detectportal.firefox.com/success.txt?ipv4
34.107.221.82200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP 34.107.221.82:0
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Thu, 02 Feb 2023 04:26:30 GMT
Age: 56797
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
baixenfe.com.br/
162.214.71.37200 OK 2.5 kB IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (1446), with CRLF line terminators
Hash 030dea25776e7930384709bb52a929a0
444b357dfe980c0c92eaa314d34b7845af29340b
73afc40250c0a13c2823eb45dbd88a76f928269300b9d35ed5270d72e7c6ecb6
GET / HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:13:26 GMT
Accept-Ranges: bytes
ETag: "a77c4ae113e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:06 GMT
Content-Length: 2549
detectportal.firefox.com/success.txt?ipv4
34.107.221.82200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP 34.107.221.82:0
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Thu, 02 Feb 2023 04:26:30 GMT
Age: 56798
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
fonts.googleapis.com/css?family=Raleway:600,700,400
142.250.74.74200 OK 545 B URL HTTP/1.1 fonts.googleapis.com/css?family=Raleway:600,700,400
IP 142.250.74.74:0
Hash 2b9ae90a25a08bdeb988714b52872867
a09320175241f2c84aa677dc71ed336220716366
8f27c7f67b2474243d4656b3b1e8e0d14acf16b133f2998fcd0fa611c429ebf3
GET /css?family=Raleway:600,700,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 02 Feb 2023 20:13:08 GMT
Date: Thu, 02 Feb 2023 20:13:08 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
baixenfe.com.br/Website/Site/Index.aspx
162.214.71.37200 OK 39 kB URL HTTP/1.1 baixenfe.com.br/Website/Site/Index.aspx
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2553), with CRLF line terminators
Hash bc2326357ebd646381a0586f08d1635a
d0e7a0f71cdce0d736ac727c9dfb2e97c82a20b6
e63d364c2ad3b2e3a8d78a9a305a05f258f5804b4b260df7c3c041287902edbc
GET /Website/Site/Index.aspx HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Set-Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu; path=/; HttpOnly; SameSite=Lax
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:06 GMT
Content-Length: 39243
baixenfe.com.br/Utilitarios/Essencial.css
162.214.71.37200 OK 1.7 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/Essencial.css
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 5dd199896e2f1521ceb3d572e1d85287
f9f85b245b01f6ff7f4e63d2ac7185f1e7b9b431
2913fa1eeaa80e22cff7358475c2eeb69a47d2cb31ce820c60cfd52895016b2d
GET /Utilitarios/Essencial.css HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:16:04 GMT
Accept-Ranges: bytes
ETag: "68896d3f14e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
Content-Length: 1723
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
baixenfe.com.br/Utilitarios/font-awesome-4.3.0/css/font-awesome.min.css
162.214.71.37200 OK 24 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/font-awesome-4.3.0/css/font-awesome.min.css
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23577)
Hash 8e5746c426d10ac5abf3fbb25589f16d
eb653890f99915643664e76ff2d29cbc405bd7ca
4adff1c82ba7488f0f13fbae0c7e4dbd89d5e08a9c2e4084be66dd134d8085d5
GET /Utilitarios/font-awesome-4.3.0/css/font-awesome.min.css HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:16:04 GMT
Accept-Ranges: bytes
ETag: "1d6a9e3f14e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
Content-Length: 23762
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 26755705531ba9974a304be7cb0605ca
cb64799b8186dbabb9521be28619ebe7fda4356c
dc62418d9da72ac1cb7e5ffca5f4bdf1e29b13d0b54771104832b7a4aa9c05f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4323
Cache-Control: max-age=165241
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:09 GMT
Etag: "63dbeaeb-1d7"
Expires: Sat, 04 Feb 2023 18:07:10 GMT
Last-Modified: Thu, 02 Feb 2023 16:55:07 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
baixenfe.com.br/Utilitarios/Funcoes.js
162.214.71.37200 OK 2.3 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/Funcoes.js
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 6681431e3200bfec25e726b70703529a
aa79b665ed53e42f494d8f8cb4576a834df70e50
312cc64c65e9519409295fbf299385fa1937cde56958495e58dea8ba1a4b5e8e
GET /Utilitarios/Funcoes.js HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:16:04 GMT
Accept-Ranges: bytes
ETag: "9f2c683f14e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
Content-Length: 2334
baixenfe.com.br/Utilitarios/bootstrap-3.1.1/js/bootstrap.min.js
162.214.71.37200 OK 29 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/bootstrap-3.1.1/js/bootstrap.min.js
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28941)
Hash 2d6c19519750d884f63dfa9661821fd8
fcfdf92311f524451cb95f883204242f1e8b292c
d222f05c79c1f3486ad1bf445245cdc1db4f98ea979783959093066eeca1602d
GET /Utilitarios/bootstrap-3.1.1/js/bootstrap.min.js HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:16:04 GMT
Accept-Ranges: bytes
ETag: "6240903f14e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
Content-Length: 29133
baixenfe.com.br/Utilitarios/bootstrap-3.1.1/css/bootstrap-theme.css
162.214.71.37200 OK 15 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/bootstrap-3.1.1/css/bootstrap-theme.css
