firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 05:05:44 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IZXo0Hr9UhrqMeu_22AQ6mVIgmKpx1F7mXIUaj6OnD2tfcYNsmkmkQ==
Age: 961
modulo-mato-grosso.brasil-empresas.com/
206.54.190.30301 Moved Permanently 707 B URL HTTP/1.1 modulo-mato-grosso.brasil-empresas.com/
IP 206.54.190.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: modulo-mato-grosso.brasil-empresas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 23 Sep 2022 05:21:45 GMT
server: LiteSpeed
location: https://modulo-mato-grosso.brasil-empresas.com/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9828
Expires: Fri, 23 Sep 2022 08:05:33 GMT
Date: Fri, 23 Sep 2022 05:21:45 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RSUANNv7EiRaHtd62M69MOzN55KIqXUMZbhYDNbhckWR6xrivBKkfQ==
age: 2791
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 05:21:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 05:03:22 GMT
Expires: Fri, 23 Sep 2022 05:16:48 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QZXsNO20F8AZP_1fydEE4JJA2nvuaXpnGeO9WMgaHKDbn8fclucV6Q==
Age: 1104
modulo-mato-grosso.brasil-empresas.com/
206.54.190.30200 OK 16 kB URL HTTP/2 modulo-mato-grosso.brasil-empresas.com/
IP 206.54.190.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (28800), with no line terminators
Hash 097bcc064e0fe20dbff0433d2bb87c55
7d7d36baf94e61c646428b6eb249a7bced21e539
efe65147c3b0b998cb07d10cc0bbe705b4515d5d792302edb7e3534450fc7537
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: modulo-mato-grosso.brasil-empresas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
set-cookie: PHPSESSID=a8cmgm0tepppkaslt4uoj4h2d3; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 05:21:46 GMT
server: LiteSpeed
x-ua-compatible: IE=edge
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
cmp.optad360.io/items/d43302e7-fdd7-4ed2-b766-332ae2926ff2.min.js
54.230.111.106200 OK 497 B URL HTTP/2 cmp.optad360.io/items/d43302e7-fdd7-4ed2-b766-332ae2926ff2.min.js
IP 54.230.111.106:0
File type ASCII text, with very long lines (496)
Hash 7acdc116a0830ba0aef5e087010246ba
44c6d5659727be623750ef5da32c2da279997694
bd7680f0d4768bf17b38b5834d7671e6e456d9655b4ae3cb39186d1fcd93f5c2
GET /items/d43302e7-fdd7-4ed2-b766-332ae2926ff2.min.js HTTP/1.1
Host: cmp.optad360.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 497
last-modified: Mon, 12 Apr 2021 08:54:56 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 00:25:08 GMT
etag: "7acdc116a0830ba0aef5e087010246ba"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZHHqUmedOQ3TQxi-P6mbul9ac0P4a3xbUXVtUhm0woDJG5kO4GDoaQ==
age: 17799
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5194
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:46 GMT
Last-Modified: Fri, 23 Sep 2022 03:55:12 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
modulo-mato-grosso.brasil-empresas.com/static/css/libs/bootstrap_grid/bootstrap-grid.min.css
206.54.190.30200 OK 2.9 kB URL HTTP/2 modulo-mato-grosso.brasil-empresas.com/static/css/libs/bootstrap_grid/bootstrap-grid.min.css
IP 206.54.190.30:0
File type ASCII text, with very long lines (33976), with CRLF line terminators
Hash e44332708c242d3c40be0d7d810af903
0edbea30e20ba5c6948f1d82cf6c613c1b4ac8c6
2d82b8b274362fc002fb98bf544f64c04225e6b9ba267905ae3427bd5cee3561
GET /static/css/libs/bootstrap_grid/bootstrap-grid.min.css HTTP/1.1
Host: modulo-mato-grosso.brasil-empresas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Cookie: PHPSESSID=a8cmgm0tepppkaslt4uoj4h2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 23 Sep 2023 05:21:46 GMT
content-type: text/css; charset=utf-8
last-modified: Sat, 13 Apr 2019 17:23:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2885
date: Fri, 23 Sep 2022 05:21:46 GMT
server: LiteSpeed
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a42af128758d80c1912f0f258cace238
48728942ac0c560ab21590175d45b8f79a53e146
7096e5e5f1683bcd7d99c6d822e58ecc3561b2917c2065b40b68c230dffd9df1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7096E5E5F1683BCD7D99C6D822E58ECC3561B2917C2065B40B68C230DFFD9DF1"
Last-Modified: Thu, 22 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2128
Expires: Fri, 23 Sep 2022 05:57:14 GMT
Date: Fri, 23 Sep 2022 05:21:46 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=UA-146216250-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-146216250-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 4ffff6477f49229a8e75cbb2c8e7b29a
7ed1d04c926f4a696f6185f09712533b4d01ab41
f3e5b2743af9955f9a1494e4ae5a2fc50163c2d9a7077b675b9ea0ee481ca181
GET /gtag/js?id=UA-146216250-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 05:21:46 GMT
expires: Fri, 23 Sep 2022 05:21:46 GMT
cache-control: private, max-age=900
last-modified: Fri, 23 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42220
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ab5bbc9560b84b1f0442b222f88ba39
e09c3a3880253b7f4940202015f0c22e17d2247a
24dfadfb083b05a2ac55b234e002a9e4094eb9543f83178496e6b2d55bce60bc
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "24DFADFB083B05A2AC55B234E002A9E4094EB9543F83178496E6B2D55BCE60BC"
Last-Modified: Wed, 21 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7850
Expires: Fri, 23 Sep 2022 07:32:36 GMT
Date: Fri, 23 Sep 2022 05:21:46 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
modulo-mato-grosso.brasil-empresas.com/static/css/main.css
206.54.190.30200 OK 31 kB URL HTTP/2 modulo-mato-grosso.brasil-empresas.com/static/css/main.css
IP 206.54.190.30:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash a94ab15454bf0ecdfbcb6ee4b0f05906
3f9fdb2e86ebee64a8004381466ebad528a3ecca
bdea14cb5b69e480a5b912d2f3cbc3ee5ce7e954f5af8a3cb3d50aa07426396d
GET /static/css/main.css HTTP/1.1
Host: modulo-mato-grosso.brasil-empresas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Cookie: PHPSESSID=a8cmgm0tepppkaslt4uoj4h2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 23 Sep 2023 05:21:46 GMT
content-type: text/css; charset=utf-8
last-modified: Wed, 04 Sep 2019 11:46:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30797
date: Fri, 23 Sep 2022 05:21:46 GMT
server: LiteSpeed
x-content-type-options: nosniff
X-Firefox-Spdy: h2
modulo-mato-grosso.brasil-empresas.com/static/css/libs/owl_carousel/owl.carousel.min.css
206.54.190.30200 OK 917 B URL HTTP/2 modulo-mato-grosso.brasil-empresas.com/static/css/libs/owl_carousel/owl.carousel.min.css
IP 206.54.190.30:0
File type ASCII text, with very long lines (3184), with CRLF line terminators
Hash e3f0aef7add53313c6febb571414991e
b7d70fcfab3167639d629057b31d1940377c9426
2693043e796301079c73b182544db670a87505a541bca51b2c1a10f95bd9a0c0
GET /static/css/libs/owl_carousel/owl.carousel.min.css HTTP/1.1
Host: modulo-mato-grosso.brasil-empresas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Cookie: PHPSESSID=a8cmgm0tepppkaslt4uoj4h2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 23 Sep 2023 05:21:46 GMT
content-type: text/css; charset=utf-8
last-modified: Sat, 13 Apr 2019 17:23:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 917
date: Fri, 23 Sep 2022 05:21:46 GMT
server: LiteSpeed
x-content-type-options: nosniff
X-Firefox-Spdy: h2
modulo-mato-grosso.brasil-empresas.com/static/css/libs/malihu/jquery.mCustomScrollbar.min.css
206.54.190.30200 OK 3.8 kB URL HTTP/2 modulo-mato-grosso.brasil-empresas.com/static/css/libs/malihu/jquery.mCustomScrollbar.min.css
IP 206.54.190.30:0
File type ASCII text, with very long lines (42839), with no line terminators
Hash 0f2a1830a2eb3452fe698134828443d4
4d04d53d82c38785c13e1aa7cf012cb9dbf3db28
a037316b9cce9cab96056fd1797693e625fda9cfcd5337f5412b9aa8b6aae3ad
GET /static/css/libs/malihu/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: modulo-mato-grosso.brasil-empresas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Cookie: PHPSESSID=a8cmgm0tepppkaslt4uoj4h2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 23 Sep 2023 05:21:46 GMT
content-type: text/css; charset=utf-8
last-modified: Sat, 13 Apr 2019 17:23:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3806
date: Fri, 23 Sep 2022 05:21:46 GMT
server: LiteSpeed
x-content-type-options: nosniff
X-Firefox-Spdy: h2
informer.ex-currency.com/vertical-rates.js
172.67.150.204200 OK 1.0 kB URL HTTP/2 informer.ex-currency.com/vertical-rates.js
IP 172.67.150.204:0
Hash 421284b77d52ff8127057362a62e25de
b3831c119c17e2b5abca38e9eed67d07463df407
89d0cf6d0b6498ab15209b557c8da54edbfa35c634a4f4a58e507c5afe7b1af7
GET /vertical-rates.js HTTP/1.1
Host: informer.ex-currency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 05:21:46 GMT
content-type: application/javascript
last-modified: Mon, 07 Feb 2022 05:19:27 GMT
vary: Accept-Encoding
etag: W/"6200abdf-e1d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NpEef42IDiCDOkxqsno%2FbhTpN5CLciyirtWIUezyqMe%2B8jYHcLvrQFjkokltkGonLlhdk%2FyKtL5QSB86HAVcMNnk7%2FMBzjfZLlLyZbhO5LCxtm0gS%2BwUQDTK%2FO682p%2BpQEgkAgdxFHd70kA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f0d6bb69d0b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.200.107.47101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.107.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vWmJADdyGxtVHGzl6w5N1Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: s+Jm25FN80WchHbCYo3VdniV1D4=
