcb94970b1b3f6486bd84794616146a925f77eb8796f41a06f654f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4190
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:45 GMT
Last-Modified: Mon, 10 Oct 2022 13:26:55 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-DK12Q7BP4E>m=2oea50&_p=723856990&cid=354083746.1665412605&ul=en-us&sr=1280x1024&_s=1&sid=1665412605&sct=1&seg=0&dl=https%3A%2F%2Fflexmedicao.com.br%2Fps%2Fiuelumiisqsiaq&dt=In%C3%ADcio%20-%20Flex%20Medi%C3%A7%C3%B5es%20Ambientais&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 | 216.239.32.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-DK12Q7BP4E>m=2oea50&_p=723856990&cid=354083746.1665412605&ul=en-us&sr=1280x1024&_s=1&sid=1665412605&sct=1&seg=0&dl=https%3A%2F%2Fflexmedicao.com.br%2Fps%2Fiuelumiisqsiaq&dt=In%C3%ADcio%20-%20Flex%20Medi%C3%A7%C3%B5es%20Ambientais&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DK12Q7BP4E>m=2oea50&_p=723856990&cid=354083746.1665412605&ul=en-us&sr=1280x1024&_s=1&sid=1665412605&sct=1&seg=0&dl=https%3A%2F%2Fflexmedicao.com.br%2Fps%2Fiuelumiisqsiaq&dt=In%C3%ADcio%20-%20Flex%20Medi%C3%A7%C3%B5es%20Ambientais&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flexmedicao.com.br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://flexmedicao.com.br
date: Mon, 10 Oct 2022 14:36:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash3d8a73bab6a83e1cc9b77c023c352cce 736e9abe656ec3ba32b95c45b624d5ed4b133ef7 aba5906acbbcb94970b1b3f6486bd84794616146a925f77eb8796f41a06f654f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4190
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:45 GMT
Last-Modified: Mon, 10 Oct 2022 13:26:55 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
|
|
| static.xx.fbcdn.net/rsrc.php/v3/y9/l/0,cross/ARZmeWVSJT5.css?_nc_x=Ij3Wp8lg5Kz |  31.13.72.12 | 200 OK | 5.0 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/y9/l/0,cross/ARZmeWVSJT5.css?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (4093) Hash82c68a42c1ae67bf43a249ed8ab6956b 1ed346f3b5c664e4daad2c5b3bbd6c67eb913670 58ecc978a179580a42a50019f0ed47ddab4192d8535618c725c7dd5ca5c70fe4
GET /rsrc.php/v3/y9/l/0,cross/ARZmeWVSJT5.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 09 Oct 2023 15:50:39 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: gsaKQsGuZ79DokntiraVaw==
x-fb-debug: JYT5eP0DjUyg3fFguFjD+ONmgVxN6Flr05EVMzpNuvL962QCV6v15U93y60Q3XMC+41gbKQoYTcTyswW8RwHrQ==
content-length: 5004
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3iLl54/yL/l/en_US/irCgPB7CJbM.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 8.4 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3iLl54/yL/l/en_US/irCgPB7CJbM.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (2903) Hashe38454d74d48882c6d38e85e7be816a4 105acd596d49b1677ab825168f547306d879f533 d69f603fb44e68d655ae98c5db858b15bd0c35357beecb91c3588fc48496f9eb
GET /rsrc.php/v3iLl54/yL/l/en_US/irCgPB7CJbM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:50:47 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 44RU101IiCxtOOhee+gWpA==
x-fb-debug: ViV4ifw+nIc0+kvx5q28jlZBsNjgKH1gNHcdsRoXQYujDi/roGtcIuRLtd58jqS9J8hu25P5HzJ1YEXpra5bBA==
priority: u=3,i
content-length: 8360
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/ym/r/AIP4IIfacYm.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 9.0 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/ym/r/AIP4IIfacYm.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (9883) Hash2e4138ecc6706139e000ad59eee37e25 9a702c6e670296e9aab1375d92c9f2f2a15b27d4 d5325ea83a73b20a9b665224fb8aa3a44360fc2f1675ff367936fd45354c2f92
GET /rsrc.php/v3/ym/r/AIP4IIfacYm.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 08 Oct 2023 00:27:45 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: LkE47MZwYTngAK1Z7uN+JQ==
x-fb-debug: wgJGSHVzM1c7eIp+/WqrymXlEe1zWaF9H9szohYS8jkWU4W9ynb2qtGmxoy8vF48yeTNBgWIbCRhV0mhgwY83w==
content-length: 8953
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yU/r/q6VzhXzzuec.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 16 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yU/r/q6VzhXzzuec.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeC source, ASCII text, with very long lines (8258) Hashbed6f1c97375602a8f8498010934286f 7b209330b2ddc87f0818681e7901a0945367c02c bb35559f9d7e20bd535239de676ef530aece43abf2fa748ed1c9af4220297118
GET /rsrc.php/v3/yU/r/q6VzhXzzuec.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:48:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: vtbxyXN1YCqPhJgBCTQobw==
x-fb-debug: 8Pd1cRV6dx95GTudaHeGI5LZA2/bhGzvy3idl7RH6O0ZCAN8+x+BwBcdJLwJgUG+XVXKLpRMD+38mthuipKQKg==
content-length: 16189
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/y8/r/SixM03AXEw8.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 336 B |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/y8/r/SixM03AXEw8.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (325) Hashf82d8f615a2484f0c5c4e4e0f55e8b5d c1c8ea5d697e2286b0a2bac7b3515a29b7f4cb28 91041f394721520d4dd5a33b28525d50da16e0fda08e102d971148fef1609dd2
GET /rsrc.php/v3/y8/r/SixM03AXEw8.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 05 Oct 2023 14:33:27 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: +C2PYVokhPDFxOTg9V6LXQ==
x-fb-debug: Y2H9hi09oTXHdXtY0vN+bFnJO2F5pPHwvi1i5huflEdchxACsJ6zRIDqFO5WU7k6ERCegG7MkslKxkAxO3MKTA==
priority: u=3,i
content-length: 336
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yi/r/iiDbYMCPtB3.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 1.7 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yi/r/iiDbYMCPtB3.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (1982) Hash533ff4519e2c7f77fac72ef04457f8f3 2df2b7ede2f719967e46649159d1068204ba11b3 2a960abb70d73b54902cb06087d6fdb584931d7759a838437560c266191c8cb4
GET /rsrc.php/v3/yi/r/iiDbYMCPtB3.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 29 Sep 2023 07:15:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Uz/0UZ4sf3f6xy7wRFf48w==
x-fb-debug: aDXKn+pbatKB5FH6OY3oX1n7+GvoWbD2oAhUknkAqpOfUF8ldWBh6JfJMXKyV52QOW69WkPAOfZ5OWZUL3sECA==
priority: u=3,i
content-length: 1657
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yV/r/1lYRIUv3fB9.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 7.2 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yV/r/1lYRIUv3fB9.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (4059) Hashe4f221c6642e6c519ca2462027a15712 6a7225c3221331d35773a252b6dbfb87f214b834 7eafaf8c19afe0e16ea9b18ee23cf0c7b391cfc4dd0fa2d52dd81f0f32348ada
GET /rsrc.php/v3/yV/r/1lYRIUv3fB9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 29 Sep 2023 07:15:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5PIhxmQubFGcokYgJ6FXEg==
x-fb-debug: ch3RzVu63qNzJ7/QB4DTXCq/LUe9uNqEq4lZq6+4MIjIHS0EOpwGmrNtYa7NEz1aIrs7fgqLNLgks1GHtmWXAw==
content-length: 7237
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3iEpO4/yd/l/en_US/5_SUQAbK5E-.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 23 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3iEpO4/yd/l/en_US/5_SUQAbK5E-.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (41975) Hashadb14bae63e321106f50ff2b08067e5e 8b6f8f84b5bc5329f59184dbd117710ec83e6b51 da0228d0968642c8ca925ab80a26e83719c98bf863cf21ecdb97689597c37f40
GET /rsrc.php/v3iEpO4/yd/l/en_US/5_SUQAbK5E-.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 07 Oct 2023 17:36:07 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: rbFLrmPjIRBvUP8rCAZ+Xg==
x-fb-debug: 7t473OBA7LIrU8oZmuKJqws8EAkJj43XiSOhcbwOwrXBQhpS1EVvsTzEYsE9P3KMTVDd5WASDHUt83Iwyd6C4w==
content-length: 23347
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/y8/r/w8L5211BM0Y.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 6.6 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/y8/r/w8L5211BM0Y.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (4486) Hashb87abe93f8a70c813fb619f85c5b6dd2 9312f34c3d13b9f6dfb15d52b0e6aab7c73acf9a 25d670c5a678b5a8634210e3494eae454e26a50d8d1df4db535150d4dce815f2
GET /rsrc.php/v3/y8/r/w8L5211BM0Y.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 09 Oct 2023 14:43:24 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: uHq+k/inDIE/thn4XFtt0g==
x-fb-debug: z3LMHPyivEjXgbzS56A/CAIBL0O97+WcjgDtI9bTMa9JYQpwuerrNpd44WOnvsY2hdHU02hcHjUjH1oeoE5I+w==
content-length: 6624
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yn/r/MGPxVqoNewa.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 4.8 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yn/r/MGPxVqoNewa.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeC source, ASCII text, with very long lines (10492) Hash714f10e2847aec5d059ffba9850f4761 6294ce5a378c4c03075e33d08a89f5dc2fed91ea d470b7261ff265897b61fa7cebf20a6fadcb00426b8ab5554d355e88db82febc
