r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8641
Expires: Tue, 31 Jan 2023 21:12:38 GMT
Date: Tue, 31 Jan 2023 18:48:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6157
Expires: Tue, 31 Jan 2023 20:31:14 GMT
Date: Tue, 31 Jan 2023 18:48:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 18:35:54 GMT
content-type: application/json
age: 763
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2759
Expires: Tue, 31 Jan 2023 19:34:36 GMT
Date: Tue, 31 Jan 2023 18:48:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yTJeOdJBfMpeM1lROxFQmkiwxe1CRIH175Ht7i5VVu3huceXSYEmFMMrnWRuURsZXJP8+BxYJE4=
x-amz-request-id: RTKY5M5AFS34XYGX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 17:51:15 GMT
age: 3442
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
vendasautomaticas.top/mymail/82/2ddd1c72c92dec18b271ae7929b658bf/aHR0cHM6Ly9ub3ZvdGVtcG8uZnVuL2Uwc3g
162.241.63.76301 Moved Permanently 0 B URL HTTP/1.1 vendasautomaticas.top/mymail/82/2ddd1c72c92dec18b271ae7929b658bf/aHR0cHM6Ly9ub3ZvdGVtcG8uZnVuL2Uwc3g
IP 162.241.63.76:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET /mymail/82/2ddd1c72c92dec18b271ae7929b658bf/aHR0cHM6Ly9ub3ZvdGVtcG8uZnVuL2Uwc3g HTTP/1.1
Host: vendasautomaticas.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 31 Jan 2023 18:48:37 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://vendasautomaticas.top/mymail/82/2ddd1c72c92dec18b271ae7929b658bf/aHR0cHM6Ly9ub3ZvdGVtcG8uZnVuL2Uwc3g/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:37 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
vendasautomaticas.top/mymail/82/2ddd1c72c92dec18b271ae7929b658bf/aHR0cHM6Ly9ub3ZvdGVtcG8uZnVuL2Uwc3g/
162.241.63.76307 Temporary Redirect 0 B URL HTTP/1.1 vendasautomaticas.top/mymail/82/2ddd1c72c92dec18b271ae7929b658bf/aHR0cHM6Ly9ub3ZvdGVtcG8uZnVuL2Uwc3g/
IP 162.241.63.76:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mymail/82/2ddd1c72c92dec18b271ae7929b658bf/aHR0cHM6Ly9ub3ZvdGVtcG8uZnVuL2Uwc3g/ HTTP/1.1
Host: vendasautomaticas.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 307 Temporary Redirect
Date: Tue, 31 Jan 2023 18:48:38 GMT
Server: Apache
Link: <https://vendasautomaticas.top/wp-json/>; rel="https://api.w.org/"
Set-Cookie: mymail=2ddd1c72c92dec18b271ae7929b658bf; expires=Tue, 31-Jan-2023 19:18:38 GMT; Max-Age=1800; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://novotempo.fun/e0sx
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 18:41:42 GMT
age: 416
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3621
Expires: Tue, 31 Jan 2023 19:48:59 GMT
Date: Tue, 31 Jan 2023 18:48:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08ba4fa7db67e5f96ba133ad8f3c4e98
c311c1db2d3082022e2834354cc1057acf3fdebf
82d39312a8690ddc7bff14c27f2ed26af9a3b9d74fc2b13e68e97fa32546be28
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D39312A8690DDC7BFF14C27F2ED26AF9A3B9D74FC2B13E68E97FA32546BE28"
Last-Modified: Mon, 30 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21534
Expires: Wed, 01 Feb 2023 00:47:32 GMT
Date: Tue, 31 Jan 2023 18:48:38 GMT
Connection: keep-alive
push.services.mozilla.com/
44.229.130.57101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.229.130.57:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PR4Q96C8hghZRobw2rJ9/A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eqo0OGiknOwt8CpjyXL8W2wBMNE=
novotempo.fun/e0sx
162.241.63.76301 Moved Permanently 0 B IP 162.241.63.76:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /e0sx HTTP/1.1
Host: novotempo.fun
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-robots-tag: noindex, nofollow
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 07 Jul 1777 07:07:07 GMT
x-redirect-powered-by: Pretty Link Lite 2.1.10 http://prettylink.com
set-cookie: prli_click_35=e0sx; expires=Thu, 02-Mar-2023 18:48:38 GMT; Max-Age=2592000; path=/
prli_visitor=63d96286d895e; expires=Wed, 31-Jan-2024 18:48:38 GMT; Max-Age=31536000; path=/
location: https://secure.doppus.com/go/GB9953EO9J5EZ50O?src=TELEGRAM
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 31 Jan 2023 18:48:38 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 6451762cdcc56339f0819f902c1bbe0b
a07e3a1f50c4fd6e3d5b3dcb7929438a28d2f653
3a6b0cf135b9533c1a7dd4fc26a91dea980d34953597a8afa332f42b3c8543c6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143124
Date: Tue, 31 Jan 2023 18:48:39 GMT
Etag: "63d8d8da-1d7"
Expires: Thu, 02 Feb 2023 10:34:03 GMT
Last-Modified: Tue, 31 Jan 2023 09:01:14 GMT
Server: ECS (dcb/7FA5)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AmAZGJoq800SVXBNlY-i0NaalAqil9ZfKZGz1V0x-ar_mVO5ef-GyA==
Age: 5569
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3425
Expires: Tue, 31 Jan 2023 19:45:45 GMT
Date: Tue, 31 Jan 2023 18:48:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3425
Expires: Tue, 31 Jan 2023 19:45:45 GMT
Date: Tue, 31 Jan 2023 18:48:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3425
Expires: Tue, 31 Jan 2023 19:45:45 GMT
Date: Tue, 31 Jan 2023 18:48:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3425
Expires: Tue, 31 Jan 2023 19:45:45 GMT
Date: Tue, 31 Jan 2023 18:48:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c4934be94898028e2ab696561b51462
6cf734e2d29938688913daacfb75506d8e004a94
239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flYlPF9uIAMFXMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hDjKAMYoVwHdCqS8t08PrWyfQQLiWaosXbi3FOJY8BeV0yAFCGziGw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:58:16 GMT
age: 60624
etag: "6cf734e2d29938688913daacfb75506d8e004a94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 976dda397f9292a498ca9db5599c0378
dad9e9c3462907a2475046aee36d57f8309cd44e
7ed9ccf2ff75ca53f5ba56a1d2127e0f09b0ae941cad8b042e8df01ad01e614b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6844
x-amzn-requestid: 0542cf46-5045-459f-a35f-f6c0d3f5f7b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flZsxH0YIAMF9ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86feb-692d50f710a131df2ee49aa8;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6bbFjAsd03GN8zzBnAFBm7xA8igZ_xHJsOHzw7nwNgRxiWUDLPGjpQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:53:29 GMT
age: 60911
etag: "dad9e9c3462907a2475046aee36d57f8309cd44e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5190c0bdc6abe0ee258e9f8c20ddaf51
d60f280f8a742480527dbc32d08f321f972d4fcf
874b38a04aa3736e65aaef72da2cc2efceb208618267107a495bdfe51ec58e58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12507
x-amzn-requestid: 85c9adcd-b997-48ca-bbfb-ccdeaf3e8cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFaJoAMFqKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-2bcdd8c353d8429d2b1e95f6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UDJKl99GiUxTW_EgWFDjLaJZbKFhfaJR-XRLsbQphwHuCXczDlxrDA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:55:07 GMT
age: 75213