modulo-mato-grosso.brasil-empresas.com/static/js/jquery.js
206.54.190.30200 OK 30 kB URL HTTP/2 modulo-mato-grosso.brasil-empresas.com/static/js/jquery.js
IP 206.54.190.30:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash b4ea91b82034d3d6d975712383961c52
834490b924a2eb9d457c8e7e7505eda6a220c7f9
32a1d2b33bd963e901916c42be28186835e057638e81cc645ecb344ef605e249
Analyzer Verdict Alert fortinet Phishing
GET /static/js/jquery.js HTTP/1.1
Host: modulo-mato-grosso.brasil-empresas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Cookie: PHPSESSID=a8cmgm0tepppkaslt4uoj4h2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 23 Sep 2023 05:21:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 13 Apr 2019 17:23:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29665
date: Fri, 23 Sep 2022 05:21:46 GMT
server: LiteSpeed
x-content-type-options: nosniff
X-Firefox-Spdy: h2
modulo-mato-grosso.brasil-empresas.com/static/js/libs/svguse/svguse.js
206.54.190.30200 OK 1.1 kB URL HTTP/2 modulo-mato-grosso.brasil-empresas.com/static/js/libs/svguse/svguse.js
IP 206.54.190.30:0
File type ASCII text, with very long lines (522), with CRLF line terminators
Hash defe228d75484c159721146328b212a2
80ce40afa07cd4786b441f77fc82c3e229b0541e
973ae7186810edcf8517e18161bd231efc37c8fae8d4fb82d54b0ee9db410921
Analyzer Verdict Alert fortinet Phishing
GET /static/js/libs/svguse/svguse.js HTTP/1.1
Host: modulo-mato-grosso.brasil-empresas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Cookie: PHPSESSID=a8cmgm0tepppkaslt4uoj4h2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 23 Sep 2023 05:21:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 13 Apr 2019 17:23:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1120
date: Fri, 23 Sep 2022 05:21:46 GMT
server: LiteSpeed
x-content-type-options: nosniff
X-Firefox-Spdy: h2
modulo-mato-grosso.brasil-empresas.com/static/js/libs/owl_carousel/owl.carousel.min.js
206.54.190.30200 OK 11 kB URL HTTP/2 modulo-mato-grosso.brasil-empresas.com/static/js/libs/owl_carousel/owl.carousel.min.js
IP 206.54.190.30:0
File type ASCII text, with very long lines (31997), with CRLF line terminators
Hash 492cd7a29de6da8807928d7fe51a0d9e
87ce842a12404854b415ad53f2e54da8478a5ef3
2a8ebadce0a8f5b504bf8b2bc5d9b0ef8234b7dbcd4f536e685e96c685da849a
Analyzer Verdict Alert fortinet Phishing
GET /static/js/libs/owl_carousel/owl.carousel.min.js HTTP/1.1
Host: modulo-mato-grosso.brasil-empresas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Cookie: PHPSESSID=a8cmgm0tepppkaslt4uoj4h2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 23 Sep 2023 05:21:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 13 Apr 2019 17:23:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11143
date: Fri, 23 Sep 2022 05:21:46 GMT
server: LiteSpeed
x-content-type-options: nosniff
X-Firefox-Spdy: h2
modulo-mato-grosso.brasil-empresas.com/static/js/libs/malihu/jquery.mCustomScrollbar.js
206.54.190.30200 OK 22 kB URL HTTP/2 modulo-mato-grosso.brasil-empresas.com/static/js/libs/malihu/jquery.mCustomScrollbar.js
IP 206.54.190.30:0
File type ASCII text, with very long lines (732), with CRLF line terminators
Hash 755451484cd2f3122d8fd4e51cb4fcd7
8950f836ce2e5dc0b5b70a37432f2cff15db2a70
98021da533480087012adfa609c5f24527b43d52a100eea7c94a550e5e00aeeb
Analyzer Verdict Alert fortinet Phishing
GET /static/js/libs/malihu/jquery.mCustomScrollbar.js HTTP/1.1
Host: modulo-mato-grosso.brasil-empresas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Cookie: PHPSESSID=a8cmgm0tepppkaslt4uoj4h2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 23 Sep 2023 05:21:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 13 Apr 2019 17:23:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 21502
date: Fri, 23 Sep 2022 05:21:46 GMT
server: LiteSpeed
x-content-type-options: nosniff
X-Firefox-Spdy: h2
modulo-mato-grosso.brasil-empresas.com/static/js/main.js
206.54.190.30200 OK 1.9 kB URL HTTP/2 modulo-mato-grosso.brasil-empresas.com/static/js/main.js
IP 206.54.190.30:0
File type Unicode text, UTF-8 text, with very long lines (9807), with no line terminators
Hash 5a739e64f79e01769e2669e46aa4da4c
ba74ca12618c095937314ba62d7085d105f1c6f7
01a27d054663a109e7376b320de27661ae4768ad6313ea2975aa871a4582dc77
Analyzer Verdict Alert fortinet Phishing
GET /static/js/main.js HTTP/1.1
Host: modulo-mato-grosso.brasil-empresas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Cookie: PHPSESSID=a8cmgm0tepppkaslt4uoj4h2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 23 Sep 2023 05:21:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 06 Jul 2019 14:23:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1899
date: Fri, 23 Sep 2022 05:21:46 GMT
server: LiteSpeed
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13234
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 05:21:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13234
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 05:21:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13234
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 05:21:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13234
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 05:21:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13234
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 05:21:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56968ed0-3207-4af0-8229-5f3698c6c55f.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56968ed0-3207-4af0-8229-5f3698c6c55f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 61059307f07edc4e2ba9d07a258bca43
370d166426ad83fc04ccb6e300238d8cb6ab644a
55ec802097ab49f275686e99844ff4a3b554c8998213bb9c3f0380709297c55b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56968ed0-3207-4af0-8229-5f3698c6c55f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5936
x-amzn-requestid: 39e79389-c158-4427-aae0-b1d0dc1d0377
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VowElZoAMF2Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfd1-2da28eb66f876af76158b090;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -DSp0__jaBzizsfagTtIpwhkPqkvjS1L6T17J0OS5W0QhZww03ywpw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:29 GMT
age: 25818
etag: "370d166426ad83fc04ccb6e300238d8cb6ab644a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948809a9-98f3-49af-9568-833cc0cfb149.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948809a9-98f3-49af-9568-833cc0cfb149.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2644bb64610b60b23b7dff21736f7b4d
e95d1909750d36a9e426c170778985310cbfc4e4
e668fe1815310914cee8c5853fbcb3d0e48f6f0f8c2d07f7463e627f97153212
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948809a9-98f3-49af-9568-833cc0cfb149.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5533
x-amzn-requestid: af64386b-45ae-47bb-a6fd-f80e306495df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCkMGVEIAMFfhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e1a-7e417f28422324ed2ddc85da;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fyCuR7eISu5Of0AcZBH5FOtHKRe-Nepnt52kqZtQm0tj1L7lAtGc8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 03:45:46 GMT
age: 5761
etag: "e95d1909750d36a9e426c170778985310cbfc4e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8822718-7784-42f7-9be3-17d81593a755.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8822718-7784-42f7-9be3-17d81593a755.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b577444b5b0cf15747fe28a9d7f22d53
e6097275af3204124c48aa0d876eba0d18b26e7e
0f57e130b23b87fa4e1f9c2a2beff54f1ca73d87a244442558209e378befef11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8822718-7784-42f7-9be3-17d81593a755.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4999
x-amzn-requestid: 6f7b073e-f199-4bfa-8f9c-6688dbfba15a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn7p7GyRIAMF1EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263fd8-566d8b3c1c25e3fa36259812;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:44:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: n4w6--Eta_zedQ8EOarLoCGZavQpadMCZnXlhGmQf4vgHZxyBKtRgw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:51 GMT
age: 25796
etag: "e6097275af3204124c48aa0d876eba0d18b26e7e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0908c18b-cd0b-41cc-beb5-0347df28884c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0908c18b-cd0b-41cc-beb5-0347df28884c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e125802119a2737820b343c4e9ecfb6
30ccc2dd2597b5b720d66c960ee8bd63c7115630
90cce372b2b8c89569fffc55de468bfc7cd4b7454ae7c55c48b7a846506b576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0908c18b-cd0b-41cc-beb5-0347df28884c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11059
