firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 17 Sep 2022 04:11:12 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kfenCntlwyxtLKQlw7Kk8Oob3PyFLRLVc11SiUb9HlH4hGpzzxOnpQ==
Age: 841
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4598
Expires: Sat, 17 Sep 2022 05:41:51 GMT
Date: Sat, 17 Sep 2022 04:25:13 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GFCDDplccy4bm0uauk7Py-3Qx0renlpmgdNd8gKr3zoJBnh0-bklZg==
age: 85798
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 04:25:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
abasantos.com.br/m&tbank/login.php?country&iso&online_id=bc12e75f644ae949d492d81d1
169.57.169.77301 Moved Permanently 283 B URL HTTP/1.1 abasantos.com.br/m&tbank/login.php?country&iso&online_id=bc12e75f644ae949d492d81d1
IP 169.57.169.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4ffbfb14413d0504fca3bdac5df45576
1dcbbdb4eaec60078452434df18b42678a5ba353
b59fa41801034c0454c9ed7fe3c6c5800ceaaab1028fa702ec5b3ceaf99ac92b
GET /m&tbank/login.php?country&iso&online_id=bc12e75f644ae949d492d81d1 HTTP/1.1
Host: abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 17 Sep 2022 04:25:14 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 283
Connection: keep-alive
Location: http://www.abasantos.com.br/m&tbank/login.php?url=m&tbank/login.php
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 17 Sep 2022 04:03:22 GMT
Cache-Control: max-age=3600
Expires: Sat, 17 Sep 2022 04:33:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: igiGllPEo7oDbFfCigva71fuarthaVmfjWvNHJN7SKXevtTLrSg2pw==
Age: 1312
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3db421016cf0e3ad25f324cf0faf0fac
b15909de1105d4d2fb5be5b3920c454daf022445
914b15f28636e0a5e851540ffb0625ecd09d0546b2f1f7af90b267ceebcf1d5d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5262
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 04:25:14 GMT
Last-Modified: Sat, 17 Sep 2022 02:57:33 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
www.abasantos.com.br/m&tbank/login.php?url=m&tbank/login.php
169.57.169.77302 Found 0 B URL HTTP/1.1 www.abasantos.com.br/m&tbank/login.php?url=m&tbank/login.php
IP 169.57.169.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m&tbank/login.php?url=m&tbank/login.php HTTP/1.1
Host: www.abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 17 Sep 2022 04:25:14 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: PHPSESSID=p8ufbijin2tev5v74l4qvcho0q; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
location: http://www.abasantos.com.br/404
Content-Language: pt-BR
push.services.mozilla.com/
44.237.239.70101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.239.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0Calo/NrcCssCH0F20hbeA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 97nPlYd0L8YFT5HYxoeHW8n/YCo=
www.abasantos.com.br/404
169.57.169.77200 OK 99 kB IP 169.57.169.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (32077), with CR, LF line terminators
Hash b14fd6ee59daed39b4f8650c2f5edf02
1f41d63dfb227d84ea04e07b03dfc460da1effc4
8046d5e5ee1160b7bf2e973c41bdbb035348afc55e85201cf379cb20694a752a
Analyzer Verdict Alert fortinet Phishing
GET /404 HTTP/1.1
Host: www.abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=p8ufbijin2tev5v74l4qvcho0q
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Sep 2022 04:25:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Language: pt-BR
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 04:25:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-solid-900.woff2
104.17.25.14200 OK 123 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-solid-900.woff2
IP 104.17.25.14:0
File type Web Open Font Format (Version 2), TrueType, length 122760, version 768.66\012- data
Size 123 kB (122760 bytes)
Hash d1bea16f470ff27ca26131a867131fda
c1e34985d239716f1f236b932f2ecf4fb4c167d2
57deb9ccde6d49564a916cc58a799d8ebd793c7aff69a7f3cce48cbfb0c48777
GET /ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.abasantos.com.br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:15 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 122760
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "61498362-1df88"
last-modified: Tue, 21 Sep 2021 07:01:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3832528
expires: Thu, 07 Sep 2023 04:25:15 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cbpPokjU4pXbX%2BbmsR5OT7CiERXGHxx%2Fc0AIcKtk0zqMdSPiAtIbZkOX%2BPDyVlMsOWy8f0sRMMWMDDWuLiAXrjVuAUi3dQr0LZrc9vcQzeLfvFCh9Ocm8qnO4XpAgY23bEpGv3kL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74bf13afcb53b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-brands-400.woff2
104.17.25.14200 OK 105 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-brands-400.woff2
IP 104.17.25.14:0
File type Web Open Font Format (Version 2), TrueType, length 105264, version 768.66\012- data
Size 105 kB (105264 bytes)
Hash ef9332780500ea981e97dff51cc30669
4020ed1a099b98c421f09ceb9a92f4a1d8d5d9c8
ec372177b8e8df39d755e16551dfbbddcc53938ca52765fd730d0925885c964e
GET /ajax/libs/font-awesome/6.0.0-beta2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.abasantos.com.br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:15 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 105264
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "61498362-19b30"