etag: "d60f280f8a742480527dbc32d08f321f972d4fcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d957012d3e2b8c3bc0eefe11d66e8554
1959fdd94846fa3791c4890578dd15336b909dcc
a97e81ec5eb2eda6a603bf4bfd4fa4ef4fab762747479489e99e6c713258a736
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13853
x-amzn-requestid: ca6ea6e7-3e13-4194-87f5-20a07b813e21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zzF4hIAMFwWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-772487cb1b7495c52c552d36;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T5CaUojMEG8x8vki59UdIhI8IbbBRY_7w3xgiW3RCZlHTyeHPLIy2Q==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:47:13 GMT
age: 75687
etag: "1959fdd94846fa3791c4890578dd15336b909dcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2797bfd35b7ec24888de84be14f7f2ec
8e315ac5856967286eaa8769e081d827fb4ca39e
b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9Fga247EZZqiGmdMJ72resdBZR2KLgflGDBPESmuw9cFVs4hSzMzTw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:40:17 GMT
age: 54503
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6f9ffb8f9e99229b45ca5fdb84ce7d5
04577ad69ee9749b14382254eb5bbf0e1edcd7fa
6111acf3f363123b39d13cd3d23ab39b8c8d00379874f19231d1cd3da17c52c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8558
x-amzn-requestid: 2841cd36-22e6-4ecb-b56a-bfadce3197c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_BFA8IAMFyvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e393-3fd03bd14de762b0738a3b0a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZP2Mar8l3QoPH733_vv3hUuQjWvaN4_TgfYwme2-6WIxGi55BoSchg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 04:26:31 GMT
age: 51729
etag: "04577ad69ee9749b14382254eb5bbf0e1edcd7fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
einsteinsell.com.br/faturando-com-sites/
185.211.7.229200 OK 17 kB URL HTTP/2 einsteinsell.com.br/faturando-com-sites/
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16233), with CRLF, LF line terminators
Hash bc43cf3ae9f4e63d8869b4e597f74d58
6f8dcd0141f2e47c83430483f3ecdc48ce6fafa2
58c03515e3f15998c501654f5caef607194820b9562f47d6c85c3683d9bcba9f
GET /faturando-com-sites/ HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.32
content-type: text/html; charset=UTF-8
link: <https://einsteinsell.com.br/wp-json/>; rel="https://api.w.org/", <https://einsteinsell.com.br/wp-json/wp/v2/pages/10>; rel="alternate"; type="application/json", <https://einsteinsell.com.br/?p=10>; rel=shortlink
etag: "561-1674680496;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 16862
date: Tue, 31 Jan 2023 18:48:41 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
i.imgur.com/UvnE4e6.jpg
151.101.244.193200 OK 11 kB IP 151.101.244.193:0
File type JPEG image data, baseline, precision 8, 150x150, components 3\012- data
Hash 9a970411bd444716d9f031e047fa52fb
e764fd3e4baad658c80217fe748a11d1fba82374
03031faeeb17d9f2d25e26ffcaf0b7d2eb3c46f72205513bfc3f93a429e664c1
GET /UvnE4e6.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 13:44:27 GMT
etag: "9a970411bd444716d9f031e047fa52fb"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:41 GMT
age: 1259074
x-served-by: cache-iad-kcgs7200042-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 1170, 1
x-timer: S1675190921.138175,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 11119
X-Firefox-Spdy: h2
i.imgur.com/4pltiK3.jpg
151.101.244.193200 OK 7.7 kB IP 151.101.244.193:0
File type JPEG image data, baseline, precision 8, 130x97, components 3\012- data
Hash 9652ab0dba0a5edbd89361d58add5f26
217e1c51b873bcb0bcd367385b9501727fcf0242
876c4189f5b443fc1fcb6b8d22865fc137f97ff8ab56ae2674afeefb99e564ea
GET /4pltiK3.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 13:44:27 GMT
etag: "9652ab0dba0a5edbd89361d58add5f26"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:41 GMT
age: 1242671
x-served-by: cache-iad-kjyo7100082-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 2101, 1
x-timer: S1675190921.138064,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 7743
X-Firefox-Spdy: h2
i.imgur.com/WNwBbZD.jpg
151.101.244.193200 OK 14 kB IP 151.101.244.193:0
File type JPEG image data, baseline, precision 8, 480x480, components 3\012- data
Hash 64c1601b514a12d5722c4f8411accee2
96e05977abddcdb725b48cf394bde3a03a00b859
92ea62f09211f3fa3b3a5a0cb37b1dd710ac42ea9cafde83850b0b63aaac85c8
GET /WNwBbZD.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 13:44:27 GMT
etag: "64c1601b514a12d5722c4f8411accee2"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:41 GMT
age: 477527
x-served-by: cache-iad-kjyo7100084-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 536, 1
x-timer: S1675190921.138767,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 13644
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 18:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.imgur.com/ndb688k.jpg
151.101.244.193200 OK 14 kB IP 151.101.244.193:0
File type JPEG image data, baseline, precision 8, 150x149, components 3\012- data
Hash 1753d6f80028acbc6be6ea3187363495
334f82ed9427d934b7b8c700e51deefdb6f56366
72d3ddcb7e0b8a5b4de3a6413d826bb88dae07900a590cf087f0da5095c8324b
GET /ndb688k.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 13:44:27 GMT
etag: "1753d6f80028acbc6be6ea3187363495"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:41 GMT
age: 2380363
x-served-by: cache-iad-kjyo7100053-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 12326, 1
x-timer: S1675190921.138864,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 14433
X-Firefox-Spdy: h2
i.imgur.com/ces3LIP.jpg
151.101.244.193200 OK 15 kB IP 151.101.244.193:0
File type JPEG image data, baseline, precision 8, 150x149, components 3\012- data
Hash 896a3771b8d6a72062fac27409c90314
0a0888e74082547971be7606759fd41b029f07bb
7f63c4abc5b700d1b82e744b3b6c19c03a48208fb97213a005d4f1ddbe3fa8c9
GET /ces3LIP.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 13:44:27 GMT
etag: "896a3771b8d6a72062fac27409c90314"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:41 GMT
age: 536286
x-served-by: cache-iad-kcgs7200128-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 93, 1
x-timer: S1675190921.138698,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 14824
X-Firefox-Spdy: h2
i.imgur.com/D2tlbFS.jpg
151.101.244.193200 OK 10 kB IP 151.101.244.193:0
File type JPEG image data, progressive, precision 8, 200x200, components 3\012- data
Hash 7b7cdeeb56e75d2cdb2ba5c7607386bb
3a7ae8a3668666806a58ea676aea15df097e5cd9
f501733e3a80276b1920f2a105d648ddeed84424fb748675f08649af4481b7be
GET /D2tlbFS.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 13:44:27 GMT
etag: "7b7cdeeb56e75d2cdb2ba5c7607386bb"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:41 GMT
age: 1304597
x-served-by: cache-iad-kiad7000034-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 3115, 1
x-timer: S1675190921.139182,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 10239
X-Firefox-Spdy: h2