x-amzn-requestid: 65fe1c05-a158-4ac2-8368-f26da119ef68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcDTgGV4oAMF0iw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217f49-74fc5c511bee36fd11d6d2eb;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:14:17 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ArtxwEnLiPvfdnNGum0ZbXPBv8Xd6lR2-vWnBj7MnOIq4q3r6rswWQ==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:51 GMT
age: 25796
etag: "30ccc2dd2597b5b720d66c960ee8bd63c7115630"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62dd28d6-72d9-4f9c-8eb7-cc97b6279d6b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62dd28d6-72d9-4f9c-8eb7-cc97b6279d6b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3056431736af42cc145a77dbc77c45a7
977068c1cfdf8dfb64cbe8fb8d917ebc8e3e970e
d299e38c678f4c4548cd2e7cf7ff1b07910b316bfc8b13c492b4fbee0a66b079
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62dd28d6-72d9-4f9c-8eb7-cc97b6279d6b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9892
x-amzn-requestid: f1d435d6-ed01-46b6-8f36-615f07f8cac0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VpWGamoAMFppA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfd5-2c3726b022bd389a156532c4;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ycp3xxTZqMDmPjKujrcqGRnuF0lKBH_avDsVSVASv_mU4tTkEfqoYw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 04:26:02 GMT
age: 3345
etag: "977068c1cfdf8dfb64cbe8fb8d917ebc8e3e970e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:48:22 GMT
age: 27205
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
informer.exchangesboard.com/vertical-rates.js
172.67.170.139301 Moved Permanently 24 kB URL HTTP/2 informer.exchangesboard.com/vertical-rates.js
IP 172.67.170.139:0
File type PNG image data, 280 x 265, 8-bit/color RGBA, non-interlaced\012- data
Hash a146e4684dfbb6f960550102c3aa03a2
5de611e834c8c07b722b08da0875ea913541a62c
019037717a9478691779b48b8c2d65509c715705481751b23ef1a1e9743ac347
GET /vertical-rates.js HTTP/1.1
Host: informer.exchangesboard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 23 Sep 2022 05:21:46 GMT
location: https://informer.ex-currency.com/vertical-rates.js
cache-control: max-age=3600
expires: Fri, 23 Sep 2022 06:21:46 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eeTTM1hl36lfYlBzAwXbTTYvFYC6%2Bx9I%2BmpKbvPYfoFoKKx0YkagclMWTDQ1khwS4Y1QFOd1T5RAn%2FEppgTWVWeri6PD5WaIBiBeG82QQ6vBjzxZVcuF%2BGR%2FqDjR5ss76cJpEBZBaGUwe5E2NYo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f0d6bab951b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
get.optad360.io/sf/prebid7.4.0.js
143.204.55.44200 OK 501 kB URL HTTP/2 get.optad360.io/sf/prebid7.4.0.js
IP 143.204.55.44:0
File type ASCII text, with very long lines (64501)
Size 501 kB (501067 bytes)
Hash a0bddabb480a5fb345c76e9ee90ca693
3e64dbc47434baad48c68bc2ae56becad37258f3
974e273832eda34a4be17276099fc4b24df1c01ce07fcd52e89d8a023dd1c4f0
GET /sf/prebid7.4.0.js HTTP/1.1
Host: get.optad360.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 501067
date: Wed, 07 Sep 2022 08:32:00 GMT
last-modified: Tue, 05 Jul 2022 07:01:35 GMT
etag: "a0bddabb480a5fb345c76e9ee90ca693"
cache-control: public, max-age=360000000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eyRO9L3u9TkLiHkeDkg9o40t23c7iGuvogCjcO6OTLNpEnnNlCOmhA==
age: 1370988
X-Firefox-Spdy: h2
optad360.mgr.consensu.org/icons/branding-ads.svg
54.230.111.17200 OK 7.4 kB URL HTTP/2 optad360.mgr.consensu.org/icons/branding-ads.svg
IP 54.230.111.17:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash b0a3aa2e09d4ddd83150d7bd3347c5c0
66a9f97f6a98adc6d4b1db03927fa77956274073
d04a8585ca1c9cbff59e413fe76da6b8dcf3c567cbc68ec436b852d7f1694df1
GET /icons/branding-ads.svg HTTP/1.1
Host: optad360.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 7419
date: Thu, 22 Sep 2022 21:16:10 GMT
last-modified: Wed, 22 Jun 2022 12:02:24 GMT
etag: "b0a3aa2e09d4ddd83150d7bd3347c5c0"
cache-control: public, max-age=360000000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v4UxNMeFzCxVE9SJYVaSklJuw_UFOiG0khgmYrNXWbmgNE4m2GDBdw==
age: 29137
X-Firefox-Spdy: h2
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20220923
151.101.85.229200 OK 916 B URL HTTP/2 cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20220923
IP 151.101.85.229:0
File type JSON data\012- , ASCII text, with very long lines (1643), with no line terminators
Hash fd938ffc40704f76aeaecdf9fd3f8928
8ea0be7572f095994d8b4cc367d9cf25d2292d35
d0bdb9c38e61d87fec42eff6e7f1e47e5bdc656c5d67c399d0ac7950f17e2424
GET /gh/prebid/currency-file@1/latest.json?date=20220923 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/json; charset=utf-8
x-jsd-version: 1.0.1471
x-jsd-version-type: version
etag: W/"66b-8C368Ocn3EeuIxRzccJgr0pomsg"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 23 Sep 2022 05:21:47 GMT
age: 8445
x-served-by: cache-fra19146-FRA, cache-bma1676-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 916
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash e57ba31019cf1b5c17c5461759f6dfcb
99375eac4e841a2c7090cce1396d27fee26242e6
7c95645de144ee2cfe373ee31bbca9e9591de89fb873e19087eb6f8f33519250
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 05:21:47 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "DC89D180E3734F1D79C5D18C622BFE95EDF03072"
Expires: Fri, 23 Sep 2022 16:00:00 GMT
Last-Modified: Fri, 23 Sep 2022 04:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1944
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f0d6bffef1fac4-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 748f3b28db935832207086a2e4890b61
c402ad55fb49efa636b89e8b272f50123b4e673c
e666e5f16efab20876f06451b40fa8f1e596218dbb174f1b09289b0a8ade06ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E666E5F16EFAB20876F06451B40FA8F1E596218DBB174F1B09289B0A8ADE06BA"
Last-Modified: Tue, 20 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5492
Expires: Fri, 23 Sep 2022 06:53:19 GMT
Date: Fri, 23 Sep 2022 05:21:47 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2335dd256eb60ce84efe268992683e80
96f6c44a39616b02288ffa33e5fc294bf1b02bd4
cc39b342251e1edfbda33f0379c0e9608aac87ac3b419a841d0f3c11eadcd157
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 496
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:47 GMT
Last-Modified: Fri, 23 Sep 2022 05:13:31 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 871
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
cache-control: max-age=0, private, must-revalidate
date: Fri, 23 Sep 2022 05:21:47 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
prebid-eu.creativecdn.com/bidder/prebid/bids
185.184.8.90204 No Content 0 B URL HTTP/2 prebid-eu.creativecdn.com/bidder/prebid/bids
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bidder/prebid/bids HTTP/1.1
Host: prebid-eu.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 719
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 23 Sep 2022 05:21:47 GMT
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 3600
vary: Origin
X-Firefox-Spdy: h2
ssp.wp.pl/bidder/?cs=true&bdver=5.6&pbver=7.4.0&inver=0
212.77.99.29204 No Content 0 B URL HTTP/2 ssp.wp.pl/bidder/?cs=true&bdver=5.6&pbver=7.4.0&inver=0
IP 212.77.99.29:0
ASN #12827 Wirtualna Polska Media S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bidder/?cs=true&bdver=5.6&pbver=7.4.0&inver=0 HTTP/1.1
Host: ssp.wp.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 920
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Fri, 23 Sep 2022 05:21:47 GMT
accept-ch: device-memory, dpr, width, viewport-width, rtt, downlink, ect
accept-ch-lifetime: 604800
access-control-allow-credentials: true
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
uber-trace-id: 00000000000000003edf8bfa3770ead0:4a314e6b2ae12d7d:0:0
vary: Origin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3b578aed53ee9a2ee8cccab56985f7ab
1d5182fc7bdeaa61c5d85491a15dad902fbe93c9
ed8c8c8b8979b564564ddbf0d238414a37ca578ee2b6e71a7ad73ac001f30f71
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Fri, 23 Sep 2022 04:41:09 GMT
expires: Fri, 23 Sep 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 2438
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3b578aed53ee9a2ee8cccab56985f7ab
1d5182fc7bdeaa61c5d85491a15dad902fbe93c9
ed8c8c8b8979b564564ddbf0d238414a37ca578ee2b6e71a7ad73ac001f30f71
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e6561e23e9d181a4b18c7174cb89a590
221a300522f62c4bde7dd23420609a12ae3bd5b6
a66e6d4e834dfd29d86921222d86c7f8ac5d11a4e0c83ab40ff150629f2b9cec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.34200 OK 58 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (2903)
Hash 335fa5c1aae8aff7b9a4417d6bb919a1
d8d9155f2894d6cc92bdcb9e35d1f97da1a65b26
b1165980f7a9fc8368a8c8a38ee4009cdb06928e728a2ce20c83fe448b79b181
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Fri, 23 Sep 2022 05:21:47 GMT
expires: Fri, 23 Sep 2022 05:21:47 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 4935583955617866457
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 57953
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ingmar.club/code/gzsgkmzvme5ha3ddf42dsma
185.177.92.29200 OK 28 kB URL HTTP/2 ingmar.club/code/gzsgkmzvme5ha3ddf42dsma
IP 185.177.92.29:0
ASN #39572 DataWeb Global Group B.V.