GET /rsrc.php/v3/yn/r/MGPxVqoNewa.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 06 Oct 2023 18:12:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: cU8Q4oR67F0Fn/uphQ9HYQ==
x-fb-debug: cWewG4/udNai70QWAHlxvh4/vureIpRazLmt+W6QYOf3tyhaJbtb7ghp7ppwVuRWNvQsnLcB1s38CNLsIp4hRQ==
priority: u=3,i
content-length: 4779
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yv/r/1fQxIvmLFgQ.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 19 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yv/r/1fQxIvmLFgQ.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (8608) Hash74db1c6351af508277853b10078052aa 38ca43b18caf0479119030e4160880e3bda4eb13 0eea178235567f33ef2ed59ffe6a29dc6a25fad2164ca98c187216ab9fde5bd6
GET /rsrc.php/v3/yv/r/1fQxIvmLFgQ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 07 Oct 2023 17:36:07 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dNscY1GvUIJ3hTsQB4BSqg==
x-fb-debug: DFEXZ2NCczj7Obw6qc1BfnR55YhVvV8kvQ2lG8BUCVLMY76TZS/RpcNJP6NE+A2QBtZREKJ5CNfLVSntgMB+oQ==
content-length: 18574
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 827 B |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (724) Hash29973cf3b0ef9f16fe31ed981b2f6573 f22eb80b89b5e0ae9ace854aab6676d56eaef6a1 476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 01 Oct 2023 02:34:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: Mg7Nl07Xeql2UYYfQ6U/d1jn84nc3Q4LytEgVL7Xk+CBl4lQzTK7FILgs4ua4Ua/O6TCYVesBEj5iKDSf2WZUw==
content-length: 827
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| runtime.builderservices.io/runtime-endurance-21504/bundle.js | 104.18.150.9 | 200 OK | 475 kB |
URL HTTP/2runtime.builderservices.io/runtime-endurance-21504/bundle.js IP104.18.150.9:0
Size475 kB (474836 bytes) Hash4442f0c25035512e40c3e27a0f8fa6e1 76bdb6bcf2d36ee7953a742772562c5f4176b8ee d3f9e0f589b0e921c4b0372238ad66c89fd0aaaf6c6705ad5a9a3b3dc686e7db
GET /runtime-endurance-21504/bundle.js HTTP/1.1
Host: runtime.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:45 GMT
content-type: application/javascript
cache-control: "max-age=31536000"
content-md5: zr1PzQZGQ1+XitxBpwPSnA==
last-modified: Fri, 19 Aug 2022 08:10:04 GMT
x-ms-request-id: 2b7941c9-501e-0009-32a5-b8a49f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
cf-cache-status: HIT
age: 1286489
vary: Accept-Encoding
server: cloudflare
cf-ray: 7580170da891b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yy/l/0,cross/UWsdBIKSBcK.css?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 4.6 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yy/l/0,cross/UWsdBIKSBcK.css?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeassembler source, ASCII text, with very long lines (2642) Hash6129c1970714487ee08a6dc8f42a9c53 b2d946d53a2da8713b326188f9b5228ef22bc6e4 5063846d4875cf4b569e244a03d855c8688b93adcf28e0242320f0e034821537
GET /rsrc.php/v3/yy/l/0,cross/UWsdBIKSBcK.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 09 Oct 2023 16:00:52 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YSnBlwcUSH7gim3I9CqcUw==
x-fb-debug: YzUFAgwiuzifXnqcvPBMbqIDtOZ3KlqmotHfVpEoxgwVQFTvc9bsLsTH3+YjK1kGXT2bx6FFr2NjlTLQkw9jvg==
priority: u=2
content-length: 4586
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yh/r/WOLN5pzG8JN.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 12 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yh/r/WOLN5pzG8JN.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (5540) Hashef22d2d8fd6a9cdb4561161a47734081 25109ce0f418e17988c3721d5e581e96820907ea a989b62b6c180f71495b290aacebf65fd8305ddc468a16a4eee004a7f448c00d
GET /rsrc.php/v3/yh/r/WOLN5pzG8JN.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 04 Oct 2023 07:24:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 7yLS2P1qnNtFYRYaR3NAgQ==
x-fb-debug: gExl4GJ8fFQaMeBJ5uHtMmGap0T9JZ3bR9YlE27Qd3s+p58p0NGOz/kFZ8PNMXLW1iHqhPhfQ5NiSm08lKSung==
content-length: 12270
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3izWV4/yH/l/en_US/PSu_oQteh80.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 42 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3izWV4/yH/l/en_US/PSu_oQteh80.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (10796) Hash4a147690e317073e260a3e4bfab2586d 3c01a3f22376420b8e3752d40f65b82a22767a5b 7deda8b874215240c8229581aed9f057f9cd69902f18ed5fd21fc672dbe4bd90
GET /rsrc.php/v3izWV4/yH/l/en_US/PSu_oQteh80.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:50:47 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ShR2kOMXBz4mCj5L+rJYbQ==
x-fb-debug: QBtm5A31p84mH+PmvWdZ7sBnSSMeDz9KcoVGlG/AJExqGHmLVYdk8y3KiAfSuBz9SPYch/W/h6ecEI20Qp2New==
content-length: 42060
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/y4/r/hBYHra2Vbh5.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 15 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/y4/r/hBYHra2Vbh5.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (56532) Hash9b3b2deac2716528af0a007a816ea130 11d2c9cca6fd78678588f10685d1431873d09d32 321c5f978ae91c5744944ea8dd9acd554398109f09bde07c7d308fb2b604cc9a
GET /rsrc.php/v3/y4/r/hBYHra2Vbh5.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 29 Sep 2023 06:46:27 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: mzst6sJxZSivCgB6gW6hMA==
x-fb-debug: TPlOwJ21K8gmtuyaeIOTKKNUj08IWvEl9CXBSoaphR4CTi00xzRRiidyRr9jHXsqVStCNiBicyt2kEkCLBhlWw==
content-length: 15208
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yw/r/GITkNocpCEa.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 48 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yw/r/GITkNocpCEa.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeC source, ASCII text, with very long lines (5066) Hash878769940a1d884e710ea43b258de81f d2fed3cfab52856abc168a6785a9687f94a033b8 545c9cb6337d3bfbe54404d11cd7d33c4d55922e3c522ca4629cd2411bb2081b
GET /rsrc.php/v3/yw/r/GITkNocpCEa.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 07 Oct 2023 17:36:07 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: h4dplAodiE5xDqQ7JY3oHw==
x-fb-debug: CYw2GC1gBzYj6Cl5p5NJ1h5rCIF8XzKVdIltMt4z5y6SXqvQAtnPH5oQdfFe4SEyQ6fceOQgUgldoCWC2De6Sg==
priority: u=3,i
content-length: 47904
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3ivrH4/yh/l/en_US/A3rRKG2HbGt.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 80 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3ivrH4/yh/l/en_US/A3rRKG2HbGt.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (5721) Hasha5220df963dc6c369e776bf8a18077d3 53dfa2d74610e0fc300f08bd932b165d58153f9b 3d7a1e56661b1e845f4d6be38f94f782933e90c9c26d5bb6377613c56268cd87
GET /rsrc.php/v3ivrH4/yh/l/en_US/A3rRKG2HbGt.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 06 Oct 2023 06:04:36 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: pSIN+WPcbDaed2v4oYB30w==
x-fb-debug: F9mHIYE9qlm4n7zhHRDoY+a6hJqWzqgPMIfnsxabUJKf10oDodJGvado6me389WhkTWqJWKeoAAcWZL0FVRVUw==
priority: u=3,i
content-length: 79829
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/y5/r/7lf04bBqXI5.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 91 kB |
URL HTTP/2static.xx.fbcdn.net/rsrc.php/v3/y5/r/7lf04bBqXI5.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:0
File typeASCII text, with very long lines (18608) Hashed2a38427bc7c787d441daf6ef8a7fcb d4a93d40aea50681f36498a746353323f2517f82 2b35acdb879c8a157b5986ddbdd508aafc55f341f60cf09f4e69c4a950fc6fca
GET /rsrc.php/v3/y5/r/7lf04bBqXI5.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 07 Oct 2023 06:47:26 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 7So4QnvHx4fUQdr274p/yw==
x-fb-debug: TdmCkXQ3X096nLDz5s+HEvN5+U0UVQlt5e1KV7by074lim3L+6H2r8+ATIuH9aGqyCnQ0T7b1G0zmdmtV3LftQ==
priority: u=3,i
content-length: 91103
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hostingapi.mywebsitebuilder.com/v1.0/runtime/appmarket/render/142/49912997 | 104.19.164.10 | 200 OK | 784 B |
URL HTTP/2hostingapi.mywebsitebuilder.com/v1.0/runtime/appmarket/render/142/49912997 IP104.19.164.10:0
File typeJSON data\012- , ASCII text, with very long lines (317), with CRLF line terminators Hash44dd2810dbd118b5af1037178454d912 3f9c2fab1196f336dbc59a85c4824b449e538a9b bee511680595f302c1ea6dbbb155e568ad621f69236e2541162fca883ee460a5
GET /v1.0/runtime/appmarket/render/142/49912997 HTTP/1.1
Host: hostingapi.mywebsitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-us
Accept-Encoding: gzip, deflate, br
Referer: https://flexmedicao.com.br/
Content-Type: application/json
Origin: https://flexmedicao.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:46 GMT
content-type: application/json; charset=utf-8
content-length: 784
access-control-allow-credentials: true
access-control-allow-origin: https://flexmedicao.com.br
content-encoding: gzip
vary: Accept-Encoding