last-modified: Tue, 21 Sep 2021 07:01:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 12162120
expires: Thu, 07 Sep 2023 04:25:15 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I8PNPnG9ISbnFxnO5QlSX%2FH4vgqBasGZBmnllVsF1CppAF1MDg2Izg53YgLt4%2FhRq9SE0KZ7iWEmR%2FusHAABYF6taLceITytLvRiHWSxh4OoEa4Wp7JOpsK5DKyfShdz%2FP%2F2XmMX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74bf13afdb56b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 04:25:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 04:25:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.abasantos.com.br/doutor/vendors/bootstrap-sweetalert/lib/sweet-alert.css
169.57.169.77200 OK 2.3 kB URL HTTP/1.1 www.abasantos.com.br/doutor/vendors/bootstrap-sweetalert/lib/sweet-alert.css
IP 169.57.169.77:0
Hash 13fb46e67172e9abd03dab6abbd24679
bbb4dfe0a81fea8d45e65b6e64cd6e97e7e826e3
f23c06695b84b486e387a72ff5bfe79c518a9ff36351b985b8ce4429c292e442
GET /doutor/vendors/bootstrap-sweetalert/lib/sweet-alert.css HTTP/1.1
Host: www.abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.abasantos.com.br/404
Cookie: PHPSESSID=p8ufbijin2tev5v74l4qvcho0q
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Sep 2022 04:25:15 GMT
Content-Type: text/css
Last-Modified: Tue, 30 Aug 2022 18:56:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"630e5d4f-2d69"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.abasantos.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 08:31:01 GMT
expires: Wed, 13 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 330854
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 04:25:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.hs-scripts.com/20067418.js
104.17.210.204200 OK 648 B URL HTTP/1.1 js.hs-scripts.com/20067418.js
IP 104.17.210.204:0
File type ASCII text, with very long lines (542)
Hash 0fea78d356c79b7762ef7b2842a862d8
d8fa315964da33261290a32f6b0b09c13e6062a0
af8adc566ffb5628f06462d086d2876f0b62224d10618fad6a0a19623a0842f1
GET /20067418.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.abasantos.com.br/
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 04:25:15 GMT
Content-Type: application/javascript;charset=utf-8
Content-Length: 648
Connection: keep-alive
X-Trace: 2BC2620999BEE925735C9ABE3D67215AAF74FF7CF8000000000000000000
Cache-Control: public, max-age=60
Vary: Accept-Encoding
X-HubSpot-Correlation-Id: 5cd4e88a-bc61-467c-94ff-c510fe61e1b5
Content-Encoding: gzip
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 3600
Access-Control-Allow-Origin: http://www.abasantos.com.br
Last-Modified: Sat, 17 Sep 2022 03:56:40 GMT
CF-Cache-Status: EXPIRED
Expires: Sat, 17 Sep 2022 04:26:15 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 74bf13b01d181c12-OSL
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash dc9fa543e3da44419a68e50c9b58c5c3
fcab19a6c56060f7fd2455c6371abac574582497
e426f4f3722df2c2f67873ad3bf12cb01b033558ce51ca0200d7b61af0d8dd83
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5932
Cache-Control: max-age=144865
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 04:25:15 GMT
Etag: "6324c7e0-116"
Expires: Sun, 18 Sep 2022 20:39:40 GMT
Last-Modified: Fri, 16 Sep 2022 19:00:48 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
www.abasantos.com.br/doutor/vendors/bootstrap-sweetalert/lib/sweet-alert.min.js
169.57.169.77200 OK 5.2 kB URL HTTP/1.1 www.abasantos.com.br/doutor/vendors/bootstrap-sweetalert/lib/sweet-alert.min.js
IP 169.57.169.77:0
File type ASCII text, with very long lines (16651), with no line terminators
Hash 38897be374249c9da568c7101cb0ae8c
e56f838e4ad63edd3373f33bfc82d846be619007
7c743b63dd3399740643f18e7c6d1acb9fd85194c575c7246cefbfd11e55fcc6
Analyzer Verdict Alert fortinet Phishing
GET /doutor/vendors/bootstrap-sweetalert/lib/sweet-alert.min.js HTTP/1.1
Host: www.abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.abasantos.com.br/404
Cookie: PHPSESSID=p8ufbijin2tev5v74l4qvcho0q
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Sep 2022 04:25:15 GMT
Content-Type: application/javascript
Last-Modified: Tue, 30 Aug 2022 18:56:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"630e5d4f-410b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
www.abasantos.com.br/js/ajax.js
169.57.169.77200 OK 1.9 kB URL HTTP/1.1 www.abasantos.com.br/js/ajax.js
IP 169.57.169.77:0
Hash 11d0859a5fa29b7edb79f3af10e8e2e6
2e112b8168b27cbca01a14fd1526b27b7f1d8a7b
fc45f0d9c08cd4b336a71a36ce27ef5ffe435d1cc4ed57cb98671af5f60dc2c6
Analyzer Verdict Alert fortinet Phishing
GET /js/ajax.js HTTP/1.1
Host: www.abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.abasantos.com.br/404
Cookie: PHPSESSID=p8ufbijin2tev5v74l4qvcho0q
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Sep 2022 04:25:15 GMT
Content-Type: application/javascript
Last-Modified: Tue, 30 Aug 2022 18:56:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"630e5d4f-1dc9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
www.abasantos.com.br/imagens/selo.png
169.57.169.77200 OK 1.8 kB URL HTTP/1.1 www.abasantos.com.br/imagens/selo.png
IP 169.57.169.77:0
File type PNG image data, 133 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ea550766a1bc2fca059a6ef4ec11181
f8fb8648df680ccd55f079794cb0a0983da18259
e210c0b1dc76bcb59b4d2045995362b71f378be0345df3c11e5e8e0b374c60dd
GET /imagens/selo.png HTTP/1.1
Host: www.abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.abasantos.com.br/404