Hash 7794f041795a30335ea51cd40435ac36
dac9a15dda15e86a68ab4be12b609a9654ebd5bc
fa9e04b3035f691dfbebb2c8639f3a752d9b88ee357ff17d5f73d5b8b6430c33
GET /code/gzsgkmzvme5ha3ddf42dsma HTTP/1.1
Host: ingmar.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 05:21:46 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
set-cookie: uuid=2a7e972d-16fa-4d04-8777-eac3d5e569fe; expires=Sun, 23-Oct-2022 05:21:46 GMT; Max-Age=2592000; path=/; SameSite=None; domain=ingmar.club; secure
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3b578aed53ee9a2ee8cccab56985f7ab
1d5182fc7bdeaa61c5d85491a15dad902fbe93c9
ed8c8c8b8979b564564ddbf0d238414a37ca578ee2b6e71a7ad73ac001f30f71
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e6561e23e9d181a4b18c7174cb89a590
221a300522f62c4bde7dd23420609a12ae3bd5b6
a66e6d4e834dfd29d86921222d86c7f8ac5d11a4e0c83ab40ff150629f2b9cec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
get.optad360.io/sf/2d578283-a4a5-4f98-82e4-63c5ca544403/plugin.min.js
143.204.55.44200 OK 57 kB URL HTTP/2 get.optad360.io/sf/2d578283-a4a5-4f98-82e4-63c5ca544403/plugin.min.js
IP 143.204.55.44:0
Hash 456c38845e4845755cf4a5aa2ed9f7d9
915aa1b4c8db873d0eb15e29dedc2cb4f89c7fa8
2346ee947794d98ec52afa6c222401aaef81b7b0bc612c97a0757729d8e324b4
GET /sf/2d578283-a4a5-4f98-82e4-63c5ca544403/plugin.min.js HTTP/1.1
Host: get.optad360.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 23 Sep 2022 05:21:47 GMT
last-modified: Sun, 18 Sep 2022 11:34:53 GMT
etag: W/"53e512f4251425d1fbbaa143c5ef53f6"
cache-control: public, max-age=604800
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: E-mVNSwJfkVXYVONkl5pZD118ZjRqZiFeihJspNfI26dSq8kJcL_wQ==
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash dec6afd62ba631e22db907eb8f95867e
58c4a3c150c076eb1bd18f76420460ef4eed4d8e
2f0a63b3bb81a9e48c932903df6a65a3cc5fab355607865bb5bfeb984838bc63
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 05:21:47 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 27 Sep 2022 03:35:42 GMT
ETag: "58c4a3c150c076eb1bd18f76420460ef4eed4d8e"
Last-Modified: Fri, 23 Sep 2022 03:35:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1708
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f0d6c21fc5fac4-OSL
googleads.g.doubleclick.net/pagead/html/r20220921/r20190131/zrt_lookup.html
142.250.74.2200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220921/r20190131/zrt_lookup.html
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220921/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Fri, 23 Sep 2022 03:27:23 GMT
expires: Fri, 07 Oct 2022 03:27:23 GMT
cache-control: public, max-age=1209600
age: 6864
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
87.250.250.119200 OK 72 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.250.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (593)
Hash 3f01a6fe4be69809cd0b0d740ab50c40
8366aca59939c8a0cfe3bc4c7732e9f8cf031375
025a3b03a1e5af9f06a8fb2d3e113c5b73410e0e440cf34869c97b20ccb77829
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 72206
date: Fri, 23 Sep 2022 05:21:47 GMT
access-control-allow-origin: *
etag: "63295b76-11a0e"
expires: Fri, 23 Sep 2022 06:21:47 GMT
last-modified: Tue, 20 Sep 2022 09:19:34 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b19c871f8d68a5cf507d6d29cb89da17
11197481d015eb6d7811381df5ee51d9ff31bb3b
48ce88e049d6f9a08ab2bd0812c037b4b4401e1a788cacefb539831978054b7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f4589cef50f0426b60bf56a1fadb93a5
7db92337dc8c6161e31f89f49db18c4cd22b871f
db8b6e5f5a4e43b9e8e835e9434f0f94ead7965c04dc4641dad639ac778d8215
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=modulo-mato-grosso.brasil-empresas.com&callback=_gfp_s_&client=ca-pub-1427824399252755
172.217.21.162200 OK 208 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=modulo-mato-grosso.brasil-empresas.com&callback=_gfp_s_&client=ca-pub-1427824399252755
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash b2a7d2a350e07989535a8d5148981b57
81e90b895672cf700bebed784511c8eb49e85b29
1c39910edd5e4c3e69571cbf3f75aca0cd22f7afd13571d0e34b1ca323e1d1be
GET /gampad/cookie.js?domain=modulo-mato-grosso.brasil-empresas.com&callback=_gfp_s_&client=ca-pub-1427824399252755 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 23 Sep 2022 05:21:48 GMT
server: cafe
cache-control: private
content-length: 208
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=modulo-mato-grosso.brasil-empresas.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=modulo-mato-grosso.brasil-empresas.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=modulo-mato-grosso.brasil-empresas.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 23 Sep 2022 05:21:48 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=modulo-mato-grosso.brasil-empresas.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=modulo-mato-grosso.brasil-empresas.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=modulo-mato-grosso.brasil-empresas.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 23 Sep 2022 05:21:48 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8ec1540e8ec974c8f6edcedfe7dd807f
920b0ea678361a34b5508dee6c6f556a47586562
5749ded70372335a59fbf3f405a3330d8fb4ba6ae1df1417e8197a723abc46cd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b19c871f8d68a5cf507d6d29cb89da17
11197481d015eb6d7811381df5ee51d9ff31bb3b
48ce88e049d6f9a08ab2bd0812c037b4b4401e1a788cacefb539831978054b7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f4589cef50f0426b60bf56a1fadb93a5
7db92337dc8c6161e31f89f49db18c4cd22b871f
db8b6e5f5a4e43b9e8e835e9434f0f94ead7965c04dc4641dad639ac778d8215
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/metrika/advert.gif
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 23 Sep 2022 05:21:48 GMT
access-control-allow-origin: *
etag: "63295b76-2b"
expires: Fri, 23 Sep 2022 06:21:48 GMT
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 09:19:34 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7533700,-11.4208666,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
143.204.50.3200 OK 13 kB URL HTTP/1.1 api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7533700,-11.4208666,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
IP 143.204.50.3:0
File type PNG image data, 374 x 210, 8-bit colormap, non-interlaced\012- data
Hash 98c8d9c072893bb48326cd3c53e4b99f
b7a4263a469565f0114e1b5e263faf1bd6abdccd
cb8877efd3d3c6e39579a591a12974b44c69a558cc8f24c9d031139d7fd8d61f
GET /styles/v1/mapbox/streets-v10/static/-58.7533700,-11.4208666,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 13154
Connection: keep-alive
Date: Fri, 23 Sep 2022 01:24:29 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Cache-Control: max-age=43200,s-maxage=43200
X-Rate-Limit-Limit: 1250
X-Rate-Limit-Interval: 60
ETag: "b429c99842429a556209f21ef5e106b9f5854a704ac0479a364060dae205d1f9"
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lT-k_c_iZFFFk_zJrogSBWZwPQxDbfjcfele1JpR6A5tngXT_XRHPA==
Age: 14239
mc.yandex.ru/watch/55024114?wmode=7&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1407%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A903%3Acn%3A1%3Adp%3A0%3Als%3A13378452581%3Ahid%3A705841940%3Az%3A0%3Ai%3A20220923052147%3Aet%3A1663910508%3Ac%3A1%3Arn%3A157945052%3Arqn%3A1%3Au%3A1663910508694731121%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C256%2C264%2C1%2C291%2C0%2C%2C584%2C5%2C%2C%2C%2C1425%3Ans%3A1663910505011%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1663910508%3At%3AEmpresas%20em%20M%C3%B3dulo%2C%20Mato%20Grosso%2C%20no%20Brasil.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
87.250.250.119302 Found 100 B URL HTTP/2 mc.yandex.ru/watch/55024114?wmode=7&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1407%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A903%3Acn%3A1%3Adp%3A0%3Als%3A13378452581%3Ahid%3A705841940%3Az%3A0%3Ai%3A20220923052147%3Aet%3A1663910508%3Ac%3A1%3Arn%3A157945052%3Arqn%3A1%3Au%3A1663910508694731121%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C256%2C264%2C1%2C291%2C0%2C%2C584%2C5%2C%2C%2C%2C1425%3Ans%3A1663910505011%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1663910508%3At%3AEmpresas%20em%20M%C3%B3dulo%2C%20Mato%20Grosso%2C%20no%20Brasil.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP 87.250.250.119:0
File type gzip compressed data, max compression\012- data
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /watch/55024114?wmode=7&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1407%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A903%3Acn%3A1%3Adp%3A0%3Als%3A13378452581%3Ahid%3A705841940%3Az%3A0%3Ai%3A20220923052147%3Aet%3A1663910508%3Ac%3A1%3Arn%3A157945052%3Arqn%3A1%3Au%3A1663910508694731121%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C256%2C264%2C1%2C291%2C0%2C%2C584%2C5%2C%2C%2C%2C1425%3Ans%3A1663910505011%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1663910508%3At%3AEmpresas%20em%20M%C3%B3dulo%2C%20Mato%20Grosso%2C%20no%20Brasil.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/55024114/1?wmode=7&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1407%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A903%3Acn%3A1%3Adp%3A0%3Als%3A13378452581%3Ahid%3A705841940%3Az%3A0%3Ai%3A20220923052147%3Aet%3A1663910508%3Ac%3A1%3Arn%3A157945052%3Arqn%3A1%3Au%3A1663910508694731121%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C256%2C264%2C1%2C291%2C0%2C%2C584%2C5%2C%2C%2C%2C1425%3Ans%3A1663910505011%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1663910508%3At%3AEmpresas%20em%20M%C3%B3dulo%2C%20Mato%20Grosso%2C%20no%20Brasil.&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Fri, 23 Sep 2022 05:21:48 GMT