x-builder-tracking-id: 6ae788667e1e4429be52fec9babede3d
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 758017123a3d0b61-OSL
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf97cde01f1afd5ed30319169445ec773 1cb25a8da62cdf1f9ab1b2b35d03163037691b33 1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4059
Expires: Mon, 10 Oct 2022 15:44:25 GMT
Date: Mon, 10 Oct 2022 14:36:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf97cde01f1afd5ed30319169445ec773 1cb25a8da62cdf1f9ab1b2b35d03163037691b33 1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4059
Expires: Mon, 10 Oct 2022 15:44:25 GMT
Date: Mon, 10 Oct 2022 14:36:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf97cde01f1afd5ed30319169445ec773 1cb25a8da62cdf1f9ab1b2b35d03163037691b33 1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4059
Expires: Mon, 10 Oct 2022 15:44:25 GMT
Date: Mon, 10 Oct 2022 14:36:46 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3c21914-dac1-455d-9533-b584e9bd6225.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3c21914-dac1-455d-9533-b584e9bd6225.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashcefb9479bc2fe5087f9d2b89ef3cec2b aa219f193812c6a2d0313316ce13fe74f1d468d0 a806ef995ed2285bd9f0d553df49aa28924e640805e1f50284baad1c0aec06bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3c21914-dac1-455d-9533-b584e9bd6225.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10113
x-amzn-requestid: 7a9800c5-81ed-4a23-bbe0-0041ab682856
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZwalQEPPoAMF3yA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63433e21-5a9bedb10c4f8c2c60ab3769;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 21:33:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MROeeTPtb6DfMHkig6fHcYuYiv1-udvJVfB1jygcDYLy4LuZmgRE_Q==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 22:21:32 GMT
age: 58514
etag: "aa219f193812c6a2d0313316ce13fe74f1d468d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddaf1070-ebad-430c-b856-6b6704ae51dd.jpeg | 34.120.237.76 | 200 OK | 6.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddaf1070-ebad-430c-b856-6b6704ae51dd.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7b2bd332e22751757c71b82b703f167e 5150043db72276380d5b265760112c05c233b873 18d961e14c5be703efce24f0e94ad4e046ad28b49325fdf22b5445fd24baf58d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddaf1070-ebad-430c-b856-6b6704ae51dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6533
x-amzn-requestid: 56d11966-2442-410b-9c4f-eed2a3bf0d5d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZwatMEpwoAMF1aA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63433e54-50740bf0455199093d849abe;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 21:34:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gYWm6_s9RdAyVM0zQZ3HiCF75D8P61GGdPqURw3PNkzg11xjRPms9Q==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 22:19:15 GMT
age: 58651
etag: "5150043db72276380d5b265760112c05c233b873"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b12fb41-30af-4093-a2e5-407e0dba7f9f.jpeg | 34.120.237.76 | 200 OK | 8.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b12fb41-30af-4093-a2e5-407e0dba7f9f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3cb1e1243af4405d2ddfc86ece266cff bcd47a41fc6b0384c03fa00b8fa4a23805fa3b28 6df8b3b5420bad300304d14e8e18d65e4179a76d2f7e0a24bce23655318f49a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b12fb41-30af-4093-a2e5-407e0dba7f9f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8218
x-amzn-requestid: 694a656a-0f68-4d3a-a316-1da1ce908c11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZwatMFwzoAMF4Ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63433e54-277be490531f4d3b4cf11540;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 21:34:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ET8XIJOYbM-nYBsZAjB4smh6AvsCpGjZzZBUquDwj37xR-ATPIm7Wg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 22:24:25 GMT
age: 58341
etag: "bcd47a41fc6b0384c03fa00b8fa4a23805fa3b28"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1241bbb-560d-4946-b821-3d3fd848e5c8.jpeg | 34.120.237.76 | 200 OK | 5.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1241bbb-560d-4946-b821-3d3fd848e5c8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf8b93f2b38b076ed186f3baed866bdd6 47cf653b8a6e172875082b92653c631bfc881105 cada99e3a8cf87992e884e86adb5288f54a109209e88d11a076f9f664b63fed3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1241bbb-560d-4946-b821-3d3fd848e5c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5689
x-amzn-requestid: 26b4078b-a915-46d8-9a8b-12c57c604d85
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zql_ZH0uoAMF15g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6340e9fb-708725bd19ed94a64965f2d6;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 03:09:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vTerEoCHWE7_FisyrkM1dOr7aDAKENTErY1qvKLuZ0HUzeSfZbhSRg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 03:31:55 GMT
age: 39891
etag: "47cf653b8a6e172875082b92653c631bfc881105"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6e9aa9808428e5fd81ac9d61d6f7c708 3a8d76badce50dd98938885082dcb6e30363ae88 d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 94e8e091-1136-41a7-843c-44c4ffe9e688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZqylGGYwoAMFQIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6340fe20-60b47aeb3b55af4f755577f4;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 04:35:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fzfUAL2jahiFgsqMExf1dB_7PFJt9wwO2BDKo3XJHSvk5AeeNP8FQg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 21:42:23 GMT
age: 60863
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a70c782-ab29-49bd-86a1-6c1f7c38fbc6.png | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a70c782-ab29-49bd-86a1-6c1f7c38fbc6.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0cb8976d18c6197dc99cd60d784f188b 2e6d5041aff56cc2313cc23438be450b6113f111 27b99d13f075013f66e3ca3d03074cc0b96bd6da63d094701c2f29e017362b8c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a70c782-ab29-49bd-86a1-6c1f7c38fbc6.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12292
x-amzn-requestid: d5129b2b-c513-4fa1-8b2c-9bda19870905
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZwatMF5goAMFXRw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63433e54-360ad9352303c09b3b6c2dce;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 21:34:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: moJJY-yrF8AGl9YHrQw-B2sUiGYAdUJERlssxR-i8UDb2r_SZpCfQw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 22:21:30 GMT
age: 58516
etag: "2e6d5041aff56cc2313cc23438be450b6113f111"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash29b850f78eff032c2e6d30896fa615c3 9be0f4fe829e9395573cfb0753bbe4853d9a4dc4 bdd66f2c7e5e0addf04ca580557703349bb24477dd39e7df9d213a6aca350ea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash670a9be248be04d1e473a199190887a2 a2073aa26a6762af9e005e632e77ab99f2d6f1b3 85886f2c1f64d4da9adb514d39395c4a5459602e87d2f7e56f4c50e484a09918
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| static.doubleclick.net/instream/ad_status.js | 142.250.74.166 | 200 OK | 29 B |
URL HTTP/2static.doubleclick.net/instream/ad_status.js IP142.250.74.166:0
Hash1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 14:27:37 GMT
expires: Mon, 10 Oct 2022 14:42:37 GMT
cache-control: public, max-age=900
age: 549
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/id | 216.58.211.2 | 302 Found | 0 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/id IP216.58.211.2:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Mon, 10 Oct 2022 14:36:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash670a9be248be04d1e473a199190887a2 a2073aa26a6762af9e005e632e77ab99f2d6f1b3 85886f2c1f64d4da9adb514d39395c4a5459602e87d2f7e56f4c50e484a09918
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash29b850f78eff032c2e6d30896fa615c3 9be0f4fe829e9395573cfb0753bbe4853d9a4dc4 bdd66f2c7e5e0addf04ca580557703349bb24477dd39e7df9d213a6aca350ea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.106:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 10 Oct 2022 14:36:47 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.106 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.106:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash2902c3fc4a28744d7098039f3686c521 d3c605c6188bca6c93fe2d97513d0315b434e640 0fbbc5a7bb5ffe3e46548cd7f6588400216eb02a5f8f1ee75b14a26e57bbc1fe
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 10 Oct 2022 14:36:47 GMT
server: ESF
cache-control: private
content-length: 31093