Cookie: PHPSESSID=p8ufbijin2tev5v74l4qvcho0q
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Sep 2022 04:25:15 GMT
Content-Type: image/png
Content-Length: 1819
Last-Modified: Tue, 30 Aug 2022 18:56:15 GMT
Connection: keep-alive
ETag: "630e5d4f-71b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
www.abasantos.com.br/imagens/icones/whatsapp-button.svg
169.57.169.77200 OK 1.8 kB URL HTTP/1.1 www.abasantos.com.br/imagens/icones/whatsapp-button.svg
IP 169.57.169.77:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash b487a3269bbfa9cc805b5fc744344274
088124c0bd711035c18d72cecfc37f628f26850d
f50d837fce893715f2b7afab5ae173d579f2a340389989dc19b7672b047f5e4d
Analyzer Verdict Alert fortinet Phishing
GET /imagens/icones/whatsapp-button.svg HTTP/1.1
Host: www.abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.abasantos.com.br/404
Cookie: PHPSESSID=p8ufbijin2tev5v74l4qvcho0q
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Sep 2022 04:25:15 GMT
Content-Type: image/svg+xml
Last-Modified: Tue, 30 Aug 2022 18:56:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"630e5d4f-1323"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
www.abasantos.com.br/imagens/logo.png
169.57.169.77200 OK 18 kB URL HTTP/1.1 www.abasantos.com.br/imagens/logo.png
IP 169.57.169.77:0
File type PNG image data, 434 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash c2b96b2340c1d5d4f33fea8d7ed1596b
59293a5aeaab986542a64fa76c4415f499d64222
c789ab73a1fdd44e6a2818e12b5be780ca2f6067bc23c5ad4c5579acda9daaba
GET /imagens/logo.png HTTP/1.1
Host: www.abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.abasantos.com.br/404
Cookie: PHPSESSID=p8ufbijin2tev5v74l4qvcho0q
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Sep 2022 04:25:15 GMT
Content-Type: image/png
Content-Length: 18521
Last-Modified: Tue, 30 Aug 2022 18:56:15 GMT
Connection: keep-alive
ETag: "630e5d4f-4859"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
www.abasantos.com.br/imagens/logo-white.png
169.57.169.77200 OK 9.5 kB URL HTTP/1.1 www.abasantos.com.br/imagens/logo-white.png
IP 169.57.169.77:0
File type PNG image data, 434 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash 88b66a3ba8f371c41752935e9f22a648
e6bc456d9c513ef5fabf8ae025132824b25c7ddd
68d630afb69227608b2952fe6c81d1ecbd88d9c86545a04367add79847e1457b
GET /imagens/logo-white.png HTTP/1.1
Host: www.abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.abasantos.com.br/404
Cookie: PHPSESSID=p8ufbijin2tev5v74l4qvcho0q
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Sep 2022 04:25:15 GMT
Content-Type: image/png
Content-Length: 9464
Last-Modified: Tue, 30 Aug 2022 18:56:15 GMT
Connection: keep-alive
ETag: "630e5d4f-24f8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
api.hubspot.com/livechat-public/v1/message/public?portalId=20067418&conversations-embed=static-1.10632&mobile=false&messagesUtk=6737ed7ac3334fb58621f889aa53f75a&traceId=6737ed7ac3334fb58621f889aa53f75a
104.19.155.83200 OK 18 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=20067418&conversations-embed=static-1.10632&mobile=false&messagesUtk=6737ed7ac3334fb58621f889aa53f75a&traceId=6737ed7ac3334fb58621f889aa53f75a
IP 104.19.155.83:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /livechat-public/v1/message/public?portalId=20067418&conversations-embed=static-1.10632&mobile=false&messagesUtk=6737ed7ac3334fb58621f889aa53f75a&traceId=6737ed7ac3334fb58621f889aa53f75a HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: http://www.abasantos.com.br/
Origin: http://www.abasantos.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:15 GMT
content-type: text/plain; charset=utf-8
content-length: 18
cf-ray: 74bf13b19d151c0e-OSL
access-control-allow-origin: http://www.abasantos.com.br
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: b421dcf6-8fa8-469e-8c6f-68e42c4d76a2
x-trace: 2BB25FD1C6C5507B1454F0D0B6D9CD737D2B0F5BF9000000000000000000
set-cookie: __cf_bm=QpaYZj20j_iPuMfeo9H3v2W3TCjeTfULwIhAzRsYD3I-1663388715-0-Adi+Thqu2NkZcuHP2cffuYToR+9OPtYSNCd8DmoAa5jXLoZ0Fe6SixtSPUanN5Ls6HFlDGSyFkI6xHPXNm6uInY=; path=/; expires=Sat, 17-Sep-22 04:55:15 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CNdcazhkXkvraNsfnksjEoMbUKFYjdEVm2F4qvUeduK3iYY7dQCV1NKBv%2BQpPM5S3%2B72RGTSSCCy60iAXLl1UEhBAXNdwDSxUeBbd8GMhl8nYDccOObO%2FNDKoa384FpF3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9825
Expires: Sat, 17 Sep 2022 07:09:01 GMT
Date: Sat, 17 Sep 2022 04:25:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9825
Expires: Sat, 17 Sep 2022 07:09:01 GMT
Date: Sat, 17 Sep 2022 04:25:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9825
Expires: Sat, 17 Sep 2022 07:09:01 GMT
Date: Sat, 17 Sep 2022 04:25:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c35b7f5f8e1b0b24570a41b7d18533a
c5b82c9d77851820b8d206573d5c03cd36d27a20
bb2456b31c48e6ebc9595c2bb9972b74531e93dd02ec4571d5af614f2d116ec7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6109
x-amzn-requestid: 271b006e-9d17-46ba-9eed-22fd638c4e9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2AhHZgIAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d039c-444e7d6b22f2a08f7215a986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CIWYkrbRUTWVmy3JC5GbpBN1i30fwtYqGDyoA9ehbPANY7gw7al9ow==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 00:42:42 GMT
age: 13354