i.imgur.com/XKCrKCM.jpg
151.101.244.193200 OK 15 kB IP 151.101.244.193:0
File type JPEG image data, baseline, precision 8, 150x150, components 3\012- data
Hash 3317ea47569c641de471b9fed6a730c2
b9a4fc22a556a5ff0a73504260806443bf370839
a71613d5d4d891ed02db708534eebdd39457092174e5543234302a3fc67cf161
GET /XKCrKCM.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 13:44:27 GMT
etag: "3317ea47569c641de471b9fed6a730c2"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:41 GMT
age: 2846213
x-served-by: cache-iad-kcgs7200034-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 7823, 1
x-timer: S1675190921.139578,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 15396
X-Firefox-Spdy: h2
i.imgur.com/pMf1V7J.jpg
151.101.244.193200 OK 22 kB IP 151.101.244.193:0
File type JPEG image data, baseline, precision 8, 640x480, components 3\012- data
Hash eb6546396ccad486a53f0fcbff47ee65
c371a57527f6bb4b07434ba78e87e35b928ac2e0
4003c8cfc822f4e9e6a9643af19ad84d3c29ed60267e781897494a9fdde54e39
GET /pMf1V7J.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 14 Apr 2022 00:15:36 GMT
etag: "eb6546396ccad486a53f0fcbff47ee65"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:41 GMT
age: 1912117
x-served-by: cache-iad-kiad7000059-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 9639, 1
x-timer: S1675190921.139120,VS0,VE3
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 22231
X-Firefox-Spdy: h2
i.imgur.com/PdP1PPa.jpg
151.101.244.193200 OK 7.9 kB IP 151.101.244.193:0
File type JPEG image data, baseline, precision 8, 150x150, components 3\012- data
Hash 166bf54e5e019f29dee4f677e5d1ca03
494c5ad700859abf5ceb6e98166178bd5c1dc59c
7d19de046f31c971cc4df98c552886e7289b0380fc7c3eda76ae90434c3a154e
GET /PdP1PPa.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 13:44:27 GMT
etag: "166bf54e5e019f29dee4f677e5d1ca03"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:41 GMT
age: 1253235
x-served-by: cache-iad-kiad7000106-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 1963, 1
x-timer: S1675190921.151452,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 7948
X-Firefox-Spdy: h2
i.imgur.com/mEW0692.jpg
151.101.244.193200 OK 10 kB IP 151.101.244.193:0
File type JPEG image data, baseline, precision 8, 150x150, components 3\012- data
Hash 818bc7318f867ebc5ab76f4a4908487a
ec5396f3a820cf32b073efbffff755f0829f6ebc
6919f01470b8fad513396159699268e1918c2362082b5324342104a0a15a3e8f
GET /mEW0692.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 13:44:27 GMT
etag: "818bc7318f867ebc5ab76f4a4908487a"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:41 GMT
age: 1309141
x-served-by: cache-iad-kcgs7200074-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 2632, 1
x-timer: S1675190921.151452,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 10108
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 18:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.imgur.com/Y0v681C.jpg
151.101.244.193200 OK 11 kB IP 151.101.244.193:0
File type JPEG image data, baseline, precision 8, 150x148, components 3\012- data
Hash 9c385d274d3b0516ee6b6b67f8126a62
2a07f77104690c72efb2edac66d90148541a7ee8
97a5e48f0b2932c79a2ece25bfe579a5c18b2186387f7f1aaa9b1fed4ed6e923
GET /Y0v681C.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 13:44:27 GMT
etag: "9c385d274d3b0516ee6b6b67f8126a62"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:41 GMT
age: 2431871
x-served-by: cache-iad-kjyo7100077-IAD, cache-hel1410021-HEL
x-cache: HIT, MISS
x-cache-hits: 58, 0
x-timer: S1675190921.138592,VS0,VE98
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 11003
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 79275a4b6ed8cb24b4b90db550caf283
c7f65fd02aecb6086726346f49b7c1e0634d6fb3
b545a2f3d7fd20642f32375ce50d4c199d5cdac29a38eb35a70e71aeb6044a75
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 18:48:41 GMT
Etag: "63d9004f-1d7"
Last-Modified: Tue, 31 Jan 2023 17:08:49 GMT
Server: ECS (dcb/7F5C)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1OB_2-2GdXf1FE992dRIKw9jCiUvN3H-V05BmsR_9SLizQYN33cHAA==
Age: 5992
einsteinsell.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0
185.211.7.229200 OK 3.6 kB URL HTTP/2 einsteinsell.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (19277)
Hash 96a97258adc7bbf3ed33153c3e370f30
5dd396ba0612f111b58142c8a598ce4f86958af3
2795696202d1a0708836e89f4af3ed8546d4b56a1b630f4a370b09a395f006ff
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: text/css
last-modified: Wed, 25 Jan 2023 16:11:25 GMT
etag: "4b7b-63d154ad-57734f488693dd54;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3623
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.1
185.211.7.229200 OK 12 kB URL HTTP/2 einsteinsell.com.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.1
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65496)
Hash 17657873ef8d40e6823592c425ab76ed
5ff0840795184e5579b0d89e4e23fdf831da9ead
3e90f615445513ab03f63b626f8d013ab833778738480ea7a67a893c73408eb5
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.1 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: text/css
last-modified: Wed, 25 Jan 2023 16:11:25 GMT
etag: "177d7-63d154ad-87fd304829c0c45b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12285
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-content/uploads/elementor/css/post-5.css?ver=1674663150
185.211.7.229200 OK 305 B URL HTTP/2 einsteinsell.com.br/wp-content/uploads/elementor/css/post-5.css?ver=1674663150
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1099), with no line terminators
Hash e3b7f7b655899a792f7e395d7fa63179
b3dd18bedc9c9ec0205231f1acd62d4bf182cd54
de7ac20202fbd72ad6a224d47c8e4f07f8d0acdc3079621af2b738af42d390fb
GET /wp-content/uploads/elementor/css/post-5.css?ver=1674663150 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: text/css
last-modified: Wed, 25 Jan 2023 16:12:30 GMT
etag: "44b-63d154ee-3d6a84879ba8231a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 305
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.10.1
185.211.7.229200 OK 1.3 kB URL HTTP/2 einsteinsell.com.br/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.10.1
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (8733)
Hash df6644fc44c3a817f41fc619e667e4e4
7f27f80e41e94cec8cec3f6e018c984a89814ac3
c9068de3087d327c6ed3323bcd51148b85177fc7aa38c76805d781dc15e1d49e
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.10.1 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: text/css
last-modified: Wed, 25 Jan 2023 16:17:58 GMT
etag: "2249-63d15636-82810c19f3aa50fa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1313
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-content/uploads/elementor/css/global.css?ver=1674663172
185.211.7.229200 OK 749 B URL HTTP/2 einsteinsell.com.br/wp-content/uploads/elementor/css/global.css?ver=1674663172
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (6697)