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.com/js/th/RLowZH2Xcwtj3dY_yGSeKf8RcILu2Rj3JTO2BWyvP7U.js | 142.250.74.164 | 200 OK | 14 kB |
URL HTTP/2www.google.com/js/th/RLowZH2Xcwtj3dY_yGSeKf8RcILu2Rj3JTO2BWyvP7U.js IP142.250.74.164:0
File typeASCII text, with very long lines (36288) Hashfbfd3c94b2bff52e528e30e47e759e35 610c710509fd4c81f8c1cb6373694cdd756b9c6a ba673825910e584be07daff4cccffd1b0b1653b936bd3c5841a268a030164912
GET /js/th/RLowZH2Xcwtj3dY_yGSeKf8RcILu2Rj3JTO2BWyvP7U.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:23:44 GMT
expires: Thu, 05 Oct 2023 19:23:44 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 27 Sep 2022 17:00:00 GMT
content-type: text/javascript
age: 414783
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.106 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.106:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash3bd37de788e5b459f499c924f519ed6f f1b096ee5bd5791c76e17c9ce5311e3a5745f1cd 1e1a4e4018b30c37e95030c5a9d0716afd45951932594ddcbd9462497ee0169c
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 10 Oct 2022 14:36:47 GMT
server: ESF
cache-control: private
content-length: 30912
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash9d63a33a810a3d7a28f6519e59d3496d 2014dea5da83d6ae71faeb930961da138686e3f9 4c78501135253615594a6b90b5f473292ad5362bdf8b244d570ab7c1e654282e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| yt3.ggpht.com/SWeXDQzXQ9JAxyoYxgC1Bow1_ZDrEcFU-ONP6PFdqAklkDQEDbi4SA9tALlYRcA84pAc7IGaoQ=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 2.0 kB |
URL HTTP/2yt3.ggpht.com/SWeXDQzXQ9JAxyoYxgC1Bow1_ZDrEcFU-ONP6PFdqAklkDQEDbi4SA9tALlYRcA84pAc7IGaoQ=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data Hashe7c8c413ad20f74b16654748dbf1082f 658ecac4e5af57783f8e00b0fa39cd1760076bea 09ab9f51550169a7cb1deffaccc359ebf5a8798d9bca1cfd5019e566354e3e1a
GET /SWeXDQzXQ9JAxyoYxgC1Bow1_ZDrEcFU-ONP6PFdqAklkDQEDbi4SA9tALlYRcA84pAc7IGaoQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1992
x-xss-protection: 0
date: Mon, 10 Oct 2022 14:32:10 GMT
expires: Sat, 08 Oct 2022 23:26:16 GMT
cache-control: public, max-age=86400, no-transform
age: 277
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash5084e25369a7f7612db0105c5ae5fd7f f297660d0ae6189de6fef41b5e4dcd6d7940d0fb 802a4e63f72275efd3234899757c7e48650e0a9d612c1628aeae428bba207f79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash72ad7fc4df3fd710eb071ca010dc1680 f85d9a1bc8189f43020023bf74a2e18e1fc4dba0 a59f4c7166b23a812f596e5f5cb7361a7f3580422bb5dee3ea2b6b4a7e71643c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash72ad7fc4df3fd710eb071ca010dc1680 f85d9a1bc8189f43020023bf74a2e18e1fc4dba0 a59f4c7166b23a812f596e5f5cb7361a7f3580422bb5dee3ea2b6b4a7e71643c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665434207&ei=_y1EY-eUCtXUyAX65Kq4CQ&ip=91.90.42.154&id=o-APRwykpZRGd9P6GLuqBqrVT7S9272smPjvDRPgxn6TQo&itag=251&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp-lCx4l4Be531Q9muawhZunaIVI&vprv=1&mime=audio%2Fwebm&ns=V6F5bDW-n9RMAcQx012AzTEI&gir=yes&clen=646175&dur=38.861&lmt=1665251859550872&mt=1665412189&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=viyr0IbvywYz3Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhANtfS386SNZugcms55eaMnDaWnNUsUdVtm9TbHJhkwx2AiEAuPcylAmZwPCno3NU2yjcYzD7g7lWoTU7T56bYCn480s%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAOxPa0S9eIuoPu-4UOZGBc30xalXI1JaIkoVFk7zNJ6hAiEApoKlwDMBBIGkjrtSNjV33F3dqPoR0hE04fFxU2Um80o%3D&alr=yes&cpn=Qsp9bxMvZbs7ZjCv&cver=1.20221005.01.01&range=0-65861&rn=2&rbuf=0 | 91.90.45.173 | 200 OK | 66 kB |
URL HTTP/1.1rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665434207&ei=_y1EY-eUCtXUyAX65Kq4CQ&ip=91.90.42.154&id=o-APRwykpZRGd9P6GLuqBqrVT7S9272smPjvDRPgxn6TQo&itag=251&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp-lCx4l4Be531Q9muawhZunaIVI&vprv=1&mime=audio%2Fwebm&ns=V6F5bDW-n9RMAcQx012AzTEI&gir=yes&clen=646175&dur=38.861&lmt=1665251859550872&mt=1665412189&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=viyr0IbvywYz3Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhANtfS386SNZugcms55eaMnDaWnNUsUdVtm9TbHJhkwx2AiEAuPcylAmZwPCno3NU2yjcYzD7g7lWoTU7T56bYCn480s%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAOxPa0S9eIuoPu-4UOZGBc30xalXI1JaIkoVFk7zNJ6hAiEApoKlwDMBBIGkjrtSNjV33F3dqPoR0hE04fFxU2Um80o%3D&alr=yes&cpn=Qsp9bxMvZbs7ZjCv&cver=1.20221005.01.01&range=0-65861&rn=2&rbuf=0 IP91.90.45.173:0 ASN#50304 Blix Solutions AS
File typeWebM\012- EBML file, creator webmB\20\012- data Hasha843b6abd92e6740cd2870ae100305fe fc2ab458b68da75b755d2dc357f26e30f0d41faa 72a481668015433294ae1885c8309805ad9ef7a5d4644c1219878e9eae4d2623
GET /videoplayback?expire=1665434207&ei=_y1EY-eUCtXUyAX65Kq4CQ&ip=91.90.42.154&id=o-APRwykpZRGd9P6GLuqBqrVT7S9272smPjvDRPgxn6TQo&itag=251&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp-lCx4l4Be531Q9muawhZunaIVI&vprv=1&mime=audio%2Fwebm&ns=V6F5bDW-n9RMAcQx012AzTEI&gir=yes&clen=646175&dur=38.861&lmt=1665251859550872&mt=1665412189&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=viyr0IbvywYz3Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhANtfS386SNZugcms55eaMnDaWnNUsUdVtm9TbHJhkwx2AiEAuPcylAmZwPCno3NU2yjcYzD7g7lWoTU7T56bYCn480s%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAOxPa0S9eIuoPu-4UOZGBc30xalXI1JaIkoVFk7zNJ6hAiEApoKlwDMBBIGkjrtSNjV33F3dqPoR0hE04fFxU2Um80o%3D&alr=yes&cpn=Qsp9bxMvZbs7ZjCv&cver=1.20221005.01.01&range=0-65861&rn=2&rbuf=0 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sat, 08 Oct 2022 17:57:39 GMT
Content-Type: audio/webm
Date: Mon, 10 Oct 2022 14:36:47 GMT
Expires: Mon, 10 Oct 2022 14:36:47 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 65862
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665434207&ei=_y1EY_CBEtDTyAWCyJpw&ip=91.90.42.154&id=o-AHGN3_Xkj41xaFiJrADr0XggJb7an8PYKp2IjxCmlHWI&itag=251&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp3l_U4jGsQPNRcelARJCIqFjoYs&vprv=1&mime=audio%2Fwebm&ns=1-mDrAXGhOFbHOaxrshW9z0I&gir=yes&clen=646175&dur=38.861&lmt=1665251859550872&mt=1665412189&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=iU80iRj7f0Ej7A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgSW3L72uEg5pGp4F-ULY7mpNhhDsoYUeZbMK4pASuEC0CIQCPTx7-Vh5OBLtrLabhRarIzYF2u7ME25IiBNjcSiP5oQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAJ-SNohPe-CxNxTWzuXXrjNZImB9OgDFDU3FQQTF5a-kAiEAriqjjJ82TFGVbI8fT46H3OPwdbOtwL6jtuAOviz5S9w%3D&alr=yes&cpn=HMwXOzEr68hmzOD6&cver=1.20221005.01.01&range=0-65861&rn=2&rbuf=0 | 91.90.45.173 | 200 OK | 66 kB |
URL HTTP/1.1rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665434207&ei=_y1EY_CBEtDTyAWCyJpw&ip=91.90.42.154&id=o-AHGN3_Xkj41xaFiJrADr0XggJb7an8PYKp2IjxCmlHWI&itag=251&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp3l_U4jGsQPNRcelARJCIqFjoYs&vprv=1&mime=audio%2Fwebm&ns=1-mDrAXGhOFbHOaxrshW9z0I&gir=yes&clen=646175&dur=38.861&lmt=1665251859550872&mt=1665412189&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=iU80iRj7f0Ej7A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgSW3L72uEg5pGp4F-ULY7mpNhhDsoYUeZbMK4pASuEC0CIQCPTx7-Vh5OBLtrLabhRarIzYF2u7ME25IiBNjcSiP5oQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAJ-SNohPe-CxNxTWzuXXrjNZImB9OgDFDU3FQQTF5a-kAiEAriqjjJ82TFGVbI8fT46H3OPwdbOtwL6jtuAOviz5S9w%3D&alr=yes&cpn=HMwXOzEr68hmzOD6&cver=1.20221005.01.01&range=0-65861&rn=2&rbuf=0 IP91.90.45.173:0 ASN#50304 Blix Solutions AS
File typeWebM\012- EBML file, creator webmB\20\012- data Hasha843b6abd92e6740cd2870ae100305fe fc2ab458b68da75b755d2dc357f26e30f0d41faa 72a481668015433294ae1885c8309805ad9ef7a5d4644c1219878e9eae4d2623
GET /videoplayback?expire=1665434207&ei=_y1EY_CBEtDTyAWCyJpw&ip=91.90.42.154&id=o-AHGN3_Xkj41xaFiJrADr0XggJb7an8PYKp2IjxCmlHWI&itag=251&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp3l_U4jGsQPNRcelARJCIqFjoYs&vprv=1&mime=audio%2Fwebm&ns=1-mDrAXGhOFbHOaxrshW9z0I&gir=yes&clen=646175&dur=38.861&lmt=1665251859550872&mt=1665412189&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=iU80iRj7f0Ej7A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgSW3L72uEg5pGp4F-ULY7mpNhhDsoYUeZbMK4pASuEC0CIQCPTx7-Vh5OBLtrLabhRarIzYF2u7ME25IiBNjcSiP5oQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAJ-SNohPe-CxNxTWzuXXrjNZImB9OgDFDU3FQQTF5a-kAiEAriqjjJ82TFGVbI8fT46H3OPwdbOtwL6jtuAOviz5S9w%3D&alr=yes&cpn=HMwXOzEr68hmzOD6&cver=1.20221005.01.01&range=0-65861&rn=2&rbuf=0 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sat, 08 Oct 2022 17:57:39 GMT
Content-Type: audio/webm
Date: Mon, 10 Oct 2022 14:36:47 GMT
Expires: Mon, 10 Oct 2022 14:36:47 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 65862