etag: "c5b82c9d77851820b8d206573d5c03cd36d27a20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e8614f-d7d5-4a87-adf0-ab2cfcfb023b.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e8614f-d7d5-4a87-adf0-ab2cfcfb023b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e963daffb462e89d9d67e6193944cc3
ff29c630c2ed8a67fe5cd4622dc9f1d23234b58c
cc24af0aedb89ab059b6706b8e51708547ea2ce2b2c2743425810b44af7c68c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e8614f-d7d5-4a87-adf0-ab2cfcfb023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5956
x-amzn-requestid: 19032fea-67c3-404f-bf3e-9b436a61a7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeNW4G30oAMFw0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63225c2b-3da099be3781af033658520f;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:56:43 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iITasHJYVP9sMCE7074VGGXwzKVd-0VdZqWYFuKPSt3G91Tq2vWExA==
via: 1.1 74aa91fe819001bcedd882694f52b436.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 23:32:44 GMT
age: 17552
etag: "ff29c630c2ed8a67fe5cd4622dc9f1d23234b58c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d46a910081eb782408f1a2fa3c6aabba
28ac45ef155c66dd79a306f14d3b38f597b6a32e
d5787a6a12d275555c627e3245b37d4e751148345a09d5671b343cfebe7173b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: e1ca6cef-c033-4887-80cf-2014ab8e620c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykn5cEnLIAMFrzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ed09-3afc16cf66fef0e62dd6f3cc;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BaRpWB_XOMxTJPufnSjd4KSfecRwLe9U5W7uEoXy7pgAa4KSC0n7eg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:03:28 GMT
age: 22908
etag: "28ac45ef155c66dd79a306f14d3b38f597b6a32e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98d68511-1d61-4e7e-9647-8c57b409e85e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98d68511-1d61-4e7e-9647-8c57b409e85e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 67046c783f8a224572cb8c70625cec67
6b17fa76a13bca3d75efb59a2f4b04c4a43477b6
44aed2e381a512e648202a775c70b7e5ebd5ce8f2c8762bb24c8bb8ee9b98f4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98d68511-1d61-4e7e-9647-8c57b409e85e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10127
x-amzn-requestid: d9194b5e-17bc-4e08-b1bb-97dda96ac30e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknslF7KoAMF8xQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ecb6-56733ebe2050abfd16e2d5a1;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:37:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4_c5u-urZXYoc20jtewRKM2lC4u0vWheaKRqo-VqMoPL03JxoY3k9Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:54:55 GMT
etag: "6b17fa76a13bca3d75efb59a2f4b04c4a43477b6"
content-type: image/jpeg
age: 23421
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a22ab7dcdf50f4a297b8e117d336eae
e139a0974317212f094fdbe59e26ca5cf6b9e56d
9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 65YRttsQYzjUMMZXrtAFPdgTPNQuRGnLFliXrcoc24iQgrdBCHolNQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:31:11 GMT
age: 21245
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1024748-f90f-4a93-b16b-b8f8110102f2.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1024748-f90f-4a93-b16b-b8f8110102f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2182aefe8078f268f77064b982353421
b66a3b8245ed597751c5c17b63f45273ccacb3d4
bd0549ca87a0fb119e68cfd71d50118e3075cc8e99bcaa83761a9ab0c93ee2ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1024748-f90f-4a93-b16b-b8f8110102f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8892
x-amzn-requestid: 683b4d8c-3704-4db5-837c-8d27302173a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YRmxsHrToAMFo4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d51a4-6e53a23464675f511588380b;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 03:10:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9TTQPBF7pLROmkjS2laYeheFccAiDgmhrShlpETqR20R6RTs4u5oRA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:01:51 GMT
age: 23005
etag: "b66a3b8245ed597751c5c17b63f45273ccacb3d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api.hubspot.com/livechat-public/v1/message/public?portalId=20067418&conversations-embed=static-1.10632&mobile=false&messagesUtk=6737ed7ac3334fb58621f889aa53f75a&traceId=6737ed7ac3334fb58621f889aa53f75a
104.19.155.83200 OK 1.5 kB URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=20067418&conversations-embed=static-1.10632&mobile=false&messagesUtk=6737ed7ac3334fb58621f889aa53f75a&traceId=6737ed7ac3334fb58621f889aa53f75a
IP 104.19.155.83:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2927), with no line terminators
Hash 39033dabb82cffc7d658eddfda6bad7c
b819f99dbb2f43b600820d334bcefaf6e37726ac
bdc35e6844dc2b060631deec59dfa1075c7d6395280a448eaf50bff2b6bbe863
GET /livechat-public/v1/message/public?portalId=20067418&conversations-embed=static-1.10632&mobile=false&messagesUtk=6737ed7ac3334fb58621f889aa53f75a&traceId=6737ed7ac3334fb58621f889aa53f75a HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: http://www.abasantos.com.br/404
Origin: http://www.abasantos.com.br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:16 GMT
content-type: application/json;charset=utf-8
content-length: 1454
cf-ray: 74bf13b25d561c0e-OSL
access-control-allow-origin: http://www.abasantos.com.br