Hash 2eb561bbfe90d19dfbbd09f50cc60967
de2ac846f9855a4b269c53015920b7fe68a65bca
24e4d418a166f52cf20a515de7676dd522d27ee40fbba0930d2c01224abbad0e
GET /wp-content/uploads/elementor/css/global.css?ver=1674663172 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: text/css
last-modified: Wed, 25 Jan 2023 16:12:52 GMT
etag: "2503-63d15504-7bea7ba53677f847;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 749
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-content/uploads/elementor/css/post-10.css?ver=1674663172
185.211.7.229200 OK 1.1 kB URL HTTP/2 einsteinsell.com.br/wp-content/uploads/elementor/css/post-10.css?ver=1674663172
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (6907), with no line terminators
Hash 3e852406bce2222253c70bfb5e24f829
b79a953dc1b01248aa7d598284217d56a896304b
1aa1630ce896cd9c1cd86df30255e9eaeac7ac9270c5d1336fee05c7cb0ee647
GET /wp-content/uploads/elementor/css/post-10.css?ver=1674663172 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: text/css
last-modified: Wed, 25 Jan 2023 16:12:52 GMT
etag: "1afb-63d15504-a51a314ffe34e377;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1125
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.1
185.211.7.229200 OK 2.3 kB URL HTTP/2 einsteinsell.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.1
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (5315)
Hash f9f6c1e41b2dad261935f952503eaf5e
4d9c7446b582523f4ecfc6f77bc00632e00b8d55
0b10a67ffc4827560fa9b7f526a3c7b0b234ca0d5be4e4904cec49e202415c73
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.1 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Wed, 25 Jan 2023 16:17:58 GMT
etag: "14ef-63d15636-799f8c4894ed6230;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2261
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c29bbdc3f83fcf96cf976a0a03bd465
8ef53f72a88a022d5e2bbfa276e87555b3b25ee9
d5d3f8c98b20e1c4165ab5c6a2a2954a605afd2792962821a16d0db32d544379
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5D3F8C98B20E1C4165AB5C6A2A2954A605AFD2792962821A16D0DB32D544379"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11619
Expires: Tue, 31 Jan 2023 22:02:20 GMT
Date: Tue, 31 Jan 2023 18:48:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c29bbdc3f83fcf96cf976a0a03bd465
8ef53f72a88a022d5e2bbfa276e87555b3b25ee9
d5d3f8c98b20e1c4165ab5c6a2a2954a605afd2792962821a16d0db32d544379
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5D3F8C98B20E1C4165AB5C6A2A2954A605AFD2792962821A16D0DB32D544379"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11681
Expires: Tue, 31 Jan 2023 22:03:22 GMT
Date: Tue, 31 Jan 2023 18:48:41 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 18:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 18:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://einsteinsell.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 17:46:05 GMT
expires: Thu, 25 Jan 2024 17:46:05 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 522156
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 18:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 18:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://einsteinsell.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 03:13:04 GMT
expires: Fri, 26 Jan 2024 03:13:04 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 488137
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2
142.250.74.163200 OK 8.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 8668, version 1.0\012- data
Hash a242ba0df3a128a2cab929a8c45d5056
d70e2c70b21cbb66cd883ae56e2dedacefd81c7c
50d0c1742d80ac71f4cde20e8c04d41a24806af342831f479938b527fbff0972
GET /s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://einsteinsell.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:24 GMT
expires: Sun, 28 Jan 2024 10:20:24 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:07:02 GMT
content-type: font/woff2
age: 289697
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 18:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
einsteinsell.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1
185.211.7.229200 OK 2.1 kB URL HTTP/2 einsteinsell.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4974)
Hash 50e2a400459779e15ccbadb89b2967af
a5908e1367e73c141eca7a643b405e30382acba4
78ae8f4791d6272551c46dc9f2c1053a50580f1d303beb179cfb7e3376c4aa44
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.1 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Wed, 25 Jan 2023 16:11:25 GMT
etag: "1396-63d154ad-9159840e090551f4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2070
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
185.211.7.229200 OK 30 kB URL HTTP/2 einsteinsell.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65447)
Hash cdbbc979b5a5de31a3ac8296e0ef489e
b83000eb74956c3404fb58c87e95aed5bab2ed19
48a6489945365cddb4c75af60f1e6a8a15d6598a1596ef18eb1b4aaad33e96f3
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Tue, 08 Nov 2022 23:33:09 GMT
etag: "15e54-636ae735-de04c4342cc7db57;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30075
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
185.211.7.229200 OK 4.0 kB URL HTTP/2 einsteinsell.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11126)
Hash 4116c2be947ecf205a0c7fc117ca55f0
0cd8efc9fe349d67a86b49d1e5582a9b21d05add
6b1970b536b88a18b0eb4fe138e677b9736294057660676507fabee57cb0462c
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Tue, 08 Nov 2022 23:33:09 GMT
etag: "2bd8-636ae735-d05809538f96984f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3984
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1
185.211.7.229200 OK 11 kB URL HTTP/2 einsteinsell.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (35829)
Hash 895846747964c70a6fb1be61223679b1
5e85ca710238dc30ebce444fb40ef919ed90e5cf
6e2767cb800af72727e00d8b94eb9ddfc1f071e7c1daaec88bd601cfb11368c0
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.1 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Wed, 25 Jan 2023 16:11:25 GMT
etag: "8c1e-63d154ad-9d80109cb8b45003;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11044
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
185.211.7.229200 OK 2.3 kB URL HTTP/2 einsteinsell.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (6475), with no line terminators
Hash 80abfa68756de384aa21eb4bfa1abe6a
02c7125e1cce1a8bdb729e99bf2c19d74b65efea
e012a513b2e1c1ba041be3618086803d20629c5fd54a6fd1f13e8268cd326e17
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Tue, 08 Nov 2022 23:33:09 GMT
etag: "194b-636ae735-55001d3795f3525a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2349
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
images.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/players/636ae89206deba000b063247/thumbnail.jpg
54.230.111.85200 OK 1.4 kB URL HTTP/2 images.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/players/636ae89206deba000b063247/thumbnail.jpg