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665434207&ei=_y1EY-eUCtXUyAX65Kq4CQ&ip=91.90.42.154&id=o-APRwykpZRGd9P6GLuqBqrVT7S9272smPjvDRPgxn6TQo&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp-lCx4l4Be531Q9muawhZunaIVI&vprv=1&mime=video%2Fwebm&ns=V6F5bDW-n9RMAcQx012AzTEI&gir=yes&clen=1115744&dur=38.832&lmt=1665251863590897&mt=1665412189&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=viyr0IbvywYz3Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgDrlq8xEiwWvX76uTFIWcYlEFcEmXIvOVwna5iakeH8sCIE_jL7S6RUldSevnrl2gyOHFX3h2GTgknVKUEJilNGCg&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAOxPa0S9eIuoPu-4UOZGBc30xalXI1JaIkoVFk7zNJ6hAiEApoKlwDMBBIGkjrtSNjV33F3dqPoR0hE04fFxU2Um80o%3D&alr=yes&cpn=Qsp9bxMvZbs7ZjCv&cver=1.20221005.01.01&range=0-82688&rn=1&rbuf=0 | 91.90.45.173 | 200 OK | 83 kB |
URL HTTP/1.1rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665434207&ei=_y1EY-eUCtXUyAX65Kq4CQ&ip=91.90.42.154&id=o-APRwykpZRGd9P6GLuqBqrVT7S9272smPjvDRPgxn6TQo&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp-lCx4l4Be531Q9muawhZunaIVI&vprv=1&mime=video%2Fwebm&ns=V6F5bDW-n9RMAcQx012AzTEI&gir=yes&clen=1115744&dur=38.832&lmt=1665251863590897&mt=1665412189&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=viyr0IbvywYz3Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgDrlq8xEiwWvX76uTFIWcYlEFcEmXIvOVwna5iakeH8sCIE_jL7S6RUldSevnrl2gyOHFX3h2GTgknVKUEJilNGCg&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAOxPa0S9eIuoPu-4UOZGBc30xalXI1JaIkoVFk7zNJ6hAiEApoKlwDMBBIGkjrtSNjV33F3dqPoR0hE04fFxU2Um80o%3D&alr=yes&cpn=Qsp9bxMvZbs7ZjCv&cver=1.20221005.01.01&range=0-82688&rn=1&rbuf=0 IP91.90.45.173:0 ASN#50304 Blix Solutions AS
File typeWebM\012- EBML file, creator webmB\20\012- data Hashbcc628aabb114e7e699a62a2075a7cb1 ff911f0f2018d332f2fc52fd47bb09082bbb1994 bd5bf4e54485b93eb51d8abe1ea63d373e1677cbe96e1708bc38d235e13cf966
GET /videoplayback?expire=1665434207&ei=_y1EY-eUCtXUyAX65Kq4CQ&ip=91.90.42.154&id=o-APRwykpZRGd9P6GLuqBqrVT7S9272smPjvDRPgxn6TQo&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp-lCx4l4Be531Q9muawhZunaIVI&vprv=1&mime=video%2Fwebm&ns=V6F5bDW-n9RMAcQx012AzTEI&gir=yes&clen=1115744&dur=38.832&lmt=1665251863590897&mt=1665412189&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=viyr0IbvywYz3Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgDrlq8xEiwWvX76uTFIWcYlEFcEmXIvOVwna5iakeH8sCIE_jL7S6RUldSevnrl2gyOHFX3h2GTgknVKUEJilNGCg&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAOxPa0S9eIuoPu-4UOZGBc30xalXI1JaIkoVFk7zNJ6hAiEApoKlwDMBBIGkjrtSNjV33F3dqPoR0hE04fFxU2Um80o%3D&alr=yes&cpn=Qsp9bxMvZbs7ZjCv&cver=1.20221005.01.01&range=0-82688&rn=1&rbuf=0 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sat, 08 Oct 2022 17:57:43 GMT
Content-Type: video/webm
Date: Mon, 10 Oct 2022 14:36:47 GMT
Expires: Mon, 10 Oct 2022 14:36:47 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 82689
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665434207&ei=_y1EY_CBEtDTyAWCyJpw&ip=91.90.42.154&id=o-AHGN3_Xkj41xaFiJrADr0XggJb7an8PYKp2IjxCmlHWI&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp3l_U4jGsQPNRcelARJCIqFjoYs&vprv=1&mime=video%2Fwebm&ns=1-mDrAXGhOFbHOaxrshW9z0I&gir=yes&clen=1115744&dur=38.832&lmt=1665251863590897&mt=1665412189&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=iU80iRj7f0Ej7A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgFJlTjfmzsBRnJNyX7UnwDzD-a-JUl82MBUXp6bTS3HMCIQCe5n62zp_NHim03YewL0zvmW6T1EoiZuG9eSpFHK-u-A%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAJ-SNohPe-CxNxTWzuXXrjNZImB9OgDFDU3FQQTF5a-kAiEAriqjjJ82TFGVbI8fT46H3OPwdbOtwL6jtuAOviz5S9w%3D&alr=yes&cpn=HMwXOzEr68hmzOD6&cver=1.20221005.01.01&range=0-82688&rn=1&rbuf=0 | 91.90.45.173 | 200 OK | 106 kB |
URL HTTP/1.1rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665434207&ei=_y1EY_CBEtDTyAWCyJpw&ip=91.90.42.154&id=o-AHGN3_Xkj41xaFiJrADr0XggJb7an8PYKp2IjxCmlHWI&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp3l_U4jGsQPNRcelARJCIqFjoYs&vprv=1&mime=video%2Fwebm&ns=1-mDrAXGhOFbHOaxrshW9z0I&gir=yes&clen=1115744&dur=38.832&lmt=1665251863590897&mt=1665412189&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=iU80iRj7f0Ej7A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgFJlTjfmzsBRnJNyX7UnwDzD-a-JUl82MBUXp6bTS3HMCIQCe5n62zp_NHim03YewL0zvmW6T1EoiZuG9eSpFHK-u-A%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAJ-SNohPe-CxNxTWzuXXrjNZImB9OgDFDU3FQQTF5a-kAiEAriqjjJ82TFGVbI8fT46H3OPwdbOtwL6jtuAOviz5S9w%3D&alr=yes&cpn=HMwXOzEr68hmzOD6&cver=1.20221005.01.01&range=0-82688&rn=1&rbuf=0 IP91.90.45.173:0 ASN#50304 Blix Solutions AS
Size106 kB (106416 bytes) Hash0bfd1817dafb6343a73c091025b395e3 fcb60b3695093eda3349c91862ab42d648d5b228 e2ae03deb937ad50015ba57d500c2917230a2c852a6dbb45c833e871ee21e7e3
GET /videoplayback?expire=1665434207&ei=_y1EY_CBEtDTyAWCyJpw&ip=91.90.42.154&id=o-AHGN3_Xkj41xaFiJrADr0XggJb7an8PYKp2IjxCmlHWI&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278&source=youtube&requiressl=yes&mh=v0&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3361250&spc=yR2vp3l_U4jGsQPNRcelARJCIqFjoYs&vprv=1&mime=video%2Fwebm&ns=1-mDrAXGhOFbHOaxrshW9z0I&gir=yes&clen=1115744&dur=38.832&lmt=1665251863590897&mt=1665412189&fvip=2&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=iU80iRj7f0Ej7A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgFJlTjfmzsBRnJNyX7UnwDzD-a-JUl82MBUXp6bTS3HMCIQCe5n62zp_NHim03YewL0zvmW6T1EoiZuG9eSpFHK-u-A%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAJ-SNohPe-CxNxTWzuXXrjNZImB9OgDFDU3FQQTF5a-kAiEAriqjjJ82TFGVbI8fT46H3OPwdbOtwL6jtuAOviz5S9w%3D&alr=yes&cpn=HMwXOzEr68hmzOD6&cver=1.20221005.01.01&range=0-82688&rn=1&rbuf=0 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sat, 08 Oct 2022 17:57:43 GMT
Content-Type: video/webm
Date: Mon, 10 Oct 2022 14:36:47 GMT
Expires: Mon, 10 Oct 2022 14:36:47 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 82689
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash72ad7fc4df3fd710eb071ca010dc1680 f85d9a1bc8189f43020023bf74a2e18e1fc4dba0 a59f4c7166b23a812f596e5f5cb7361a7f3580422bb5dee3ea2b6b4a7e71643c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 10 Oct 2022 14:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| in-app.mywebsitebuilder.com/sdk-insights-tracker?appMarketEnv=prod&debug=true&instanceJwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpbnN0YW5jZUlkIjoiMmE4MTFkZTkwMTVhNGVmMWI1YzMxNDQxYzk3ZmQyMmUiLCJicmFuZCI6Imhvc3RnYXRvcl9icmFzaWwiLCJleHAiOjE2NjU0OTkwMDZ9.E0m23aN143LaJp06ynjxSHIjoInrcdos1h-8Xm2LaB8 | 104.19.164.10 | 200 OK | 9.0 kB |
URL HTTP/2in-app.mywebsitebuilder.com/sdk-insights-tracker?appMarketEnv=prod&debug=true&instanceJwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpbnN0YW5jZUlkIjoiMmE4MTFkZTkwMTVhNGVmMWI1YzMxNDQxYzk3ZmQyMmUiLCJicmFuZCI6Imhvc3RnYXRvcl9icmFzaWwiLCJleHAiOjE2NjU0OTkwMDZ9.E0m23aN143LaJp06ynjxSHIjoInrcdos1h-8Xm2LaB8 IP104.19.164.10:0
File typeASCII text, with very long lines (20394), with no line terminators Hashc04fc147ffe65edce54bea7f362ce18a adb901b5bfc47555129726838a6038fb627af800 7df205a031e3c14a94743863439407ef9ae0579e3384db475059c292367a6421
GET /sdk-insights-tracker?appMarketEnv=prod&debug=true&instanceJwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpbnN0YW5jZUlkIjoiMmE4MTFkZTkwMTVhNGVmMWI1YzMxNDQxYzk3ZmQyMmUiLCJicmFuZCI6Imhvc3RnYXRvcl9icmFzaWwiLCJleHAiOjE2NjU0OTkwMDZ9.E0m23aN143LaJp06ynjxSHIjoInrcdos1h-8Xm2LaB8 HTTP/1.1
Host: in-app.mywebsitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:48 GMT
content-type: application/javascript
content-length: 8982
content-encoding: gzip
etag: 0x8D7592F1FA5BFFC
last-modified: Fri, 25 Oct 2019 09:38:44 GMT
vary: Accept-Encoding
x-builder-tracking-span-id: 8058a3b45e0244b5bb01090b70b7f29f
x-builder-tracking-id: 8058a3b45e0244b5bb01090b70b7f29f
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 758017204a5d0b61-OSL
X-Firefox-Spdy: h2
|
|
| blog-viewer-api.mywebsitebuilder.com/v1.0/476eee1a45904b9eab7e4c8eb2049618/blog/posts/featured | 104.19.164.10 | 200 OK | 3.8 kB |
URL HTTP/2blog-viewer-api.mywebsitebuilder.com/v1.0/476eee1a45904b9eab7e4c8eb2049618/blog/posts/featured IP104.19.164.10:0
File typeJSON data\012- , Unicode text, UTF-8 text, with very long lines (10281), with no line terminators Hashd51f826e117e1579165dd3673540e84f 4c2e5515838b5478d20bf0fd3320953e40e2433a 9458dd4d804f62007947eabbfccb9dfa6a018da701ab09473646ea77f1b605cb
GET /v1.0/476eee1a45904b9eab7e4c8eb2049618/blog/posts/featured HTTP/1.1
Host: blog-viewer-api.mywebsitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flexmedicao.com.br/
Origin: https://flexmedicao.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:48 GMT
content-type: application/json; charset=utf-8
content-length: 3800
access-control-allow-credentials: true
access-control-allow-origin: https://flexmedicao.com.br
access-control-expose-headers: X-XSRF-TOKEN
content-encoding: gzip
vary: Accept-Encoding