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: b45fcc37-579a-4d87-8da6-93fca49b19b8
x-trace: 2BBE9F3C73ADB425D6DD6884474822EBBC45DF4A53000000000000000000
set-cookie: __cf_bm=0wCVm42GvxJ2cynQ2aH3ZSUtXEqkoXbRUSFEfRJo4oQ-1663388716-0-AcH2W14Zgc0WF+Y7HfYOReGE6N68uXeS1XhXDTHkMn1imAwTBP0PEOskqm4cGVLJmwOdY+dRhVL/datlLFU8+t8=; path=/; expires=Sat, 17-Sep-22 04:55:16 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RWsBla7f46TUS8wISaXTFoLM5ncG7lOTdQIq0eZXXTvROTQv5QeSUw0PuYlbgisrCC8v0xcAt0GS0Vx6A7bM%2FuME%2BihLPUjWSFaZ33Tnbl5vbVlztfnY3MNq4m4S8pw99Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=3
104.16.86.5200 OK 35 B URL HTTP/2 forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=3
IP 104.16.86.5:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=3 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:16 GMT
content-type: image/gif
content-length: 35
x-trace: 2B095C2BFD0221113AE9A70D58DD50515D9104F9D1000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: Accept-Encoding
x-hubspot-correlation-id: 4c9d5e18-61ae-4e52-be5f-e735f28c4e5e
access-control-allow-credentials: false
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bf13b359f2fac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.abasantos.com.br/doutor/_cdn/ajax/functions.php
169.57.169.77200 OK 22 B URL HTTP/1.1 www.abasantos.com.br/doutor/_cdn/ajax/functions.php
IP 169.57.169.77:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 66054b9417b1a1c5948fa922f7c1c890
4e46dfda6cda640df3e330d6a27f6573b9560243
ca526bb698b76b921372b268f2ec0ff1c71a65cd39c706cb1214dd710b040fb5
Analyzer Verdict Alert fortinet Phishing
POST /doutor/_cdn/ajax/functions.php HTTP/1.1
Host: www.abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 15
Origin: http://www.abasantos.com.br
Connection: keep-alive
Referer: http://www.abasantos.com.br/404
Cookie: PHPSESSID=p8ufbijin2tev5v74l4qvcho0q
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Sep 2022 04:25:16 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 22
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Language: pt-BR
js.hs-banner.com/cookie-banner-public/v1/domain-collection
172.64.154.85200 OK 0 B URL HTTP/2 js.hs-banner.com/cookie-banner-public/v1/domain-collection
IP 172.64.154.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /cookie-banner-public/v1/domain-collection HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www.abasantos.com.br/
Origin: http://www.abasantos.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:16 GMT
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: http://www.abasantos.com.br
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74bf13b44becb4ee-OSL
X-Firefox-Spdy: h2
js.hs-banner.com/cookie-banner-public/v1/domain-collection
172.64.154.85204 No Content 0 B URL HTTP/2 js.hs-banner.com/cookie-banner-public/v1/domain-collection
IP 172.64.154.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cookie-banner-public/v1/domain-collection HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 112
Origin: http://www.abasantos.com.br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 17 Sep 2022 04:25:16 GMT
x-trace: 2BA20ECD125B2569493586B50666D9EBADFFE698C7000000000000000000
x-hubspot-correlation-id: 4d9f5cfc-c8ec-45e5-84b9-060ae79ca23a
access-control-allow-origin: http://www.abasantos.com.br
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74bf13b4fc54b4ee-OSL
X-Firefox-Spdy: h2
www.abasantos.com.br/imagens/favicon.png
169.57.169.77200 OK 2.6 kB URL HTTP/1.1 www.abasantos.com.br/imagens/favicon.png
IP 169.57.169.77:0
File type PNG image data, 32 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 06497e2c3ad168089cfcdc72065fb376
f38f5a582f304466a74e081e6186114428c44c5f
80c9d53b6af607888db42207acd09c1322ebb2af374a6c81b8dcd09e834e8ab9
GET /imagens/favicon.png HTTP/1.1
Host: www.abasantos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.abasantos.com.br/404
Cookie: PHPSESSID=p8ufbijin2tev5v74l4qvcho0q
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Sep 2022 04:25:16 GMT
Content-Type: image/png
Content-Length: 2630
Last-Modified: Tue, 30 Aug 2022 18:56:15 GMT
Connection: keep-alive
ETag: "630e5d4f-a46"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
js.hs-banner.com/cookie-banner-public/v1/activity/view
172.64.154.85200 OK 0 B URL HTTP/2 js.hs-banner.com/cookie-banner-public/v1/activity/view
IP 172.64.154.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /cookie-banner-public/v1/activity/view HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www.abasantos.com.br/
Origin: http://www.abasantos.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:16 GMT
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: http://www.abasantos.com.br
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74bf13b44beeb4ee-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-E1XJ3PEN2S
142.250.74.72302 Found 253 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=G-E1XJ3PEN2S
IP 142.250.74.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 81da0f27ab132741af3dad79c610b8ea
477be334c1237e971683e52034cc5b95329dd25b
23409efd09ee25d99192c57eee42b08ee627d8e996cef69f87b581774a01f8df
GET /gtag/js?id=G-E1XJ3PEN2S HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.abasantos.com.br/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=G-E1XJ3PEN2S