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
set-cookie: yandexuid=1499557011663910508; Expires=Sat, 23-Sep-2023 05:21:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=1499557011663910508; Expires=Sat, 23-Sep-2023 05:21:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=976840511663910508; Path=/; SameSite=None; Secure
i=mhwJ7CFF+DO4T4ZSjY6zT0q/ZOJEMkxdG+JC212YZoYD0XaRglF4ypuUUyae9Ho/tqgULPaDiRYZqX2gyWdIWWxw3Bs=; Expires=Mon, 20-Sep-2032 05:21:43 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1695446508.yrts.1663910508#1695446508.yrtsi.1663910508; Expires=Sat, 23-Sep-2023 05:21:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 23-Sep-2022 05:21:48 GMT
last-modified: Fri, 23-Sep-2022 05:21:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7599995,-11.4166198,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
143.204.50.3200 OK 16 kB URL HTTP/1.1 api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7599995,-11.4166198,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
IP 143.204.50.3:0
File type PNG image data, 374 x 210, 8-bit colormap, non-interlaced\012- data
Hash d1af359d50c7caf0dd72765356bd3206
e1bfe60121577194db7d5a83af765e02c7073ca6
f715473e98e992e9a8e3314619b031fb02eec6898e3204c467bf635b98690e72
GET /styles/v1/mapbox/streets-v10/static/-58.7599995,-11.4166198,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 16458
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 1250
X-Rate-Limit-Interval: 60
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "2a7d90f73c3a334ca8e34ab8b7571eda22b98faeba7773b29dba634c175cd420"
X-Cache: RefreshHit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -4RySLGE1Hz6MtvrZi63Uyfde7mhqdGyPY_J4bS7vsDalVif3bnFIw==
api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7583395,-11.4206602,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
143.204.50.3200 OK 15 kB URL HTTP/1.1 api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7583395,-11.4206602,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
IP 143.204.50.3:0
File type PNG image data, 374 x 210, 8-bit colormap, non-interlaced\012- data
Hash 07fda4a58511a208a0c65c7083d56728
87dbbf7fa7165b29577b40843e0d781fee467693
28b98c18c9c159ff36d920cc3dd6abc410736987cfb75ac09f407587d6e2090b
GET /styles/v1/mapbox/streets-v10/static/-58.7583395,-11.4206602,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 15420
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 1250
X-Rate-Limit-Interval: 60
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "e45e5f0e49220d05922a0c7605e7eb4ed6ba84cabec18f48b2bf5add54db8fc5"
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: d6q-pFQrdEkkYQ4UEhwQzPqCE893p7AmFq0ebiiJkFju17wSYqbouQ==
api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7626816,-11.4160808,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
143.204.50.3200 OK 15 kB URL HTTP/1.1 api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7626816,-11.4160808,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
IP 143.204.50.3:0
File type PNG image data, 374 x 210, 8-bit colormap, non-interlaced\012- data
Hash 5f9023a1ae646fb9850d9539f1e010c4
55ec9448c90b97ee81c67c979ed198419e3c80f3
14772ffbfb45e248fd86a80dcd7d49b0b0177a516d4a83b33eb15ec9b6ef9a26
GET /styles/v1/mapbox/streets-v10/static/-58.7626816,-11.4160808,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 14707
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 1250
X-Rate-Limit-Interval: 60
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "dec1c7937f573d0fa2b607084372006db2d25c3a1e6c653fa14a9b959540a6e2"
X-Cache: RefreshHit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: v7yh60vHCMzEykixeMgtaAHP-o2Y4mtlUuiW6rQJd6h1IVuRtozI8Q==
api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7541073,-11.4209813,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
143.204.50.3200 OK 14 kB URL HTTP/1.1 api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7541073,-11.4209813,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
IP 143.204.50.3:0
File type PNG image data, 374 x 210, 8-bit colormap, non-interlaced\012- data
Hash b7c8a1a105c4f23c685bea4a84b34503
96861b366cfa1ad0133740174c0e423263639cb6
9d873e3a30f9559f671dc9841bdfc472780b452a441249973de6e9d48573a018
GET /styles/v1/mapbox/streets-v10/static/-58.7541073,-11.4209813,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 13526
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 1250
X-Rate-Limit-Interval: 60
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "27a4f7a0ba265abf03919a51488d1b419099716f58ebb80e383b7e12fb0723ab"
X-Cache: RefreshHit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Kg5vGudRAzd_pTtEsgKoFO7yj8DfbCfft-8RnE7A9gLjPrZa9NPGsg==
api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7580636,-11.4169291,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
143.204.50.3200 OK 16 kB URL HTTP/1.1 api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7580636,-11.4169291,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
IP 143.204.50.3:0
File type PNG image data, 374 x 210, 8-bit colormap, non-interlaced\012- data
Hash d4013997bdf7f9822a9c2c07e9ee7028
7f807353eabf20b5276c6e3f0565465073decd69
43625d300bbd2954300d48ae3c09b9eb716bd639769a4ea3fe765c54e2d1b0fe
GET /styles/v1/mapbox/streets-v10/static/-58.7580636,-11.4169291,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 15794
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 1250
X-Rate-Limit-Interval: 60
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "0b0a2507604742c60a29328daa4a59ab209cfd019393dddeb636250286e232c0"
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Hc63U8dnYtr9ZIDUr6OELixjM95aCet_ZA7b1ITBKuU8O0LsmsOTnQ==
828866f832799109c23775247ec2d18b.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
142.250.74.65200 OK 3.1 kB URL HTTP/2 828866f832799109c23775247ec2d18b.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5835)
Hash 3fa5e95a358d660ddb3c45769ae1357f
5f6164fbaf8cfbccfd061b00ae48dedfc16bbcd9
d32f4b680031c0e11222eb17385aa9d3b11d2903b05bff34c3d4eb6292631137
GET /safeframe/1-0-38/html/container.html HTTP/1.1
Host: 828866f832799109c23775247ec2d18b.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 3108
date: Fri, 23 Sep 2022 05:21:48 GMT
expires: Sat, 23 Sep 2023 05:21:48 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 02 Mar 2021 20:17:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7581000,-11.4131570,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
143.204.50.3200 OK 15 kB URL HTTP/1.1 api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7581000,-11.4131570,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
IP 143.204.50.3:0
File type PNG image data, 374 x 210, 8-bit colormap, non-interlaced\012- data
Hash bffa32c7f0cd5862b1e36dc83533f6f4
301cf05e47b0079dbb47e8ec5d563f41d84d4be3
7b3d927507dd2af398401a8cbe1750d66b7e2b3a298771801aee940b83c2b4cd
GET /styles/v1/mapbox/streets-v10/static/-58.7581000,-11.4131570,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 14858
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 1250
X-Rate-Limit-Interval: 60
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "10b244a3c1ef9118dfd09c315b1ba92ff61d6e3ec800f44ece80f7d307496551"
X-Cache: RefreshHit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1yCzJZV5lvD8WFWsCiNIqYYTYuebeTsNukCXilV6cTuqcA1zAxDW6g==
api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7699387,-11.4155975,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
143.204.50.3200 OK 13 kB URL HTTP/1.1 api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7699387,-11.4155975,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
IP 143.204.50.3:0
File type PNG image data, 374 x 210, 8-bit colormap, non-interlaced\012- data
Hash d67492c6e35847bc68dbe2a26151e1ff
8071299d7264d2b3bbb5df365e360dd6e097762f
2736840519301357252a35b3b3fcc0bb65e9c479385ac7330befa770376023bb
GET /styles/v1/mapbox/streets-v10/static/-58.7699387,-11.4155975,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 12616
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 1250
X-Rate-Limit-Interval: 60
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "a916c851cce51352cf1ebd2bca2049b6691213b4bba57017a801debe4f6e5238"
X-Cache: RefreshHit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OeR_vJPABNK8uKZzo7zo76gMZ8LIas4Mrt7loLRZ-ns0nwxxi6jhbw==
api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7542216,-11.4170678,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
143.204.50.3200 OK 15 kB URL HTTP/1.1 api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7542216,-11.4170678,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
IP 143.204.50.3:0
File type PNG image data, 374 x 210, 8-bit colormap, non-interlaced\012- data
Hash ad744bbeb46882e5c8e5d8357947deaa
42613fe681cf9ee9760de32954170f895455880a
32458cd01b17c5320686106162b9f7a2e12169557681cbff7acf13d1766b3c5b
GET /styles/v1/mapbox/streets-v10/static/-58.7542216,-11.4170678,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 14637
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 1250
X-Rate-Limit-Interval: 60
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "d9540855a125ee6d077c36b1ddde96245c84806f4d8c1b2059774b5860edda6b"
X-Cache: RefreshHit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9LCfmjhavvG7gzQ45pZYbk8QzZsx22qE2ape1mbesnH-aLIZGLMyHg==