x-builder-tracking-id: bf1e2aa8ad6e469da2653b98e0856c5b
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 758017214b590b61-OSL
X-Firefox-Spdy: h2
|
|
| scontent-arn2-2.xx.fbcdn.net/v/t39.30808-6/310437568_182115554332556_3938129566796975182_n.jpg?stp=dst-jpg_p526x296&_nc_cat=100&ccb=1-7&_nc_sid=8024bb&_nc_ohc=7I3QQTJk0dgAX8iF9Sn&_nc_ht=scontent-arn2-2.xx&oh=00_AT-a6V8diGNc8TIvQgGYPftWTyIXKe02EaMnSQ3nFW6Z9g&oe=634835C4 | 157.240.194.27 | 200 OK | 60 kB |
URL HTTP/2scontent-arn2-2.xx.fbcdn.net/v/t39.30808-6/310437568_182115554332556_3938129566796975182_n.jpg?stp=dst-jpg_p526x296&_nc_cat=100&ccb=1-7&_nc_sid=8024bb&_nc_ohc=7I3QQTJk0dgAX8iF9Sn&_nc_ht=scontent-arn2-2.xx&oh=00_AT-a6V8diGNc8TIvQgGYPftWTyIXKe02EaMnSQ3nFW6Z9g&oe=634835C4 IP157.240.194.27:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 526x526, components 3\012- data Hash818b3a2c17f846f9eca3dd7240908b46 cdb9a909467e3e2b68849b0f3b4b4c04c32b41ad 3af1d349990ea23b59269cd91fd942790e0746d2a13ae8c13554f5a6f9ea212f
GET /v/t39.30808-6/310437568_182115554332556_3938129566796975182_n.jpg?stp=dst-jpg_p526x296&_nc_cat=100&ccb=1-7&_nc_sid=8024bb&_nc_ohc=7I3QQTJk0dgAX8iF9Sn&_nc_ht=scontent-arn2-2.xx&oh=00_AT-a6V8diGNc8TIvQgGYPftWTyIXKe02EaMnSQ3nFW6Z9g&oe=634835C4 HTTP/1.1
Host: scontent-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 02 Oct 2022 22:51:52 GMT
accept-ranges: bytes
x-haystack-needlechecksum: 3335900245
x-needle-checksum: 2903692922
content-type: image/jpeg
content-digest: adler32=2938902225
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 59795
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| scontent-arn2-2.xx.fbcdn.net/v/t39.30808-6/311122271_183568254187286_1942765383341426360_n.jpg?stp=dst-jpg_s370x247&_nc_cat=100&ccb=1-7&_nc_sid=8024bb&_nc_ohc=ZgJiEoBpmsIAX-7LgZ2&_nc_ht=scontent-arn2-2.xx&oh=00_AT-MJUIHF-eSUkjV2bmZ8D2SWnTcTrCC_Ktha8-imLKRLw&oe=6348BEB0 | 157.240.194.27 | 200 OK | 7.9 kB |
URL HTTP/2scontent-arn2-2.xx.fbcdn.net/v/t39.30808-6/311122271_183568254187286_1942765383341426360_n.jpg?stp=dst-jpg_s370x247&_nc_cat=100&ccb=1-7&_nc_sid=8024bb&_nc_ohc=ZgJiEoBpmsIAX-7LgZ2&_nc_ht=scontent-arn2-2.xx&oh=00_AT-MJUIHF-eSUkjV2bmZ8D2SWnTcTrCC_Ktha8-imLKRLw&oe=6348BEB0 IP157.240.194.27:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 247x247, components 3\012- data Hash56b09a95da87f5abcb085eb65a24f071 b88e73183bba92c1f94bf347d82692bf39af2535 c166c3f8118a3f741b18e204e3f83f1bfc5a7dc472d7789da5cadfd707051014
GET /v/t39.30808-6/311122271_183568254187286_1942765383341426360_n.jpg?stp=dst-jpg_s370x247&_nc_cat=100&ccb=1-7&_nc_sid=8024bb&_nc_ohc=ZgJiEoBpmsIAX-7LgZ2&_nc_ht=scontent-arn2-2.xx&oh=00_AT-MJUIHF-eSUkjV2bmZ8D2SWnTcTrCC_Ktha8-imLKRLw&oe=6348BEB0 HTTP/1.1
Host: scontent-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 09 Oct 2022 02:16:58 GMT
accept-ranges: bytes
x-haystack-needlechecksum: 2915418598
x-needle-checksum: 2424485319
content-type: image/jpeg
content-digest: adler32=293912453
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 7889
x-fb-trip-id: 1904183273
date: Mon, 10 Oct 2022 14:36:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F52771209a3534f2282cc418557c8e727&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 31 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F52771209a3534f2282cc418557c8e727&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Hash842887e0f1d017e978a87a5088acd4d4 f21ad802c7a262e7b274cadd55522394f9c7e670 18f5b9a7ff504690e4096ad7cecf965a0a0b36a5320ae8db3112b70005a55cf2
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F52771209a3534f2282cc418557c8e727&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 30584
cf-ray: 758017266f29b50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227432
cache-control: public, max-age=2678400
etag: "cfdoKfw6CbYkVhWiLZZu8iZg:0e8cb25ebc52418466ee7e56c2fc6f17"
last-modified: Thu, 08 Sep 2022 11:31:15 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=7 c=30+91 v=2022.10.3 l=30584
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2Ffca44eb4021040d287e302a6eaab6180&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 24 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2Ffca44eb4021040d287e302a6eaab6180&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Hashd595692619238fe036d6a538d6115cb5 d68037d19659320ae7b124fe301c01a80f5ddc77 dcebc1e99bd8db863552e704f014752e9a3b559cd38c9bd8316ef3bd7b46de8c
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2Ffca44eb4021040d287e302a6eaab6180&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 24300
cf-ray: 758017267f34b50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227432
cache-control: public, max-age=2678400
etag: "cf3r-tJ2kxkgZ1zl5w1DwSXw:a92511b5f574c149f10a889da3a79af8"
last-modified: Fri, 19 Aug 2022 22:12:08 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=6 c=24+90 v=2022.10.3 l=24300
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F5c75509ac6484e0184ff221099b80f63&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 59 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F5c75509ac6484e0184ff221099b80f63&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Hashc4385f48111a3a61d4fedaaad9c6c5b3 5cdca02985a84b242dbcbac856483e1ccb6ad66a f7bb428778dff26ed532abf34eb92ffae72343f041d0f849e32a5ccfe6fae075
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F5c75509ac6484e0184ff221099b80f63&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 59023
cf-ray: 758017267f43b50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227431
cache-control: public, max-age=2678400
etag: "cfxsI2UweKsXIfgzv9v9Ur_Q:d7358a761e7468da2cc38631bebf1929"
last-modified: Thu, 28 Apr 2022 17:45:29 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=8 c=27+105 v=2022.10.3 l=59023
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F5588f3ebfa014f19930afcfc0e633bb1&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 25 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F5588f3ebfa014f19930afcfc0e633bb1&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Hash5dc241754dd622b57079859d225e682a 71e8c13a3ea32c5499f6c0d1833b2026af43f3af dafa275a0d11c8ccb2a94ec429a66f1a3185e5fae2e3fe6ec2019c92e3d07c33
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F5588f3ebfa014f19930afcfc0e633bb1&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 25093
cf-ray: 758017267f3bb50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227432
cache-control: public, max-age=2678400
etag: "cfpUEuR2rzuJfvOrDNuik8cw:03a04b013aedcb74d11168a2b5475901"
last-modified: Wed, 20 Jul 2022 11:50:48 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=4 c=28+91 v=2022.10.3 l=25093
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F31e45460148f4025966a830a196357ba&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 86 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F31e45460148f4025966a830a196357ba&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Hashe1c193da089809cb19f3c8c98a23ab85 0a2fcc40f10b334cc4759bb6eb2352f70e8f0e67 203b4d54baa3e10e43fa68f5eb41b3f34f8933387d2441038627463b0ab7071f
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F31e45460148f4025966a830a196357ba&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 85969
cf-ray: 758017267f3db50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227432
cache-control: public, max-age=2678400
etag: "cfEHQknMmE3VSxLwZyn5pKlQ:a01c72c07ccd7c55c2380db359ae4be2"
last-modified: Mon, 30 May 2022 12:28:10 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=13 c=112+137 v=2022.10.3 l=85969
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F2c4f454ad7b5488a817958479e9b1c81&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 109 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F2c4f454ad7b5488a817958479e9b1c81&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Size109 kB (109254 bytes) Hash922d293d07d48b9cdb3725c8a5c9a444 a10ed1ea1e870b6acdcb55df33e4a502a09c80f4 6cb85d922ce58bde1d0378fe14ffed9215b86001bb9ccae5474b69603abd0ed8
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F2c4f454ad7b5488a817958479e9b1c81&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 109254
cf-ray: 758017268f56b50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227432
cache-control: public, max-age=2678400
etag: "cfkc63KZqLVbzX98JXiQZEAA:836e8a77a2c112411cfb2b451ddbdc50"
last-modified: Tue, 26 Apr 2022 14:54:20 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=6 c=17+124 v=2022.10.3 l=109254
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F92b986961b044dd6bc7a039c0ee391b7&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 95 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F92b986961b044dd6bc7a039c0ee391b7&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Hash89c6bc8f52e59dd1281a19b05643a16a 454f51859b901ccd99809c2fdd6b13748c44315d e4a04c1bdd92687dfd9858fe1fb2c9ff4fcf0c4968704822aa98fada359b4e89