Cross-Origin-Resource-Policy: cross-origin
Date: Sat, 17 Sep 2022 04:25:16 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 253
X-XSS-Protection: 0
js.hs-banner.com/cookie-banner-public/v1/activity/view
172.64.154.85204 No Content 0 B URL HTTP/2 js.hs-banner.com/cookie-banner-public/v1/activity/view
IP 172.64.154.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cookie-banner-public/v1/activity/view HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 138
Origin: http://www.abasantos.com.br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 17 Sep 2022 04:25:16 GMT
x-trace: 2BA8390594DF4E3BB471FC43CBC0594CEA87E7310F000000000000000000
x-hubspot-correlation-id: 311fbe40-e744-476c-bed1-02eb5c7a9ca3
access-control-allow-origin: http://www.abasantos.com.br
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74bf13b6fd1eb4ee-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 843 B IP 142.250.74.3:0
Hash 7f9d6034d6a8daeda048ecc409f63070
61f21f9dbd996c36f70ff726ded33c83cc17522d
989aaf546044ad5b164de350d47aedc7a5cdeb6d682a762e3aef5b0f17e89ff0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 04:25:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-E1XJ3PEN2S
142.250.74.72200 OK 96 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-E1XJ3PEN2S
IP 142.250.74.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (30721)
Hash 3015c0350774118d942357d79834c2bd
8a3afa4ca47bcbd00ec8dcde6c1a6c2ce0cdc0bf
a8f54219e5bf46f7059928259584ff24c780735c55131311a3b12666bcbc00fa
GET /gtag/js?id=G-E1XJ3PEN2S HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.abasantos.com.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 17 Sep 2022 04:25:16 GMT
expires: Sat, 17 Sep 2022 04:25:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75308
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn2.hubspot.net/hub/20067418/hubfs/LOGO%20ABASANTOS.png?width=108&height=108
104.17.241.204200 OK 1.7 kB URL HTTP/2 cdn2.hubspot.net/hub/20067418/hubfs/LOGO%20ABASANTOS.png?width=108&height=108
IP 104.17.241.204:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 575f768e11d68796cf56ccabc3ff9b7f
e0cb63cf92962f9d7187cd30d989a2ab7b306cb1
34d6a58c5da852c16ff6307763ca513be34fe9c1d57800a35af085ca900c97e8
GET /hub/20067418/hubfs/LOGO%20ABASANTOS.png?width=108&height=108 HTTP/1.1
Host: cdn2.hubspot.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:16 GMT
content-type: image/webp
content-length: 1690
cf-ray: 74bf13b85dbbb4ee-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 16777
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
content-disposition: inline; filename="LOGO%20ABASANTOS.webp"
etag: "b1d5bdaa8dbb074f19ffa8b54900fd69"
last-modified: Tue, 13 Sep 2022 19:46:54 GMT
vary: Accept, Accept-Encoding
via: 1.1 920629f47fa586ce02a1a1af8b626578.cloudfront.net (CloudFront)
cf-cache-status: HIT
access-control-allow-methods: GET
cache-tag: F-63826419271,P-20067418,FLS-ALL
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=3457
edge-cache-tag: F-63826419271,P-20067418,FLS-ALL
x-amz-cf-id: El3D5FvtihQnNdoj9bWgvIfVz8WWNVPyDftisgEi6xDXI5uKhPC7bw==
x-amz-cf-pop: IAD89-P1
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BP57gtpj%2FJlHYDXXSOYMuGRdrlQ4zGIDCxp2kXpmFHNMADVKmqESHwbAZSVqLzVQmqS%2FNS6kJLUeP46vr1pGSk3RY2QQrlyv16Uqjrf5P3C4w0JWUytYa9oS8OE3EtUqiMM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5d12cc59489773babbc650161772d674
6fa23d626e8a64d98e59984567cd4dc42c648833
f43eae2b85acffc988fbc2c97e18ae1c013217db2cbe24df14dd3b8c35d0ff27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 04:25:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-E1XJ3PEN2S>m=2oe9e0&_p=1809046151&cid=50752379.1663388700&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663388700&sct=1&seg=0&dl=http%3A%2F%2Fwww.abasantos.com.br%2F404&dt=Erro%20404%3A%20P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Aba%20Santos&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-E1XJ3PEN2S>m=2oe9e0&_p=1809046151&cid=50752379.1663388700&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663388700&sct=1&seg=0&dl=http%3A%2F%2Fwww.abasantos.com.br%2F404&dt=Erro%20404%3A%20P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Aba%20Santos&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-E1XJ3PEN2S>m=2oe9e0&_p=1809046151&cid=50752379.1663388700&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663388700&sct=1&seg=0&dl=http%3A%2F%2Fwww.abasantos.com.br%2F404&dt=Erro%20404%3A%20P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Aba%20Santos&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.abasantos.com.br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.abasantos.com.br
date: Sat, 17 Sep 2022 04:25:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
forms.hubspot.com/collected-forms/v1/config/json?portalId=20067418&utk=
104.19.155.83200 OK 0 B URL HTTP/2 forms.hubspot.com/collected-forms/v1/config/json?portalId=20067418&utk=
IP 104.19.155.83:0
GET /collected-forms/v1/config/json?portalId=20067418&utk= HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.abasantos.com.br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:15 GMT
content-type: application/json;charset=utf-8
vary: Accept-Encoding
x-hubspot-correlation-id: 7376f966-aa99-4d58-bd09-82895e9c2d93
access-control-allow-credentials: false
access-control-allow-origin: http://www.abasantos.com.br