IP 54.230.111.85:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x36, components 3\012- data
Hash cf82f1efae9155b51b3cdbd03b29134e
528fffae6fd32dc1e4c80c98ff42305e4db156aa
bbb9a2b336edbd8912cec2a41cfc5c3000bb6b6a8d70eed478658bf89a112719
GET /eea827d1-79a3-4183-8db1-48499263b127/players/636ae89206deba000b063247/thumbnail.jpg HTTP/1.1
Host: images.converteai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1407
date: Tue, 31 Jan 2023 18:48:42 GMT
last-modified: Tue, 08 Nov 2022 23:39:00 GMT
etag: "cf82f1efae9155b51b3cdbd03b29134e"
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _9pvbW48nokATlJIYHjZjp3UReSz0vtbchcQaRf65WQaNHS9fqrztw==
vary: Origin
X-Firefox-Spdy: h2
images.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/players/63af781083a182000a0d14bb/thumbnail.jpg
54.230.111.85200 OK 1.4 kB URL HTTP/2 images.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/players/63af781083a182000a0d14bb/thumbnail.jpg
IP 54.230.111.85:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x36, components 3\012- data
Hash cf82f1efae9155b51b3cdbd03b29134e
528fffae6fd32dc1e4c80c98ff42305e4db156aa
bbb9a2b336edbd8912cec2a41cfc5c3000bb6b6a8d70eed478658bf89a112719
GET /eea827d1-79a3-4183-8db1-48499263b127/players/63af781083a182000a0d14bb/thumbnail.jpg HTTP/1.1
Host: images.converteai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1407
date: Tue, 31 Jan 2023 18:48:42 GMT
last-modified: Fri, 30 Dec 2022 23:45:22 GMT
etag: "cf82f1efae9155b51b3cdbd03b29134e"
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: S7K2M8h-dRwIdkEexYQpzLdUNHSmRUa339FZ7yTESuuikMYKvjDRiQ==
vary: Origin
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
185.211.7.229200 OK 6.3 kB URL HTTP/2 einsteinsell.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 0d375d72235ecdb204930c2b1c56c749
0ec8d715878d60fcc7965b60bfb003d0b45e7f55
882dc7575648eaf8fc96344f784a440cc6809b210d4e791a7333b989d7754fb0
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Tue, 08 Nov 2022 23:33:09 GMT
etag: "459f-636ae735-107ae80018e770e4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6292
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
185.211.7.229200 OK 1.6 kB URL HTTP/2 einsteinsell.com.br/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4875)
Hash 84bc607a21ceabf4db8b46cc9f562d66
5fb6ce023605123eeadbe96f30b8f6c91f595a9a
059f799c65f8a54f48e3f6686ea45679729310b389321f7c5a05d6aa923b4831
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Tue, 08 Nov 2022 23:33:09 GMT
etag: "132e-636ae735-47a1801239cb37f3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1574
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
185.211.7.229200 OK 3.7 kB URL HTTP/2 einsteinsell.com.br/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
Hash 664b32e885dca43a6c72e35b200b335c
78839bf6bb89fea2d4c3c11035a851a37348415f
faa12ec520fe6842d346bdc76194ca98360e7d4b6f4522df1f5d1eb80a6033ac
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Tue, 08 Nov 2022 23:33:09 GMT
etag: "27f6-636ae735-407f0bb0b3c7e0b6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3711
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.1
185.211.7.229200 OK 5.5 kB URL HTTP/2 einsteinsell.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.1
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (21520)
Hash c715abb0410c7166cf8fcca2278a3189
1cd80dd11c934803f461a63ab4ffac6d3f8a4ae0
2273abfdc97032aaf25a514130dfacae60066aa2ecf93196345376e71ec9573c
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.1 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Wed, 25 Jan 2023 16:17:58 GMT
etag: "543c-63d15636-b667a952ec54e36a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5507
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
185.211.7.229200 OK 2.8 kB URL HTTP/2 einsteinsell.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (12198), with no line terminators
Hash 1393d0dbec2f83777455cdd096954f70
f9c4b9daea64fb4f7ffe076cf8e8e94600babd45
37c699d5ada4e2710a93784052ed68aa9b73e263ebb4a7a216c5a40e2c6bea7b
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Wed, 25 Jan 2023 16:11:25 GMT
etag: "2fa6-63d154ad-2a26598cab89ef14;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2838
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
185.211.7.229200 OK 6.8 kB URL HTTP/2 einsteinsell.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 9e99c573420e93c28f983889f77db3fa
e22d3ccb9107908c0828e7efe7948fd1acfe6d7a
e3cc933899915665a21b98b23c9e24a41abe12bb812a091ae1f3e098dd41c57a
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Tue, 08 Nov 2022 23:33:09 GMT
etag: "53c0-636ae735-9e59ba38efce7d3a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6771
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.1
185.211.7.229200 OK 12 kB URL HTTP/2 einsteinsell.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.1
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (40802)
Hash e91ccbf909c0e44fde779d9c382a32c1
3d6881db75592b7331f2e901d02dcaa0b139a35c
acced837640164f59f44d56260a76f7c5d1c5cb91f0025a8f16d1084396c97c5
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.1 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Wed, 25 Jan 2023 16:11:25 GMT
etag: "9f8a-63d154ad-729ec85515325241;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11717
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.10.1
185.211.7.229200 OK 6.0 kB URL HTTP/2 einsteinsell.com.br/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.10.1
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (27417)
Hash abd22f3f42d110036c1123bdffe0aa30
9a740d194e5bddb92d21d17377ecb3afa971712f
ae7740386d62ca75ea1df8aa81aee5635bd9cc0e456510cc48145b3271a65d3f
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.10.1 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Wed, 25 Jan 2023 16:17:58 GMT
etag: "6b45-63d15636-43c6d719184d1b9c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5979
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
einsteinsell.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
185.211.7.229200 OK 4.6 kB URL HTTP/2 einsteinsell.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 185.211.7.229:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (15660)
Hash 4402e98c197d70e9bc78b1da062e658a
b1d2477c6b1dfa9283d79a0a3944098dde573f68
4e646c55a8c057d08458aed4f913f5ae713e1351aadc0bcdf947bc48fb6a73ed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: einsteinsell.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/faturando-com-sites/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 07 Feb 2023 18:48:42 GMT
content-type: application/x-javascript
last-modified: Tue, 08 Nov 2022 23:33:09 GMT
etag: "48b9-636ae735-b7914bed851fcdfc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4572
date: Tue, 31 Jan 2023 18:48:42 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f600.svg