api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7736928,-11.4199454,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
143.204.50.3200 OK 15 kB URL HTTP/1.1 api.mapbox.com/styles/v1/mapbox/streets-v10/static/-58.7736928,-11.4199454,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg
IP 143.204.50.3:0
File type PNG image data, 374 x 210, 8-bit colormap, non-interlaced\012- data
Hash 425ab12b02d34dbbaa1f7871dfe9c256
f7229d799408638260d9bc172cf4a7b069f84929
6988406a57ec1e2cd14fcc695ba22594390fae154402c09a2c895e890f42b293
GET /styles/v1/mapbox/streets-v10/static/-58.7736928,-11.4199454,15.0,0,0/374x210?access_token=pk.eyJ1IjoiMjdmaXJtc3Ryb255IiwiYSI6ImNsNDg0dDN1MTBvemEzbm1zMzl3amdiZ3gifQ.RTSHjSW-8annNGIlxul8rg HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 15069
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 1250
X-Rate-Limit-Interval: 60
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "b058e37a3b2773a10b0bef7931fadcee127abb50cd056378b7e37c78fceb73cd"
X-Cache: RefreshHit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: drQvZ-IhbIRYDWVkk1kBA3BUluGkkUTANnIXTdg5-Qd7EIRQ_LSQ7g==
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 90838f7bc3b7a0eff96d833811002e58
71f2ff55ab114a5f340a1a3410d7cfa3e88f805a
8c8747ecc5b8edc1e73e8c73578825c4f5f3cec18ca97f833a35c750fd76ab81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 90838f7bc3b7a0eff96d833811002e58
71f2ff55ab114a5f340a1a3410d7cfa3e88f805a
8c8747ecc5b8edc1e73e8c73578825c4f5f3cec18ca97f833a35c750fd76ab81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/watch/55024114/1?wmode=7&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1407%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A903%3Acn%3A1%3Adp%3A0%3Als%3A13378452581%3Ahid%3A705841940%3Az%3A0%3Ai%3A20220923052147%3Aet%3A1663910508%3Ac%3A1%3Arn%3A157945052%3Arqn%3A1%3Au%3A1663910508694731121%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C256%2C264%2C1%2C291%2C0%2C%2C584%2C5%2C%2C%2C%2C1425%3Ans%3A1663910505011%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1663910508%3At%3AEmpresas%20em%20M%C3%B3dulo%2C%20Mato%20Grosso%2C%20no%20Brasil.&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
87.250.250.119200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/55024114/1?wmode=7&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1407%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A903%3Acn%3A1%3Adp%3A0%3Als%3A13378452581%3Ahid%3A705841940%3Az%3A0%3Ai%3A20220923052147%3Aet%3A1663910508%3Ac%3A1%3Arn%3A157945052%3Arqn%3A1%3Au%3A1663910508694731121%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C256%2C264%2C1%2C291%2C0%2C%2C584%2C5%2C%2C%2C%2C1425%3Ans%3A1663910505011%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1663910508%3At%3AEmpresas%20em%20M%C3%B3dulo%2C%20Mato%20Grosso%2C%20no%20Brasil.&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash a762a70d63eb7551b6bf8107d0fec50c
dce926b3c8846cfe851a7b0585e474d371c20d80
26536ed47af1aa2cf12f27466e75c1441df90252aa6a631767c4f47d0b601036
GET /watch/55024114/1?wmode=7&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1407%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A903%3Acn%3A1%3Adp%3A0%3Als%3A13378452581%3Ahid%3A705841940%3Az%3A0%3Ai%3A20220923052147%3Aet%3A1663910508%3Ac%3A1%3Arn%3A157945052%3Arqn%3A1%3Au%3A1663910508694731121%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C256%2C264%2C1%2C291%2C0%2C%2C584%2C5%2C%2C%2C%2C1425%3Ans%3A1663910505011%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1663910508%3At%3AEmpresas%20em%20M%C3%B3dulo%2C%20Mato%20Grosso%2C%20no%20Brasil.&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://modulo-mato-grosso.brasil-empresas.com
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Fri, 23 Sep 2022 05:21:48 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 23-Sep-2022 05:21:48 GMT
last-modified: Fri, 23-Sep-2022 05:21:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 90838f7bc3b7a0eff96d833811002e58
71f2ff55ab114a5f340a1a3410d7cfa3e88f805a
8c8747ecc5b8edc1e73e8c73578825c4f5f3cec18ca97f833a35c750fd76ab81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20220921/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220921/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1624)
Hash f46cc3169ffbd99218f62616e2dc44ea
f44964026d2af9900a059c88967c9e8d067def45
9c82ae03291d76510460e1468338fd9303e25ccbf65e94c66e7a3e2173d7b29c
GET /pagead/js/r20220921/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9559
x-xss-protection: 0
date: Fri, 23 Sep 2022 05:04:15 GMT
expires: Fri, 07 Oct 2022 05:04:15 GMT
cache-control: public, max-age=1209600
etag: 12142024561622733046
content-type: text/javascript; charset=UTF-8
age: 1053
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220921/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220921/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash d4c271459de87911060fd730756373be
9100e62d0d61513c1b489e47a6a35b84e8be4a25
b14fbcdbed0b02e9656b4d5ff183d84c25b076ac0b1087d2feb9254ee9ce8c24
GET /pagead/js/r20220921/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7553
x-xss-protection: 0
date: Fri, 23 Sep 2022 05:12:52 GMT
expires: Fri, 07 Oct 2022 05:12:52 GMT
cache-control: public, max-age=1209600
etag: 15375136450269253166
content-type: text/javascript; charset=UTF-8
age: 536
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sadbundle/$csp%3Der3$/14152923843179563484/index.html
142.250.74.33200 OK 4.7 kB URL HTTP/2 tpc.googlesyndication.com/sadbundle/$csp%3Der3$/14152923843179563484/index.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (14748), with no line terminators
Hash 3d522f67249f2f548f1424109b8204e4
e286c6d7894884555795b12d5869c09b4a67f674
9ec528a7fc4ba14e4d0e99e1fac3923fe841b4b5fa7b9d3a1199da442b18fa44
GET /sadbundle/$csp%3Der3$/14152923843179563484/index.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: default-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com; script-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com 'unsafe-eval' 'unsafe-inline' https://ajax.googleapis.com/ajax/ https://s0.2mdn.net/ads/studio/cached_libs/ https://storage.googleapis.com/vr-assets-static/test_ads/GMAPlayable/ https://www.gstatic.com/ads/ci/ https://www.gstatic.com/swiffy/; object-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com; style-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com 'unsafe-eval' 'unsafe-inline' https://ajax.googleapis.com/ajax/ https://fonts.googleapis.com; img-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com blob: data: https://*.ggpht.com https://*.gstatic.cn https://*.gstatic.com https://ajax.googleapis.com/ajax/ https://lh3.googleusercontent.com https://lh4.googleusercontent.com https://lh5.googleusercontent.com https://lh6.googleusercontent.com https://s0.2mdn.net/ads/studio/cached_libs/ https://static.doubleclick.net https://vr.google.com/shaders/w/techspecs/; media-src 'none'; frame-src 'unsafe-inline' javascript:; font-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com data: https://fonts.gstatic.com; connect-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com data: https://csi.gstatic.com/csi https://fonts.googleapis.com/css https://fonts.googleapis.com/css2 https://vr.google.com/shaders/w/techspecs/; report-uri /pagead/gen_csp?id=adbundle; child-src 'unsafe-inline' javascript:; form-action 'none'
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="content-ads-owners"
report-to: {"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
timing-allow-origin: *
content-length: 4684
x-content-type-options: nosniff
x-dns-prefetch-control: off
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 22:06:27 GMT
expires: Thu, 21 Sep 2023 22:06:27 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 11:33:49 GMT
content-type: text/html
age: 112521
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 75a6c13f18620214e5e013385d752044
174c34759a1e50884846a2505f0be16c285d75cc
fe6fcbbe324ceefc1e833208faedaeae6934b34f868690e5ad4676b02c0b3bf0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 96f3639e0f20067a501f4b23622ccf27
a884b6a89d018d029940c30ab48af2bf2faeb00b
c658c6f010108155b7a741ed0b1ee8ddcbc365ead7700ace26560a0be1798afc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/drt/ui
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 23 Sep 2022 05:21:48 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s0.2mdn.net/ads/studio/cached_libs/gsap_3.5.1_min.js
216.58.211.6200 OK 24 kB URL HTTP/2 s0.2mdn.net/ads/studio/cached_libs/gsap_3.5.1_min.js
IP 216.58.211.6:0
File type ASCII text, with very long lines (60805)
Hash 8bb0a6e91cbcf4aca9c691e9225b34a8
83d921cf6e8334253aded6cd30ffb5781cf3c0cb
06df011163bc2147a0b8dbf5d412f24bfe7ebaaa1654a2d4ac2c68cc71373ddd
GET /ads/studio/cached_libs/gsap_3.5.1_min.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 24155
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 05:21:48 GMT
expires: Fri, 23 Sep 2022 05:21:48 GMT
cache-control: public, max-age=0
age: 0
last-modified: Mon, 31 Aug 2020 21:23:17 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 96f3639e0f20067a501f4b23622ccf27
a884b6a89d018d029940c30ab48af2bf2faeb00b
c658c6f010108155b7a741ed0b1ee8ddcbc365ead7700ace26560a0be1798afc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
142.250.74.163200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Hash b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73
GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: null
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 19:22:36 GMT