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=RN8drqYwo7Y2WOVONQS3Ek_o3slGPUeyltW1J1_WpG4-1663388715-0-AfTgmj2RxjM2C+zr3FC4raLq7QRwbYmzwh77iiSAnio5avW27AjJvMS1bdnSIM6RHPF+ynkFHtrNWIce8LED8Eo=; path=/; expires=Sat, 17-Sep-22 04:55:15 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CM5X%2FUo5Rn9yI6lCvJr%2FbdQs2MJdYjEF5cUXY9DIw%2FJvZZfc8bKy7XpNGTmMrIEtbqdE4oYMAxx3g6Ujer3jy1rSkp5hBfR6tmtzGoXWiNH79k%2FDEz6ejB047Il1ibK4BhDl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bf13b1cd1e1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.hs-banner.com/20067418.js
172.64.154.85200 OK 0 B URL HTTP/2 js.hs-banner.com/20067418.js
IP 172.64.154.85:0
GET /20067418.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:16 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: s2tYwKgph09O+SGrkJU/Fj1aMoaKhrMPguEsSrdjgYNYsCchGMybnlRjDmd9PjNmzzZHvNgTwYc=
x-amz-request-id: RSRTRG7BEK4R6RER
last-modified: Tue, 30 Aug 2022 22:51:14 GMT
etag: W/"ff1cd361a3794133320201a5fc19d6c9"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: aHMx4Wg75QXFHT8B3ZZn1jD8QmHV_Cmz
access-control-allow-origin: http://www.abasantos.com.br
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
expires: Sat, 17 Sep 2022 04:30:16 GMT
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 74bf13b139a0fac0-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.hsappstatic.net/head-dlb/static-1.228/bundle.production.js
104.17.5.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/head-dlb/static-1.228/bundle.production.js
IP 104.17.5.210:0
GET /head-dlb/static-1.228/bundle.production.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:16 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Wed, 17 Aug 2022 17:59:37 GMT
etag: W/"a89d377892af6ffd98853ca900af1878"
x-amz-server-side-encryption: AES256
x-amz-version-id: YgJkZg_L_.XRhLttFb7qTxNzd.lQeUxX
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 6b590e690e32695caa633ab770319d74.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: OATxZ9y8I-vsQA-9P8akSO9Ip1Qpd_aX4YDzbS9pbNXC8bj-rOVL2A==
cf-cache-status: HIT
age: 207459
expires: Sun, 17 Sep 2023 04:25:16 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BO%2B%2FVEimRTQkPL1siae2qKB6HnbcMaxY6DxL8o1FE8tE8jGxr9N%2FYHwze%2FeJF4XjsXHEgxE2ytidqWZuSmEzeX7FPkj%2BSRU5Luemm%2BLYqbpB%2FHeH7Bp6YpjD317w3KbDGu74rMP6JR0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bf13b55e370b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.hubspot.com/livechat-public/v1/bots/public/bot/1592199/welcomeMessages?hs_static_app=conversations-visitor-ui&hs_static_app_version=1.13130&conversations-visitor-ui=static-1.13130&traceId=6737ed7ac3334fb58621f889aa53f75a&sessionId=AMOaWbIyAs_CVUgyGX6a7Vt9QvcFRHW7_iUctixO4MROu-O25aWtSNN9XrtCM7MKhw8EyIq1Q_3yZRnCbVcQf_-Xi10n3pTMPpUbqGg34Jmqlvk2WN_vlQRtdN5KYXGzhDXR-P6Bw1rAeVgaWZ15j8eIdb1TtrU4_1muf9ncSEnPD9u3ogPAHh4&hubspotUtk=a525a513a7dff5410eb77e46a5f691b7
104.19.155.83200 OK 0 B URL HTTP/2 api.hubspot.com/livechat-public/v1/bots/public/bot/1592199/welcomeMessages?hs_static_app=conversations-visitor-ui&hs_static_app_version=1.13130&conversations-visitor-ui=static-1.13130&traceId=6737ed7ac3334fb58621f889aa53f75a&sessionId=AMOaWbIyAs_CVUgyGX6a7Vt9QvcFRHW7_iUctixO4MROu-O25aWtSNN9XrtCM7MKhw8EyIq1Q_3yZRnCbVcQf_-Xi10n3pTMPpUbqGg34Jmqlvk2WN_vlQRtdN5KYXGzhDXR-P6Bw1rAeVgaWZ15j8eIdb1TtrU4_1muf9ncSEnPD9u3ogPAHh4&hubspotUtk=a525a513a7dff5410eb77e46a5f691b7
IP 104.19.155.83:0
GET /livechat-public/v1/bots/public/bot/1592199/welcomeMessages?hs_static_app=conversations-visitor-ui&hs_static_app_version=1.13130&conversations-visitor-ui=static-1.13130&traceId=6737ed7ac3334fb58621f889aa53f75a&sessionId=AMOaWbIyAs_CVUgyGX6a7Vt9QvcFRHW7_iUctixO4MROu-O25aWtSNN9XrtCM7MKhw8EyIq1Q_3yZRnCbVcQf_-Xi10n3pTMPpUbqGg34Jmqlvk2WN_vlQRtdN5KYXGzhDXR-P6Bw1rAeVgaWZ15j8eIdb1TtrU4_1muf9ncSEnPD9u3ogPAHh4&hubspotUtk=a525a513a7dff5410eb77e46a5f691b7 HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:16 GMT
content-type: application/json;charset=utf-8
cf-ray: 74bf13b83fa31c0e-OSL
access-control-allow-origin: https://app.hubspot.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing, X-Hubspot-Correct-Hublet
access-control-max-age: 604800
timing-allow-origin: *
x-hubspot-correlation-id: 933e95dc-2640-4e2d-b91c-aeece6e6b694
x-trace: 2B0438DC860E8902432A9113CED89803CC4E3B5502000000000000000000
set-cookie: __cf_bm=Txn2TC4SOoAWAiu59mVZTKKNtt_Snp.oJLtwZPxWQmA-1663388716-0-AexTTVJUO0h8gMZ8VyeZ5KxL7prERNwmaQ4ZeiPyGaTQlcWfH2trK/XZWoLv1oML7nOxnpSx6KAlUnDEwcK6mNU=; path=/; expires=Sat, 17-Sep-22 04:55:16 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KiJkINjcLbYbWRzWB6Rly4LuCWZ1ZI9YdxbP2A5vlmsIurtmEt1%2B%2FnB%2BftoMOGpJz4WnO%2FAzipSJgplkIJY0shf6505XdD35arNwd2n6eSWCjpJw%2BKnusyDx4GMDQ9jK9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;700&display=swap
IP 142.250.74.10:0
GET /css2?family=Open+Sans:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 17 Sep 2022 04:25:15 GMT
date: Sat, 17 Sep 2022 04:25:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.hscollectedforms.net/collectedforms.js
104.17.127.171200 OK 0 B URL HTTP/2 js.hscollectedforms.net/collectedforms.js
IP 104.17.127.171:0
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.abasantos.com.br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:15 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 13 Sep 2022 10:41:10 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: 5afLcxIjU5LfvvyyfvxzjsWXufXHSL1t