192.0.77.48200 OK 450 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f600.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (450), with no line terminators
Hash 7c010dc6da25c012643ea22c1f002bb4
855a20bd9f5e3b5ad36ab5f7acb6b6b142730dbc
41478e547c5b6ad66bfcf91ead5350fa0bc247956c3ff912020327e3e9ad0d2b
GET /images/core/emoji/14.0.0/svg/1f600.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:41 GMT
content-type: image/svg+xml
content-length: 450
last-modified: Tue, 12 Apr 2022 03:53:43 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f609.svg
192.0.77.48200 OK 1.2 kB URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f609.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1183), with no line terminators
Hash 2e41bfdeba797283ee9da9bb439c3ece
28d185d6ebd6be4e7ed4e277cedbb1e10f5250e9
2468609517599c10415c9c9b65024cf697b747dbb837d07d0ea12130f224c65f
GET /images/core/emoji/14.0.0/svg/1f609.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:41 GMT
content-type: image/svg+xml
content-length: 1183
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f91d.svg
192.0.77.48200 OK 3.0 kB URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f91d.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2982), with no line terminators
Hash 721f98d2ad64bc9a005819bddc2eb322
a04d286b0ccf434f410838d350bedac75f80f55c
41fabf139814bb8c223b4b2c45187ad55c92515cc4c63659deaaf7f8775e4a0c
GET /images/core/emoji/14.0.0/svg/1f91d.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:41 GMT
content-type: image/svg+xml
content-length: 2982
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/2705.svg
192.0.77.48200 OK 482 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/2705.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (482), with no line terminators
Hash 212e30e47232be03033a87dc58edaa95
4d69c4a3dc57503e08b76c774135bfe83e8b1f51
1f026beb67630abcdbc341651b1c17591aa76261296a9fb118793765964eb4e9
GET /images/core/emoji/14.0.0/svg/2705.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:41 GMT
content-type: image/svg+xml
content-length: 482
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f4b8.svg
192.0.77.48200 OK 5.0 kB URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f4b8.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4954), with no line terminators
Hash aff6d39f4947f22f042e67ac21a9dc7a
394e6746f8df722cb6178aa9e826d8ba37a61b59
ba092715bd6bd22a504e8b81116bfa85f85f5b1987800fcfcd36ddc63bc9fce0
GET /images/core/emoji/14.0.0/svg/1f4b8.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:41 GMT
content-type: image/svg+xml
content-length: 4954
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f4b5.svg
192.0.77.48200 OK 1.2 kB URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f4b5.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1163), with no line terminators
Hash 7bfe8fa5c4b8e024b491a7902eeca1fe
e5da1104ea33cf32846132d7f4e595a39c7466c6
e31415211849fc00ca2fa3560701a456d8905d251606d37141925ce19ba57930
GET /images/core/emoji/14.0.0/svg/1f4b5.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:41 GMT
content-type: image/svg+xml
content-length: 1163
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a72c84c41c5e0adf55862720ffab859c
671408b7eb5f09e4a2dac07a7ee2150ea7be1972
0aada318970f4e1d24d6411787b9f43b8ce0c1d64d76b61b5ac0589a1323f066
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5736
Cache-Control: max-age=122377
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 18:48:42 GMT
Etag: "63d8872b-1d7"
Expires: Thu, 02 Feb 2023 04:48:19 GMT
Last-Modified: Tue, 31 Jan 2023 03:12:43 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: ZcQcoU3UfpqWJNZBlxh++QyVBH76+2cfWWy+bpxf4Y9pcT6sDR4H5YDr1mmfUaZR3eU2e6bUYSyJOzcrMGxnvw==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 18:48:42 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a72c84c41c5e0adf55862720ffab859c
671408b7eb5f09e4a2dac07a7ee2150ea7be1972
0aada318970f4e1d24d6411787b9f43b8ce0c1d64d76b61b5ac0589a1323f066
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5736
Cache-Control: max-age=122377
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 18:48:42 GMT
Etag: "63d8872b-1d7"
Expires: Thu, 02 Feb 2023 04:48:19 GMT
Last-Modified: Tue, 31 Jan 2023 03:12:43 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 53bbeb026d3dc6c961cf3ba4f9ca0a4a
fb9dd24222557e025ebb5111552574b8d0192587
a54bffd76ff5d888af8ea6a9c6cc20143bba9ae155cbd511f8943080edd2342a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160181
Date: Tue, 31 Jan 2023 18:48:42 GMT
Etag: "63d92086-1d7"
Expires: Thu, 02 Feb 2023 15:18:23 GMT
Last-Modified: Tue, 31 Jan 2023 14:07:02 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n0Zper-YHJ3Ypjkn-SVmk0tne1tFZsePSN-ERJCRzilbBVA9n9ePiw==
Age: 4281
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 53bbeb026d3dc6c961cf3ba4f9ca0a4a
fb9dd24222557e025ebb5111552574b8d0192587
a54bffd76ff5d888af8ea6a9c6cc20143bba9ae155cbd511f8943080edd2342a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 18:48:42 GMT
Last-Modified: Tue, 31 Jan 2023 18:09:49 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: X0dhw4Lm03Fm5wZVi1KTxdhuvg_Ps-z0JmCHNN3bfmxDLvMdNQlp4w==
Age: 2333
s.w.org/images/core/emoji/14.0.0/svg/1f64f.svg
192.0.77.48200 OK 637 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f64f.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1519), with no line terminators
Hash 758062cbdbb51aee0dbae58e2130e79d
57206b6875b1a27d3bbf338bb0491863baf0ccb3
7121bc83a9e346f0bc9066af501b536120eedc0afd45c591980f43dd0b8f30d9
GET /images/core/emoji/14.0.0/svg/1f64f.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:41 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
api.vturb.com.br/vturb/check
34.239.231.207200 OK 0 B URL HTTP/2 api.vturb.com.br/vturb/check
IP 34.239.231.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /vturb/check HTTP/1.1
Host: api.vturb.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 184
Origin: https://einsteinsell.com.br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 18:48:42 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: Content-Length
server: Caddy
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 7396e38e25af9115a88ab7eaa8524871
ebef92a862ef26a7775f63ebe18e8b02ef796aa0
d636b5a143cb7a0ba73900c2f91be230e02a532b52b590da81a47f9d17e9691f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 18:48:42 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 13:08:45 GMT
Expires: Sun, 05 Feb 2023 13:08:44 GMT
Etag: "ebef92a862ef26a7775f63ebe18e8b02ef796aa0"
Cache-Control: max-age=411001,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79249f812a7dfac0-OSL
cdn.shortpixel.ai/client/q_lossless,ret_img,w_32,h_32/https://bumbumdosdreams.site/wp-content/uploads/2020/11/cropped-Icone-1-150x150-1-32x32.png