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F92b986961b044dd6bc7a039c0ee391b7&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 94982
cf-ray: 758017269f5cb50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227432
cache-control: public, max-age=2678400
etag: "cfyI9S_pEzdj4wk2Lp3r6QVA:2db096b2ac73badbb6483889904c6d62"
last-modified: Wed, 13 Apr 2022 18:36:16 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=3 c=9+114 v=2022.10.3 l=94982
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F2ede4856ab344d15ae3df9b977cf7729&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 50 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F2ede4856ab344d15ae3df9b977cf7729&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Hashc5a9823fb80afad454397321beed7661 307376ab76b8e5b3c04e2fa8e4c4515f2d2967b8 a8320ab3ed3d49b796378133aa58247496fc86ebf2780e6045f61110599937e4
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F2ede4856ab344d15ae3df9b977cf7729&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 49691
cf-ray: 75801726af8ab50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227432
cache-control: public, max-age=2678400
etag: "cfKOVvjUXtj3mDZnbPcGHtlA:a197879f2a4129cc0a42bfc84cd45bfb"
last-modified: Mon, 07 Mar 2022 18:05:05 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=4 c=21+100 v=2022.10.3 l=49691
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F43a0a717e7974a028877fb85962bc767&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 68 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F43a0a717e7974a028877fb85962bc767&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Hashcf248d1b2fa5651e49324556aeabe909 c739a869cf239ac45de464017336b99fd7498952 7fb6b2b298c688e8538fce8cd3d074a20ccd1051b1b5dd488cf96a86e2894e75
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F43a0a717e7974a028877fb85962bc767&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 68318
cf-ray: 75801726af78b50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227432
cache-control: public, max-age=2678400
etag: "cfwDXjlnHowhEiG-_0ltMeeQ:38cde290bd116f85d00ec9d74cf24290"
last-modified: Fri, 18 Mar 2022 14:25:39 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=2 c=3+70 v=2022.10.3 l=68318
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2Fb244323fb5804356b9ae9a6a8bd6629d&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 44 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2Fb244323fb5804356b9ae9a6a8bd6629d&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Hash8f3c6ebb559a9208cfc2e9eadb7d116b f1f88044d62241fe48f27a6ff0976cd1a4682feb d1b7506a564e91cb93c65ed3dd6dd8b54f061944ba7e0d885d4a3cab6eedd148
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2Fb244323fb5804356b9ae9a6a8bd6629d&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 43866
cf-ray: 75801726af8bb50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227432
cache-control: public, max-age=2678400
etag: "cfmtqblfET6kpOyekiVR6Hag:eb4976c322e4d468e3e136e934540a2d"
last-modified: Fri, 04 Mar 2022 14:13:53 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=3 c=3+82 v=2022.10.3 l=43866
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F960acd8dc0b8481f88e7967605d4bd91&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 85 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F960acd8dc0b8481f88e7967605d4bd91&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x480, components 3\012- data Hashc0d8bce54dc5dc5ba438a00dc70aefd9 a9456ae47f367fd16bfa5f707b7a7d67b7d68c65 5737875bb12f44a3f5b85c332c12541c7de6d3afef1e1c70b788a8814efe8425
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F960acd8dc0b8481f88e7967605d4bd91&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 84558
cf-ray: 75801726af8db50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227432
cache-control: public, max-age=2678400
etag: "cfHM99_GsDDSc9TFl84k94FQ:dde7849f215f9fef981ab087748349bb"
last-modified: Fri, 18 Feb 2022 13:21:02 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=5 c=11+99 v=2022.10.3 l=84558
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2Ff3c228875d774307b1528ba3bcb36bf7&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 46 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2Ff3c228875d774307b1528ba3bcb36bf7&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Hash2f2abecd1fe6761e3719ddc671094386 a34d99ee4c77f33d642254f4e8f9557c48411760 787ee701bc27244ba119c3d1db05e2140f0e92569220fa4f1f269c60787d958b
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2Ff3c228875d774307b1528ba3bcb36bf7&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 46412
cf-ray: 75801726bf95b50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227431
cache-control: public, max-age=2678400
etag: "cfMQE_U_sLT27FwH7zBdpLIw:35a18aba63593e1993d150ffd6a7deec"
last-modified: Thu, 17 Feb 2022 11:48:00 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=6 c=35+99 v=2022.10.3 l=46412
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F3b848c03633a4bdc9525d4978429a490&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 63 kB |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F3b848c03633a4bdc9525d4978429a490&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data Hashf95b35dc1b1c0d389a1b9f0a0721bad8 f670707f093185cc5e643848393280698432545f 773d5bc971d3eae64d3bb31c8bff0425f44abdcca210d5946ffcf05d0c9257d3
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F3b848c03633a4bdc9525d4978429a490&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 63416
cf-ray: 75801726bf98b50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227431
cache-control: public, max-age=2678400
etag: "cfsJBIEt5-NcGoq2dXGYSCpw:ea4d226aac4d99cfb178e465cd97fa10"
last-modified: Tue, 15 Feb 2022 12:28:17 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=7 c=40+104 v=2022.10.3 l=63416
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F0327e9910f6c43bc906b6935fec523ba&methods=resize%2C640%2C5000 | 104.18.150.9 | 200 OK | 788 B |
URL HTTP/2images.builderservices.io/s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F0327e9910f6c43bc906b6935fec523ba&methods=resize%2C640%2C5000 IP104.18.150.9:0
File typegzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT)\012- data Hash645cfd4d227c2290f338ef8f44863182 30040a5e7c01f0fcee1f8ee5c502ca5708591315 b9647af8f74a6567fe79a78cce89d9572e99f16c56f6b5b2ebb24a4a46ee1e58
GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-hostgator-brasil-v1-0-3%2F603%2F220603%2Ff8D2p3Ey%2F0327e9910f6c43bc906b6935fec523ba&methods=resize%2C640%2C5000 HTTP/1.1
Host: images.builderservices.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: image/jpeg
content-length: 68612
cf-ray: 75801726bf97b50f-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 227432
cache-control: public, max-age=2678400
etag: "cfuTR2_5OsLwWo6oNkPvRFaw:c4862f26ba29cad025e86a5a40b6bcb5"
last-modified: Wed, 16 Feb 2022 11:25:09 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=3 c=3+78 v=2022.10.3 l=68612
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2
|
|
| in-app.mywebsitebuilder.com/sdk-insights-tracker?appMarketEnv=prod&debug=true&instanceJwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpbnN0YW5jZUlkIjoiMmE4MTFkZTkwMTVhNGVmMWI1YzMxNDQxYzk3ZmQyMmUiLCJicmFuZCI6Imhvc3RnYXRvcl9icmFzaWwiLCJleHAiOjE2NjU0OTkwMDl9.HeGn7pDqCW9ADbqnqiVILCdvYwqutNeXaV9z6JC7XTg | 104.19.164.10 | 200 OK | 9.0 kB |
URL HTTP/2in-app.mywebsitebuilder.com/sdk-insights-tracker?appMarketEnv=prod&debug=true&instanceJwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpbnN0YW5jZUlkIjoiMmE4MTFkZTkwMTVhNGVmMWI1YzMxNDQxYzk3ZmQyMmUiLCJicmFuZCI6Imhvc3RnYXRvcl9icmFzaWwiLCJleHAiOjE2NjU0OTkwMDl9.HeGn7pDqCW9ADbqnqiVILCdvYwqutNeXaV9z6JC7XTg IP104.19.164.10:0
File typeASCII text, with very long lines (20394), with no line terminators Hash2f9108a857b5e7b0402e438d0ae6b124 f6c7db6840e27d3dc747d8cdd73e6552117ae284 7332deeb880fa2095da37fcb87d2cbd28431fa038b12a4a740c2d7149860948b
GET /sdk-insights-tracker?appMarketEnv=prod&debug=true&instanceJwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpbnN0YW5jZUlkIjoiMmE4MTFkZTkwMTVhNGVmMWI1YzMxNDQxYzk3ZmQyMmUiLCJicmFuZCI6Imhvc3RnYXRvcl9icmFzaWwiLCJleHAiOjE2NjU0OTkwMDl9.HeGn7pDqCW9ADbqnqiVILCdvYwqutNeXaV9z6JC7XTg HTTP/1.1
Host: in-app.mywebsitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: application/javascript
content-length: 8982
content-encoding: gzip
etag: 0x8D7592F1FA5BFFC
last-modified: Fri, 25 Oct 2019 09:38:44 GMT
vary: Accept-Encoding
x-builder-tracking-span-id: 062a1382904a47d0a103cb7126daa931