etag: W/"7a468b833be86c01bc8dfd455308f792"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: RefreshHit from cloudfront
via: 1.1 14386bbe111197c789e1b85b0496361c.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P5
x-amz-cf-id: JcWFjxLkSt4DBZGRSiFsiTF9-d-hRJq7sZlJalxOszsdk_PfX-TK6g==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.292/bundles/project.js&cfRay=74bd7a183f32b4f7-ARN
x-hs-target-asset: collected-forms-embed-js/static-1.292/bundles/project.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 16776
server: cloudflare
cf-ray: 74bf13b12aabb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.usemessages.com/conversations-embed.js
104.17.237.204200 OK 0 B URL HTTP/2 js.usemessages.com/conversations-embed.js
IP 104.17.237.204:0
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.abasantos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:15 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 22 Aug 2022 02:10:32 UTC
etag: W/"be054c0d1ce8e9f928e051e15475d755"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3C1npQH0ys7YIJipkKSW0mB3OJD1A1US
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0ed062928320c9569a09db8a928795e4.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P3
x-amz-cf-id: CCaIeFlcY3FKQHuvMW_xkmPK_IXi4cIu8ufdKJtOzoD_KwKhhipDpQ==
age: 330
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.10632/bundles/project.js&cfRay=745bcef5de010afe-IAD
x-hs-target-asset: conversations-embed/static-1.10632/bundles/project.js
x-hs-cache-status: EXPIRED
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 74bf13b139c4b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.hsappstatic.net/conversations-visitor-ui/static-1.11843/sass/visitor.css
104.17.5.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.11843/sass/visitor.css
IP 104.17.5.210:0
GET /conversations-visitor-ui/static-1.11843/sass/visitor.css HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:16 GMT
content-type: text/css
x-amz-replication-status: PENDING
last-modified: Mon, 15 Nov 2021 19:50:41 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: LgyvJN0nZOCplqIYlCYJJ1cibXdW_3K_
etag: W/"370a89ea102d7b437eb549729472631f"
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 ef25da0c32f918931915d02ad16016b9.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C1
x-amz-cf-id: sozNdfbKXPQ27W1Gh5_Ogz2KizWAagYWFHGF-Qbcer07dank0z_klg==
cf-cache-status: HIT
age: 2118306
expires: Sun, 17 Sep 2023 04:25:16 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dh3f7Bfj6%2FGyGxMWLF7U3WzYtSB%2BQqZqih3z39xTbRtppZqCztnteITGmC7m7O17etChXteQc77dZfmXUh%2FrQPXczziRpSEaUEYKKgzpLrMgb7jqpQIdou6cwck3wzsCt9A5qOKySZM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bf13b559c9b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hsappstatic.net/hubspot-dlb/static-1.312/bundle.production.js
104.17.5.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/hubspot-dlb/static-1.312/bundle.production.js
IP 104.17.5.210:0
GET /hubspot-dlb/static-1.312/bundle.production.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:16 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Fri, 05 Aug 2022 01:31:38 GMT
etag: W/"24368d9bf0991b15f75e817302381e9e"
x-amz-server-side-encryption: AES256
x-amz-version-id: tGv9d32FqDJZMi1TXjkihXz8ATz_W19h
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 c2e56cd54e2593df95ccca8a6d98c958.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA56-P2
x-amz-cf-id: J3LAUXQv0Je4uesiPOsz2LiqPaJR2TYjClKs2hqQsPEMVN_rEZSGbw==
cf-cache-status: HIT
age: 903714
expires: Sun, 17 Sep 2023 04:25:16 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gGT%2FJ9xcrBBTsm7vncIWwlGiCyyIPCDh7%2FLxokOYsyeyi%2FugeqN%2BF8X09aUNw%2F5sF063GzMExq5rVcTZv2i85WzJHY5tRDKZLs%2FUqyAlCVkLPByVHtrJ2EIRh4Ovs77qfl%2Brz9SDIu0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bf13b56e380b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hsappstatic.net/conversations-visitor-ui/static-1.13130/bundles/visitor.js
104.17.5.210200 OK 0 B URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.13130/bundles/visitor.js
IP 104.17.5.210:0
GET /conversations-visitor-ui/static-1.13130/bundles/visitor.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.hubspot.com
Connection: keep-alive
Referer: https://app.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 04:25:16 GMT
content-type: application/javascript
access-control-allow-origin: https://app.hubspot.com
access-control-allow-methods: GET
access-control-max-age: 3000
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Thu, 25 Aug 2022 12:59:17 GMT
etag: W/"66c6b56f51446aa179536d50b93dc18f"
x-amz-server-side-encryption: AES256
x-amz-version-id: uc.gK9keAAPPtvGHllm.3hPsq_zi_tUb
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2cbf148f6c14a1a6f56400dc9dc76f2a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: H2dHl4LRSxvut9H-DhY9tnTAHsHXL0TFFdygA_7_qtOQuq0qw1YTNA==
cf-cache-status: HIT
age: 1953721
expires: Sun, 17 Sep 2023 04:25:16 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rM5W9EDMZ9GvYcti83LyRc4PmUCLXJAR525h2eb4wCVnRJK%2FM3%2BInYRh9XxAVbE8A%2FWAMBDdT4FcxLtI6y%2FavD4Jo1OcC0FfNamz0gYiWDsIA7O5vBGVhjnqFq3GCa5P8p3aQuynl%2FQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bf13b57e390b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2