194.242.11.186302 Found 0 B URL HTTP/2 cdn.shortpixel.ai/client/q_lossless,ret_img,w_32,h_32/https://bumbumdosdreams.site/wp-content/uploads/2020/11/cropped-Icone-1-150x150-1-32x32.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/q_lossless,ret_img,w_32,h_32/https://bumbumdosdreams.site/wp-content/uploads/2020/11/cropped-Icone-1-150x150-1-32x32.png HTTP/1.1
Host: cdn.shortpixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 18:48:42 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://bumbumdosdreams.site/wp-content/uploads/2020/11/cropped-Icone-1-150x150-1-32x32.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 01/31/2023 18:48:42
cdn-tag: 0; Domain: bumbumdosdreams.site; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 7cccec446ce89b959c49272a9e3fadaf
cdn-cache: MISS
X-Firefox-Spdy: h2
i.imgur.com/TuZa1rY.png
151.101.244.193200 OK 14 kB IP 151.101.244.193:0
File type PNG image data, 413 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 01d20f13b2f1c7ebfd374176c33eaa16
290fe6474f93f03ce8231527398a25fc296cd268
a975b6e3e97d4e03f420050093a97c18ff9f6e52292cb8a2966b974f19be87ce
GET /TuZa1rY.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Oct 2022 16:36:18 GMT
etag: "01d20f13b2f1c7ebfd374176c33eaa16"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:48:42 GMT
age: 558182
x-served-by: cache-iad-kcgs7200048-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
x-cache-hits: 90, 1
x-timer: S1675190923.704621,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 13720
X-Firefox-Spdy: h2
cdn.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/2022/11/01/636143b678db870009a27245.jpg
185.244.209.62200 OK 101 kB URL HTTP/2 cdn.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/2022/11/01/636143b678db870009a27245.jpg
IP 185.244.209.62:0
ASN #58286 Electric-IT Business S.R.L.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1085x631, components 3\012- data
Size 101 kB (101045 bytes)
Hash c99cdd1aaf5b9a9fe67721dcf0d19aef
b0eef9d86ab8ddf4e490e211a417c008c2a499c4
f12e5b55b829c5b5af5b78de2e985e079dd11741bbd2c3123ca072a410cab627
GET /eea827d1-79a3-4183-8db1-48499263b127/2022/11/01/636143b678db870009a27245.jpg HTTP/1.1
Host: cdn.converteai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:42 GMT
content-type: application/x-www-form-urlencoded
content-length: 101045
etag: "c99cdd1aaf5b9a9fe67721dcf0d19aef"
last-modified: Tue, 01 Nov 2022 16:05:12 GMT
vary: Accept-Encoding
expires: Sat, 04 Feb 2023 18:48:42 GMT
cache-control: max-age=345600
access-control-allow-origin: *
x-server: VTurb CDN
x-version: 2.2
cache: MISS
x-id: osix-up-gc4
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/2022/11/01/636143bec0eaab0009686ff4.jpg
185.244.209.62200 OK 101 kB URL HTTP/2 cdn.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/2022/11/01/636143bec0eaab0009686ff4.jpg
IP 185.244.209.62:0
ASN #58286 Electric-IT Business S.R.L.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1085x631, components 3\012- data
Size 101 kB (101045 bytes)
Hash c99cdd1aaf5b9a9fe67721dcf0d19aef
b0eef9d86ab8ddf4e490e211a417c008c2a499c4
f12e5b55b829c5b5af5b78de2e985e079dd11741bbd2c3123ca072a410cab627
GET /eea827d1-79a3-4183-8db1-48499263b127/2022/11/01/636143bec0eaab0009686ff4.jpg HTTP/1.1
Host: cdn.converteai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:42 GMT
content-type: application/x-www-form-urlencoded
content-length: 101045
etag: "c99cdd1aaf5b9a9fe67721dcf0d19aef"
last-modified: Tue, 01 Nov 2022 16:05:19 GMT
vary: Accept-Encoding
expires: Sat, 04 Feb 2023 18:48:42 GMT
cache-control: max-age=345600
access-control-allow-origin: *
x-server: VTurb CDN
x-version: 2.2
cache: MISS
x-id: osix-up-gc4
accept-ranges: bytes
X-Firefox-Spdy: h2
api.vturb.com.br/hermes/einsteinsell.com.br/63af781083a182000a0d14bb/e176e77f-a4bc-4c40-9507-559610f09c73/5fe27c85-1177-4cbb-8999-7d4ca4504d43
34.239.231.207204 No Content 0 B URL HTTP/2 api.vturb.com.br/hermes/einsteinsell.com.br/63af781083a182000a0d14bb/e176e77f-a4bc-4c40-9507-559610f09c73/5fe27c85-1177-4cbb-8999-7d4ca4504d43
IP 34.239.231.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /hermes/einsteinsell.com.br/63af781083a182000a0d14bb/e176e77f-a4bc-4c40-9507-559610f09c73/5fe27c85-1177-4cbb-8999-7d4ca4504d43 HTTP/1.1
Host: api.vturb.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 325
Origin: https://einsteinsell.com.br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 18:48:42 GMT
access-control-allow-origin: https://einsteinsell.com.br
access-control-expose-headers: *
server: Caddy
vary: Origin
X-Firefox-Spdy: h2
cdn.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/2022/11/01/636143ad78db870009a27244.jpg
185.244.209.62200 OK 101 kB URL HTTP/2 cdn.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/2022/11/01/636143ad78db870009a27244.jpg
IP 185.244.209.62:0
ASN #58286 Electric-IT Business S.R.L.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1085x631, components 3\012- data
Size 101 kB (101045 bytes)
Hash c99cdd1aaf5b9a9fe67721dcf0d19aef
b0eef9d86ab8ddf4e490e211a417c008c2a499c4
f12e5b55b829c5b5af5b78de2e985e079dd11741bbd2c3123ca072a410cab627
GET /eea827d1-79a3-4183-8db1-48499263b127/2022/11/01/636143ad78db870009a27244.jpg HTTP/1.1
Host: cdn.converteai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:42 GMT
content-type: application/x-www-form-urlencoded
content-length: 101045
etag: "c99cdd1aaf5b9a9fe67721dcf0d19aef"
last-modified: Tue, 01 Nov 2022 16:05:07 GMT
vary: Accept-Encoding
expires: Sat, 04 Feb 2023 18:48:42 GMT
cache-control: max-age=345600
access-control-allow-origin: *
x-server: VTurb CDN
x-version: 2.2
cache: MISS
x-id: osix-up-gc4
accept-ranges: bytes
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=713179640522124&ev=PageView&dl=https%3A%2F%2Feinsteinsell.com.br%2Ffaturando-com-sites%2F&rl=&if=false&ts=1675190940773&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.2.1675190940772.135232962&it=1675190940342&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=713179640522124&ev=PageView&dl=https%3A%2F%2Feinsteinsell.com.br%2Ffaturando-com-sites%2F&rl=&if=false&ts=1675190940773&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.2.1675190940772.135232962&it=1675190940342&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=713179640522124&ev=PageView&dl=https%3A%2F%2Feinsteinsell.com.br%2Ffaturando-com-sites%2F&rl=&if=false&ts=1675190940773&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.2.1675190940772.135232962&it=1675190940342&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 31 Jan 2023 18:48:43 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 7396e38e25af9115a88ab7eaa8524871
ebef92a862ef26a7775f63ebe18e8b02ef796aa0
d636b5a143cb7a0ba73900c2f91be230e02a532b52b590da81a47f9d17e9691f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 18:48:43 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 13:08:45 GMT
Expires: Sun, 05 Feb 2023 13:08:44 GMT
Etag: "ebef92a862ef26a7775f63ebe18e8b02ef796aa0"
Cache-Control: max-age=411001,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79249f812a7afac0-OSL