x-builder-tracking-id: 062a1382904a47d0a103cb7126daa931
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 758017298bd70b61-OSL
X-Firefox-Spdy: h2
|
|
| in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/messages/?timeout=10 | 13.92.180.208 | 200 OK | 0 B |
URL HTTP/1.1in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/messages/?timeout=10 IP13.92.180.208:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /in-us-east-event-hub-a1/messages/?timeout=10 HTTP/1.1
Host: in-us-east-event-hubs.servicebus.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://flexmedicao.com.br/
Origin: https://flexmedicao.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 0
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: https://flexmedicao.com.br
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 3600
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: authorization,content-type
Strict-Transport-Security: max-age=31536000
Date: Mon, 10 Oct 2022 14:36:49 GMT
|
|
| in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/messages/?timeout=10 | 13.92.180.208 | 200 OK | 0 B |
URL HTTP/1.1in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/messages/?timeout=10 IP13.92.180.208:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /in-us-east-event-hub-a1/messages/?timeout=10 HTTP/1.1
Host: in-us-east-event-hubs.servicebus.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://flexmedicao.com.br/
Origin: https://flexmedicao.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 0
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: https://flexmedicao.com.br
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 3600
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: authorization,content-type
Strict-Transport-Security: max-age=31536000
Date: Mon, 10 Oct 2022 14:36:49 GMT
|
|
| blog-viewer-api.mywebsitebuilder.com/v1.0/476eee1a45904b9eab7e4c8eb2049618/blog/posts/featured | 104.19.164.10 | 200 OK | 3.8 kB |
URL HTTP/2blog-viewer-api.mywebsitebuilder.com/v1.0/476eee1a45904b9eab7e4c8eb2049618/blog/posts/featured IP104.19.164.10:0
File typeJSON data\012- , Unicode text, UTF-8 text, with very long lines (10281), with no line terminators Hashd51f826e117e1579165dd3673540e84f 4c2e5515838b5478d20bf0fd3320953e40e2433a 9458dd4d804f62007947eabbfccb9dfa6a018da701ab09473646ea77f1b605cb
GET /v1.0/476eee1a45904b9eab7e4c8eb2049618/blog/posts/featured HTTP/1.1
Host: blog-viewer-api.mywebsitebuilder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flexmedicao.com.br/
Origin: https://flexmedicao.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 10 Oct 2022 14:36:49 GMT
content-type: application/json; charset=utf-8
content-length: 3800
access-control-allow-credentials: true
access-control-allow-origin: https://flexmedicao.com.br
access-control-expose-headers: X-XSRF-TOKEN
content-encoding: gzip
vary: Accept-Encoding
x-builder-tracking-id: db1ef94368f14d5d84c79230a613a26a
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 758017298bd90b61-OSL
X-Firefox-Spdy: h2
|
|
| in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/messages/?timeout=10 | 13.92.180.208 | 201 Created | 0 B |
URL HTTP/1.1in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/messages/?timeout=10 IP13.92.180.208:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /in-us-east-event-hub-a1/messages/?timeout=10 HTTP/1.1
Host: in-us-east-event-hubs.servicebus.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: SharedAccessSignature sr=http%3A%2F%2Fin-us-east-event-hubs.servicebus.windows.net%2Fin-us-east-event-hub-a1&sig=F%2FXLiTNmD%2FgTbzGDPlccfhnHoRencwF32ZQrpED8kYs%3D&se=1665416209.246&skn=Send
Content-Length: 794
Origin: https://flexmedicao.com.br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 201 Created
Transfer-Encoding: chunked
Content-Type: application/xml; charset=utf-8
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: https://flexmedicao.com.br
Access-Control-Allow-Credentials: true
Strict-Transport-Security: max-age=31536000
Date: Mon, 10 Oct 2022 14:36:49 GMT
|
|
| in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/messages/?timeout=10 | 13.92.180.208 | 201 Created | 0 B |
URL HTTP/1.1in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/messages/?timeout=10 IP13.92.180.208:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /in-us-east-event-hub-a1/messages/?timeout=10 HTTP/1.1
Host: in-us-east-event-hubs.servicebus.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: SharedAccessSignature sr=http%3A%2F%2Fin-us-east-event-hubs.servicebus.windows.net%2Fin-us-east-event-hub-a1&sig=W30mxyVgobYzRHTkBrDqk2JGNTXd%2FHpKTc7G0XYd7ZM%3D&se=1665416209.751&skn=Send
Content-Length: 796
Origin: https://flexmedicao.com.br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 201 Created
Transfer-Encoding: chunked
Content-Type: application/xml; charset=utf-8
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: https://flexmedicao.com.br
Access-Control-Allow-Credentials: true
Strict-Transport-Security: max-age=31536000
Date: Mon, 10 Oct 2022 14:36:49 GMT
|
|
| in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/messages/?timeout=10 | 13.92.180.208 | 201 Created | 0 B |
URL HTTP/1.1in-us-east-event-hubs.servicebus.windows.net/in-us-east-event-hub-a1/messages/?timeout=10 IP13.92.180.208:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /in-us-east-event-hub-a1/messages/?timeout=10 HTTP/1.1
Host: in-us-east-event-hubs.servicebus.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: SharedAccessSignature sr=http%3A%2F%2Fin-us-east-event-hubs.servicebus.windows.net%2Fin-us-east-event-hub-a1&sig=sLwtGavkg%2FxktXfbAuRWlvWfxyqrW8p70jAxR7nb5hM%3D&se=1665416209.288&skn=Send
Content-Length: 487
Origin: https://flexmedicao.com.br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 201 Created
Transfer-Encoding: chunked
Content-Type: application/xml; charset=utf-8
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: https://flexmedicao.com.br
Access-Control-Allow-Credentials: true
Strict-Transport-Security: max-age=31536000
Date: Mon, 10 Oct 2022 14:36:49 GMT
|
|
| flexmedicao.com.br/ps/iuelumiisqsiaq | 162.241.60.121 | 200 OK | 0 B |
URL HTTP/2flexmedicao.com.br/ps/iuelumiisqsiaq IP162.241.60.121:0 ASN#46606 UNIFIEDLAYER-AS-1
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | | | quad9 | Sinkholed | |
GET /ps/iuelumiisqsiaq HTTP/1.1
Host: flexmedicao.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Mon, 10 Oct 2022 14:36:44 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.youtube.com/embed/e714WpfZUI4?playlist=e714WpfZUI4&rel=0&showinfo=0&autoplay=true&mute=true&loop=true&controls=1 | 142.250.74.78 | 200 OK | 0 B |
URL HTTP/2www.youtube.com/embed/e714WpfZUI4?playlist=e714WpfZUI4&rel=0&showinfo=0&autoplay=true&mute=true&loop=true&controls=1 IP142.250.74.78:0
GET /embed/e714WpfZUI4?playlist=e714WpfZUI4&rel=0&showinfo=0&autoplay=true&mute=true&loop=true&controls=1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 10 Oct 2022 14:36:45 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=5I95x6pI2SY; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=uUVux6EYukU; Domain=.youtube.com; Expires=Sat, 08-Apr-2023 14:36:45 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+201; expires=Wed, 09-Oct-2024 14:36:45 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fflexmedicoesambientais%2F&tabs=timeline,,&width=500&height=500&small_header=false&adapt_container_width=false&hide_cover=false&show_facepile=&appId=620549068053083 | 31.13.72.36 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fflexmedicoesambientais%2F&tabs=timeline,,&width=500&height=500&small_header=false&adapt_container_width=false&hide_cover=false&show_facepile=&appId=620549068053083 IP31.13.72.36:0
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fflexmedicoesambientais%2F&tabs=timeline,,&width=500&height=500&small_header=false&adapt_container_width=false&hide_cover=false&show_facepile=&appId=620549068053083 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 92jfLan4tcm0pzObB2XLO8U3/O2wC0l7JXrTRWbFUhmm5keC00YBkzBTRgYt5746IVjRY+8H8BgFhpWLaBl2bA==
date: Mon, 10 Oct 2022 14:36:45 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| flexmedicao.com.br/favicon.ico | 162.241.60.121 | 200 OK | 0 B |
URL HTTP/2flexmedicao.com.br/favicon.ico IP162.241.60.121:0 ASN#46606 UNIFIEDLAYER-AS-1
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /favicon.ico HTTP/1.1
Host: flexmedicao.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flexmedicao.com.br/ps/iuelumiisqsiaq
Cookie: _ga_DK12Q7BP4E=GS1.1.1665412605.1.1.1665412605.0.0.0; _ga=GA1.1.354083746.1665412605
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Mon, 10 Oct 2022 14:36:46 GMT
server: Apache
X-Firefox-Spdy: h2
|
|