expires: Wed, 20 Sep 2023 19:22:36 GMT
cache-control: public, max-age=31536000
age: 208753
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Work%20Sans:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&display=swap
142.250.74.10200 OK 1.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Work%20Sans:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&display=swap
IP 142.250.74.10:0
File type ASCII text, with very long lines (2574)
Hash cf30ef1f42a4f4677ba2b2340423bcaa
fdcca9e27f080a3e738938c8b2eaef9100db63cc
d10af065c0cc2bd7de438e601a96dc8f6c19dead7615f5c57655075c15e26f3e
GET /css?family=Work%20Sans:100,200,300,regular,500,600,700,800,900,100italic,200italic,300italic,italic,500italic,600italic,700italic,800italic,900italic&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 05:21:48 GMT
date: Fri, 23 Sep 2022 05:21:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjst-3Euyix4n4R5KtIZzyxtG5eeUBmZgp43ZVAZcyHPl-ivVoTOnFsEcp2oLgO9UWdDTDtkH0gOaz7rwtYxnUXD0nRT6KHgWfe8vzpnwGDO6ygdo84Zk5uX-fFH4CHqMMdIubtaE4f3uJjwIEIygcvx1uGTuo-uNO4XNL2DsgeFIOHDyN9J2Tq-gJd3cKAM03cYgLXpfDqpinFRPwinRjJw6P3rqPjvqflNfdbTe64eKaL49D5uBPNzapL4TZJvFbUu8KFZZYtROoj4y4slc6bKBYoVn2BfgSlCzbEGPIIA-PMyg1-ui6f5BxFwVeC3KxLqZpBb9mzbO96wFKCapLU-XS-NnPK4E6SpST2mZG61XbnusJvlP7eysdrpi38K7uQCB1vZLZTs6pNtH21eyRYa22uS3wM90GvTeu4f6SDzrXGARiNeHfrzIK3cHhwAcmJEdBmrYhpb3FXyEhYNIX0ZxIE4evRgAjrqx4xa0pr6OTifSUd7e43TruNbpqIOTVyASTaPmW6FX-LlTbq5SHk-LTHRQt8ZIsFddL_tLIEheGLimO9AGVMlCFusmBxlKMxcOStjjvHGBn0jJzXtAzOcX4aK_oIxSBU3xOuHVeVEuUcU83_SnzNKlJtEZ8P58SrmwDyNZfQgQlzSHGZRATeHMd8kzevwJmuA2IutDRRCghJvF-m5nS-TbGa2gPmqm6ym36G5cCb9Cq9LdOhGPf-pMFgOH28i8Tx062P0mlsiVRqCcQvf1QcBVttkqn5E_YJcSn2ZWjRGkxHR8sRrLwjKZM306FcRFBl7pHJwpojw50J3zxAXDTLeCx9qg54B1kD74wgKL8Tbtx_DAS8weDkkxDOHtmHExfkSju_VJT-0KcqTaaprvNn4pK6NjKrXRk_FqQclUH3DATjJGgvRvI5_f4qHjRVmbMS7fVTCORlLMDDa81VtrGAB_DnDovQwo3LPbRx3UIsd28t4S3XQM9egsf8m5hA65fb3wsEUXiw_M3KbECyf3Dx5IeZRWq7aMhDeZH9o854_9AysRu90Ll2BrFm-_yo1NxwxUVWULkGc-Lr4aVIYGYIbeAeNYi4WEmXMg8gH3Bbb2IsgplmfH46QjSCgrul_e0Y3BAsO9A3FphgyJpdeCmvgttq5z3JqF5XN0jc8iDFgbIb61BsEUEXtxFPVJfRBZR84QvYGPX2hgpv3auIwHdmhh1wXIZQHjq8fxkggiSHpdi3Kqs3GXQEokoBi0GrmFifEiR_WOpe5R0W_3DqI2wS-uU_4_9tn9Txi9Ld-MCVYh-a_-9wy9YeGIg0CfIXDF5mPgn07pQbbPSkv9Lcs00XySXeMORsLdJERYJfZJZTWfqm2ntqT0Y9GnLAUdXnFcsmszugjH3wik5JYwDg&sai=AMfl-YT1huNkHLpRSQVcsKCsZaTPUxFRCOqSU7JSEhrMaoyV9-_QNxnDphKCRLacPWTAWs-qENzX7xjaOAXgNigexjHRm_okeoFZpiMf5U_7VzdroJoNwVkr7WXXjmlsT6joKOjWQukQRqLKHVEraWqlssHi2zeYZS8dAEGq-p0ZI75bAdW-93wYAHaJHqXVggCsEfrB774ELx5UzsP0hIH_Q3KjCsqAVZ4&sig=Cg0ArKJSzOLmDlnGf0vMEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20220921.82586&adurl=
142.250.74.162200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjst-3Euyix4n4R5KtIZzyxtG5eeUBmZgp43ZVAZcyHPl-ivVoTOnFsEcp2oLgO9UWdDTDtkH0gOaz7rwtYxnUXD0nRT6KHgWfe8vzpnwGDO6ygdo84Zk5uX-fFH4CHqMMdIubtaE4f3uJjwIEIygcvx1uGTuo-uNO4XNL2DsgeFIOHDyN9J2Tq-gJd3cKAM03cYgLXpfDqpinFRPwinRjJw6P3rqPjvqflNfdbTe64eKaL49D5uBPNzapL4TZJvFbUu8KFZZYtROoj4y4slc6bKBYoVn2BfgSlCzbEGPIIA-PMyg1-ui6f5BxFwVeC3KxLqZpBb9mzbO96wFKCapLU-XS-NnPK4E6SpST2mZG61XbnusJvlP7eysdrpi38K7uQCB1vZLZTs6pNtH21eyRYa22uS3wM90GvTeu4f6SDzrXGARiNeHfrzIK3cHhwAcmJEdBmrYhpb3FXyEhYNIX0ZxIE4evRgAjrqx4xa0pr6OTifSUd7e43TruNbpqIOTVyASTaPmW6FX-LlTbq5SHk-LTHRQt8ZIsFddL_tLIEheGLimO9AGVMlCFusmBxlKMxcOStjjvHGBn0jJzXtAzOcX4aK_oIxSBU3xOuHVeVEuUcU83_SnzNKlJtEZ8P58SrmwDyNZfQgQlzSHGZRATeHMd8kzevwJmuA2IutDRRCghJvF-m5nS-TbGa2gPmqm6ym36G5cCb9Cq9LdOhGPf-pMFgOH28i8Tx062P0mlsiVRqCcQvf1QcBVttkqn5E_YJcSn2ZWjRGkxHR8sRrLwjKZM306FcRFBl7pHJwpojw50J3zxAXDTLeCx9qg54B1kD74wgKL8Tbtx_DAS8weDkkxDOHtmHExfkSju_VJT-0KcqTaaprvNn4pK6NjKrXRk_FqQclUH3DATjJGgvRvI5_f4qHjRVmbMS7fVTCORlLMDDa81VtrGAB_DnDovQwo3LPbRx3UIsd28t4S3XQM9egsf8m5hA65fb3wsEUXiw_M3KbECyf3Dx5IeZRWq7aMhDeZH9o854_9AysRu90Ll2BrFm-_yo1NxwxUVWULkGc-Lr4aVIYGYIbeAeNYi4WEmXMg8gH3Bbb2IsgplmfH46QjSCgrul_e0Y3BAsO9A3FphgyJpdeCmvgttq5z3JqF5XN0jc8iDFgbIb61BsEUEXtxFPVJfRBZR84QvYGPX2hgpv3auIwHdmhh1wXIZQHjq8fxkggiSHpdi3Kqs3GXQEokoBi0GrmFifEiR_WOpe5R0W_3DqI2wS-uU_4_9tn9Txi9Ld-MCVYh-a_-9wy9YeGIg0CfIXDF5mPgn07pQbbPSkv9Lcs00XySXeMORsLdJERYJfZJZTWfqm2ntqT0Y9GnLAUdXnFcsmszugjH3wik5JYwDg&sai=AMfl-YT1huNkHLpRSQVcsKCsZaTPUxFRCOqSU7JSEhrMaoyV9-_QNxnDphKCRLacPWTAWs-qENzX7xjaOAXgNigexjHRm_okeoFZpiMf5U_7VzdroJoNwVkr7WXXjmlsT6joKOjWQukQRqLKHVEraWqlssHi2zeYZS8dAEGq-p0ZI75bAdW-93wYAHaJHqXVggCsEfrB774ELx5UzsP0hIH_Q3KjCsqAVZ4&sig=Cg0ArKJSzOLmDlnGf0vMEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20220921.82586&adurl=
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjst-3Euyix4n4R5KtIZzyxtG5eeUBmZgp43ZVAZcyHPl-ivVoTOnFsEcp2oLgO9UWdDTDtkH0gOaz7rwtYxnUXD0nRT6KHgWfe8vzpnwGDO6ygdo84Zk5uX-fFH4CHqMMdIubtaE4f3uJjwIEIygcvx1uGTuo-uNO4XNL2DsgeFIOHDyN9J2Tq-gJd3cKAM03cYgLXpfDqpinFRPwinRjJw6P3rqPjvqflNfdbTe64eKaL49D5uBPNzapL4TZJvFbUu8KFZZYtROoj4y4slc6bKBYoVn2BfgSlCzbEGPIIA-PMyg1-ui6f5BxFwVeC3KxLqZpBb9mzbO96wFKCapLU-XS-NnPK4E6SpST2mZG61XbnusJvlP7eysdrpi38K7uQCB1vZLZTs6pNtH21eyRYa22uS3wM90GvTeu4f6SDzrXGARiNeHfrzIK3cHhwAcmJEdBmrYhpb3FXyEhYNIX0ZxIE4evRgAjrqx4xa0pr6OTifSUd7e43TruNbpqIOTVyASTaPmW6FX-LlTbq5SHk-LTHRQt8ZIsFddL_tLIEheGLimO9AGVMlCFusmBxlKMxcOStjjvHGBn0jJzXtAzOcX4aK_oIxSBU3xOuHVeVEuUcU83_SnzNKlJtEZ8P58SrmwDyNZfQgQlzSHGZRATeHMd8kzevwJmuA2IutDRRCghJvF-m5nS-TbGa2gPmqm6ym36G5cCb9Cq9LdOhGPf-pMFgOH28i8Tx062P0mlsiVRqCcQvf1QcBVttkqn5E_YJcSn2ZWjRGkxHR8sRrLwjKZM306FcRFBl7pHJwpojw50J3zxAXDTLeCx9qg54B1kD74wgKL8Tbtx_DAS8weDkkxDOHtmHExfkSju_VJT-0KcqTaaprvNn4pK6NjKrXRk_FqQclUH3DATjJGgvRvI5_f4qHjRVmbMS7fVTCORlLMDDa81VtrGAB_DnDovQwo3LPbRx3UIsd28t4S3XQM9egsf8m5hA65fb3wsEUXiw_M3KbECyf3Dx5IeZRWq7aMhDeZH9o854_9AysRu90Ll2BrFm-_yo1NxwxUVWULkGc-Lr4aVIYGYIbeAeNYi4WEmXMg8gH3Bbb2IsgplmfH46QjSCgrul_e0Y3BAsO9A3FphgyJpdeCmvgttq5z3JqF5XN0jc8iDFgbIb61BsEUEXtxFPVJfRBZR84QvYGPX2hgpv3auIwHdmhh1wXIZQHjq8fxkggiSHpdi3Kqs3GXQEokoBi0GrmFifEiR_WOpe5R0W_3DqI2wS-uU_4_9tn9Txi9Ld-MCVYh-a_-9wy9YeGIg0CfIXDF5mPgn07pQbbPSkv9Lcs00XySXeMORsLdJERYJfZJZTWfqm2ntqT0Y9GnLAUdXnFcsmszugjH3wik5JYwDg&sai=AMfl-YT1huNkHLpRSQVcsKCsZaTPUxFRCOqSU7JSEhrMaoyV9-_QNxnDphKCRLacPWTAWs-qENzX7xjaOAXgNigexjHRm_okeoFZpiMf5U_7VzdroJoNwVkr7WXXjmlsT6joKOjWQukQRqLKHVEraWqlssHi2zeYZS8dAEGq-p0ZI75bAdW-93wYAHaJHqXVggCsEfrB774ELx5UzsP0hIH_Q3KjCsqAVZ4&sig=Cg0ArKJSzOLmDlnGf0vMEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20220921.82586&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://828866f832799109c23775247ec2d18b.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 23 Sep 2022 05:21:49 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 23-Sep-2022 05:36:49 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 23 Sep 2022 05:21:49 GMT
X-Firefox-Spdy: h2
ssp.wp.pl/bidder/usersync?tcf=2&pvid=43150696338831170000&sn=mc_adapter
212.77.99.29200 OK 281 B URL HTTP/2 ssp.wp.pl/bidder/usersync?tcf=2&pvid=43150696338831170000&sn=mc_adapter
IP 212.77.99.29:0
ASN #12827 Wirtualna Polska Media S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (477), with no line terminators
Hash 3cc5bd08b7a270b10e3937d69295cce8
342d412c14becbf1fecd3091e0be6355791762fa
ed13833f42b1b6b979d0e7ac1e570dddf6ed8c1ec002c4f13e421e67d3af42ef
GET /bidder/usersync?tcf=2&pvid=43150696338831170000&sn=mc_adapter HTTP/1.1
Host: ssp.wp.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 05:21:51 GMT
content-type: text/html; charset=utf-8
content-length: 281
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
last-modified: Wed, 21 Sep 2022 14:15:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash fddb9bc0d08c9d3202cd1f4d497cf302
cb4fa0ccf9ab51cb3a166a1c5ec8e01c9631b497
5ab08de6d16b7a39686db4e2f3dd4940f895a6acd81023afa19cc1dadb9ad748
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4192
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:51 GMT
Last-Modified: Fri, 23 Sep 2022 04:11:59 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash fddb9bc0d08c9d3202cd1f4d497cf302
cb4fa0ccf9ab51cb3a166a1c5ec8e01c9631b497
5ab08de6d16b7a39686db4e2f3dd4940f895a6acd81023afa19cc1dadb9ad748
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4192
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:51 GMT
Last-Modified: Fri, 23 Sep 2022 04:11:59 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 836222164c8830d7f5fe0d472533a634
d396b06da7708b0a48d052c31bf8a5d4ba21313d
f6d773ba0cd35f9a9860620aaed3656611e9b8d4deaf55c8b62911e91b856bbd
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 05:21:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 27 Sep 2022 03:31:23 GMT
ETag: "d396b06da7708b0a48d052c31bf8a5d4ba21313d"
Last-Modified: Fri, 23 Sep 2022 03:31:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2262
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f0d6d8aa3afac4-OSL
match.adsrvr.org/track/rid?ttd_pid=prebid&fmt=json
35.71.131.137200 OK 63 B URL HTTP/2 match.adsrvr.org/track/rid?ttd_pid=prebid&fmt=json
IP 35.71.131.137:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f591635c2343767af9e873a66514e150
8cb11886850bf9e018c5f0af8674068e9040d91e
63509c2324712a717380902c2fd9a5e29944c4bee65465f177d5288cfd5d2c70
GET /track/rid?ttd_pid=prebid&fmt=json HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 05:21:51 GMT
content-type: application/json; charset=utf-8
content-length: 63
cache-control: private
expires: Sun, 23 Oct 2022 05:21:51 GMT
vary: Origin
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Content-Length, Content-Encoding, Vary, Cache-Control, Accept
x-aspnet-version: 4.0.30319
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 7551a3d046a90ab4ba5ac7dbdbcbe804
0d9d608b8d99398b4f258b4d630fdae811d6f356
515349bc818d5659b34e17dbee43f933f49a3e478a00e596c8456cdbcd15fd17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4704