cdn.shortpixel.ai/client/q_lossless,ret_img,w_192,h_192/https://bumbumdosdreams.site/wp-content/uploads/2020/11/cropped-Icone-1-150x150-1-192x192.png
194.242.11.186302 Found 0 B URL HTTP/2 cdn.shortpixel.ai/client/q_lossless,ret_img,w_192,h_192/https://bumbumdosdreams.site/wp-content/uploads/2020/11/cropped-Icone-1-150x150-1-192x192.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/q_lossless,ret_img,w_192,h_192/https://bumbumdosdreams.site/wp-content/uploads/2020/11/cropped-Icone-1-150x150-1-192x192.png HTTP/1.1
Host: cdn.shortpixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 18:48:43 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://bumbumdosdreams.site/wp-content/uploads/2020/11/cropped-Icone-1-150x150-1-192x192.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 01/31/2023 18:48:43
cdn-tag: 0; Domain: bumbumdosdreams.site; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 978e8016c1289c1539d00a6d784f379f
cdn-cache: MISS
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e13b1807d0cf868b0ad1dccf7d401ed9
d63053afa312a3ac171e89ad503c3a47101aaaf4
d35d70a69554b3ec1f8bb9acf4ca8396ee140afc08843fa27563b8d9161c248c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35D70A69554B3EC1F8BB9ACF4CA8396EE140AFC08843FA27563B8D9161C248C"
Last-Modified: Tue, 31 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20751
Expires: Wed, 01 Feb 2023 00:34:34 GMT
Date: Tue, 31 Jan 2023 18:48:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e13b1807d0cf868b0ad1dccf7d401ed9
d63053afa312a3ac171e89ad503c3a47101aaaf4
d35d70a69554b3ec1f8bb9acf4ca8396ee140afc08843fa27563b8d9161c248c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35D70A69554B3EC1F8BB9ACF4CA8396EE140AFC08843FA27563B8D9161C248C"
Last-Modified: Tue, 31 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20751
Expires: Wed, 01 Feb 2023 00:34:34 GMT
Date: Tue, 31 Jan 2023 18:48:43 GMT
Connection: keep-alive
scripts.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/players/63af781083a182000a0d14bb/player.js
54.230.111.85200 OK 0 B URL HTTP/2 scripts.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/players/63af781083a182000a0d14bb/player.js
IP 54.230.111.85:0
GET /eea827d1-79a3-4183-8db1-48499263b127/players/63af781083a182000a0d14bb/player.js HTTP/1.1
Host: scripts.converteai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 18:48:42 GMT
last-modified: Tue, 31 Jan 2023 07:44:03 GMT
etag: W/"12360f2cafc608842dc7957c00a44cda"
server: AmazonS3
content-encoding: br
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m6tI_kc9fQUcRY0XZPM_i1sCk-_FQLMyGJFqmLBggpuka9orF0FnhA==
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cdn.converteai.net/lib/js/smartplayer/v1/smartplayer.min.js
185.244.209.62200 OK 0 B URL HTTP/2 cdn.converteai.net/lib/js/smartplayer/v1/smartplayer.min.js
IP 185.244.209.62:0
ASN #58286 Electric-IT Business S.R.L.
GET /lib/js/smartplayer/v1/smartplayer.min.js HTTP/1.1
Host: cdn.converteai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:41 GMT
content-type: text/javascript
etag: W/"f5f437b1892ee93f801a088d5724c515"
last-modified: Mon, 23 Jan 2023 17:56:21 GMT
vary: Accept-Encoding
expires: Sat, 04 Feb 2023 18:48:41 GMT
cache-control: max-age=345600
access-control-allow-origin: *
x-server: VTurb CDN
x-version: 2.2
cache: HIT
x-cached-since: 2023-01-31T15:03:09+00:00
x-id: osix-up-gc4
content-encoding: gzip
X-Firefox-Spdy: h2
scripts.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/players/636ae89206deba000b063247/player.js
54.230.111.85200 OK 0 B URL HTTP/2 scripts.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/players/636ae89206deba000b063247/player.js
IP 54.230.111.85:0
GET /eea827d1-79a3-4183-8db1-48499263b127/players/636ae89206deba000b063247/player.js HTTP/1.1
Host: scripts.converteai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 18:48:42 GMT
last-modified: Mon, 23 Jan 2023 11:39:41 GMT
etag: W/"a9557d15a3f24cac98a877bcb4702aba"
server: AmazonS3
content-encoding: br
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DNvaCY7W58Fgh7hAwwhdQu7diMnb-F_GUWSrjOcRA66QYIzNlObBxw==
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cdn.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/63608aa57783ee000ab0cd74/playlist.m3u8
185.244.209.62404 Not Found 0 B URL HTTP/2 cdn.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/63608aa57783ee000ab0cd74/playlist.m3u8
IP 185.244.209.62:0
ASN #58286 Electric-IT Business S.R.L.
GET /eea827d1-79a3-4183-8db1-48499263b127/63608aa57783ee000ab0cd74/playlist.m3u8 HTTP/1.1
Host: cdn.converteai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx
date: Tue, 31 Jan 2023 18:48:42 GMT
content-type: text/html
vary: Accept-Encoding
x-server: VTurb CDN
x-version: 2.2
cache: MISS
x-id: osix-up-gc4
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/63608aa57783ee000ab0cd74/main.m3u8
185.244.209.62200 OK 0 B URL HTTP/2 cdn.converteai.net/eea827d1-79a3-4183-8db1-48499263b127/63608aa57783ee000ab0cd74/main.m3u8
IP 185.244.209.62:0
ASN #58286 Electric-IT Business S.R.L.
GET /eea827d1-79a3-4183-8db1-48499263b127/63608aa57783ee000ab0cd74/main.m3u8 HTTP/1.1
Host: cdn.converteai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://einsteinsell.com.br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:42 GMT
content-type: application/x-mpegURL
etag: W/"094f5ed9fa56f7636f651828dd3e0ebd"
last-modified: Tue, 01 Nov 2022 03:00:13 GMT
vary: Accept-Encoding
expires: Sat, 04 Feb 2023 18:48:42 GMT
cache-control: max-age=345600
access-control-allow-origin: *
x-server: VTurb CDN
x-version: 2.2
cache: MISS
x-id: osix-up-gc4
X-Firefox-Spdy: h2
secure.doppus.com/go/GB9953EO9J5EZ50O?src=TELEGRAM
54.233.187.137302 Found 0 B URL HTTP/2 secure.doppus.com/go/GB9953EO9J5EZ50O?src=TELEGRAM
IP 54.233.187.137:0
GET /go/GB9953EO9J5EZ50O?src=TELEGRAM HTTP/1.1
Host: secure.doppus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Tue, 31 Jan 2023 18:48:39 GMT
content-type: text/html; charset=UTF-8
location: https://einsteinsell.com.br/faturando-com-sites/
server: nginx/1.14.0 (Ubuntu)
x-frame-options: DENY
x-xss-protection: 1; mode=block
set-cookie: src-76778701=TELEGRAM; expires=Mon, 26-Jan-2043 18:48:39 GMT; Max-Age=630720000; path=/
DPP-B9953-39HBH=AO9J5EZOO0BJHBO-1675190919; expires=Sat, 01-Apr-2023 18:48:39 GMT; Max-Age=5184000; path=/
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 31 Jan 2023 18:48:41 GMT
date: Tue, 31 Jan 2023 18:48:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f44a.svg
192.0.77.48200 OK 0 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f44a.svg
IP 192.0.77.48:0
GET /images/core/emoji/14.0.0/svg/1f44a.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://einsteinsell.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:48:41 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:50:59 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2