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:21:51 GMT
Last-Modified: Fri, 23 Sep 2022 04:03:27 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 05:21:50 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=MZBGkV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czlVOG1KdE4zN3F3bUVGbkNEY3BNTGMxZDNJVUl5ZzIlMkZFRk1YemNTTXVCVA; expires=Wed, 18 Oct 2023 05:21:51 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
server-processing-duration-in-ticks: 237559
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/55024114?wmode=0&wv-part=1&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=255746339&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1663910512%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052151%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910512&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/55024114?wmode=0&wv-part=1&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=255746339&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1663910512%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052151%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910512&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/55024114?wmode=0&wv-part=1&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=255746339&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1663910512%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052151%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910512&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 23 Sep 2022 05:21:52 GMT
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 23-Sep-2022 05:21:52 GMT
last-modified: Fri, 23-Sep-2022 05:21:52 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
std.wpcdn.pl/wpjslib6/wpjslib-sync.js
212.77.98.32200 OK 16 kB URL HTTP/2 std.wpcdn.pl/wpjslib6/wpjslib-sync.js
IP 212.77.98.32:0
ASN #12827 Wirtualna Polska Media S.A.
File type ASCII text, with very long lines (46057), with no line terminators
Hash 52cd5129cb45b285e9ca8e1be221e049
6c600f1a532b1c524c80b667ed375ca54b48709e
101d8a67060656258ddbcb8f15e63cd834016482df3545e46e08413619bd4f0e
GET /wpjslib6/wpjslib-sync.js HTTP/1.1
Host: std.wpcdn.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ssp.wp.pl
Connection: keep-alive
Referer: https://ssp.wp.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 05:21:51 GMT
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 12:00:41 GMT
x-rgw-object-type: Normal
etag: W/"434eb198ee35b5885941d107958cf614"
cache-control: max-age=900, stale-while-revalidate=86400
content-encoding: br
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 300
timing-allow-origin: *
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/55024114?wmode=0&wv-part=2&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=693770292&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1663910512%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052152%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910512&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/55024114?wmode=0&wv-part=2&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=693770292&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1663910512%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052152%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910512&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/55024114?wmode=0&wv-part=2&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=693770292&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1663910512%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052152%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910512&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 4373
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 23 Sep 2022 05:21:53 GMT
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 23-Sep-2022 05:21:53 GMT
last-modified: Fri, 23-Sep-2022 05:21:53 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 948abf9bedd1bd67010284080ba06d01
dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b
236639cc2279c6f269dd521796a087a40b43b252cb55faf3e4214cbdc8369a62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10822
x-amzn-requestid: 308978c4-679f-4bb6-bfd7-a81dc00ec3db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YoKcMG-kIAMFZKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63265781-03f94c0a385ed28408de81c8;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 23:25:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9fh_DJXLHRaerYmgTGoVX3LRsMIgzf46bn48yzXp8Xdp8WippJExcg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 11:05:21 GMT
age: 65792
etag: "dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/55024114?wv-check=54053&wv-type=0&wmode=0&wv-part=1&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=31580094&browser-info=gdpr%3A14%3Aet%3A1663910514%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052154%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910514&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/55024114?wv-check=54053&wv-type=0&wmode=0&wv-part=1&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=31580094&browser-info=gdpr%3A14%3Aet%3A1663910514%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052154%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910514&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/55024114?wv-check=54053&wv-type=0&wmode=0&wv-part=1&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=31580094&browser-info=gdpr%3A14%3Aet%3A1663910514%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052154%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910514&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 23 Sep 2022 05:21:54 GMT
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 23-Sep-2022 05:21:54 GMT
last-modified: Fri, 23-Sep-2022 05:21:54 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/55024114?wmode=0&wv-part=2&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=890311624&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1663910514%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052154%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910514&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/55024114?wmode=0&wv-part=2&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=890311624&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1663910514%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052154%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910514&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/55024114?wmode=0&wv-part=2&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=890311624&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1663910514%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052154%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910514&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 23 Sep 2022 05:21:54 GMT
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 23-Sep-2022 05:21:54 GMT
last-modified: Fri, 23-Sep-2022 05:21:54 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/55024114?wmode=0&wv-part=3&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=337090001&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1663910514%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052154%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910514&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/55024114?wmode=0&wv-part=3&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=337090001&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1663910514%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052154%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910514&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/55024114?wmode=0&wv-part=3&wv-hit=705841940&page-url=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&rn=337090001&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1663910514%3Aw%3A1268x939%3Av%3A903%3Az%3A0%3Ai%3A20220923052154%3Au%3A1663910508694731121%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1663910514&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 23 Sep 2022 05:21:54 GMT
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 23-Sep-2022 05:21:54 GMT
last-modified: Fri, 23-Sep-2022 05:21:54 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&domain=modulo-mato-grosso.brasil-empresas.com&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&domain=modulo-mato-grosso.brasil-empresas.com&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&domain=modulo-mato-grosso.brasil-empresas.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 05:21:51 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
server-processing-duration-in-ticks: 1141714
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&domain=modulo-mato-grosso.brasil-empresas.com&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&domain=modulo-mato-grosso.brasil-empresas.com&cw=1&lsw=1
IP 178.250.0.157:0
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fmodulo-mato-grosso.brasil-empresas.com%2F&domain=modulo-mato-grosso.brasil-empresas.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://modulo-mato-grosso.brasil-empresas.com/
Origin: https://modulo-mato-grosso.brasil-empresas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 05:21:51 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://modulo-mato-grosso.brasil-empresas.com
server-processing-duration-in-ticks: 484815
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2