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5ce81b85704c0c4bb6e88cfec65ea93f
cc3e728bf230382e2d574d2fb63a2c7c3a5fac85
ea72615bc4138df3e2c709a6eb7f57dffd77639b5709bab23e9031a20efc2068
GET /Utilitarios/bootstrap-3.1.1/css/bootstrap-theme.css HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:16:04 GMT
Accept-Ranges: bytes
ETag: "c61a823f14e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
Content-Length: 14959
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
34.120.5.221200 OK 40 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP 34.120.5.221:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash fdb72193f5790ab4c1fa23015bb75c68
e932e3b75d6a19097992bb34e648d07f10d96a8c
11a907d1c23f29e03918e5e6781cd17b14f9676ab7ef46e7fc8ff78db44663ac
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: 1ZF0RD2mNxU6pyGF6rfzMfaf_j2VryQUg768LRbQ0tE2HIsoc_MJTw==
content-encoding: gzip
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 20:07:48 GMT
age: 703
content-type: application/json
content-length: 39522
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 42nsMVZpoRBGIImm4yan1gEU9/dpR1X3yUudwu6xgXcUCN9wTR34pDjPvIVysIMia+BD6QK3/3o=
x-amz-request-id: G9PMBRD416XBCN3R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 19:23:09 GMT
age: 3000
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
baixenfe.com.br/C2Box/jquery.colorbox-min.js
162.214.71.37200 OK 9.8 kB URL HTTP/1.1 baixenfe.com.br/C2Box/jquery.colorbox-min.js
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ISO-8859 text, with very long lines (9581), with CRLF line terminators
Hash 2d4a7a80d14895fe31488916b758a323
0e48846e636c2c47976ac31fb698d9d48bb17c8e
f3644bbd9dfd402d75714fb6c3436bc5fa5c10fdff84aedb9de467faf3194c5b
GET /C2Box/jquery.colorbox-min.js HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:15:11 GMT
Accept-Ranges: bytes
ETag: "b49d851f14e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
Content-Length: 9848
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:13:09 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
baixenfe.com.br/C2Box/Style1/colorbox.css
162.214.71.37200 OK 4.5 kB URL HTTP/1.1 baixenfe.com.br/C2Box/Style1/colorbox.css
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash bb16f59778f5acaf30d69f2e1d0d0e8d
bc4a96963765305ae746d4d81652d5967b4d3584
069027b740de03ffa02688e90b71baed787c225b907e405e58310b9627bd46d5
GET /C2Box/Style1/colorbox.css HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:15:11 GMT
Accept-Ranges: bytes
ETag: "19638a1f14e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
Content-Length: 4458
baixenfe.com.br/Utilitarios/jQuery/jquery.cycle.all.latest.js
162.214.71.37200 OK 46 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/jQuery/jquery.cycle.all.latest.js
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash af545a019c9af00187eb72479de591b6
ddc8e1d628a56a068dea13563bdc0f437f76d999
513118731e04527e996d2d0ea0bdad83b6ad86d8ad4edd9d845dd209ba80f3e1
GET /Utilitarios/jQuery/jquery.cycle.all.latest.js HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:16:06 GMT
Accept-Ranges: bytes
ETag: "5e8d634014e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
Content-Length: 46080
baixenfe.com.br/Utilitarios/jQuery/jquery-1.7.2.min.js
162.214.71.37200 OK 95 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/jQuery/jquery-1.7.2.min.js
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash 3e4a42df911a5febbd7aaacc9185ede8
7d18e1d98e9a0290bfdb6cf0d28d5722960e95c9
776b03d19cd5a83797d82b9a9f2fdb368a5c29d1f89e247fc162e26f71dbba1f
GET /Utilitarios/jQuery/jquery-1.7.2.min.js HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Transfer-Encoding: chunked
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:16:06 GMT
Accept-Ranges: bytes
ETag: "6b9e684014e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
baixenfe.com.br/Utilitarios/animate.css
162.214.71.37200 OK 69 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/animate.css
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash aceb66098fdffe57e00f42d57a1aa5a2
cb6ca7cb2d5557be95384f1acb7adfcb8095eefd
3566909dacf457c7806bd2d6cd1b6eac69255839cf2626a92691c1eb951e6074
GET /Utilitarios/animate.css HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:16:04 GMT
Accept-Ranges: bytes
ETag: "bb1b6a3f14e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
44.236.61.188200 OK 8 B URL HTTP/1.1 shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
IP 44.236.61.188:0
Hash 29fc57841962e407cb50c1be60284bf7
ce968a77e2996da5eee8925182318f171ccdce47
ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1
Host: shavar.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Date: Thu, 02 Feb 2023 20:13:09 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close
baixenfe.com.br/C2Box/InitC2Box.js
162.214.71.37200 OK 600 B URL HTTP/1.1 baixenfe.com.br/C2Box/InitC2Box.js
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 41b1d8367d45bc8d74751e04e47ac591
6cd718c713d1cf8e0e1a59ecb293d1d8b8f7c022
ae4fe182b76bfbac0c1be3d8b452884850c8546fc220a2feadeead92616000ae
GET /C2Box/InitC2Box.js HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:15:10 GMT
Accept-Ranges: bytes
ETag: "5dad831f14e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
Content-Length: 600
baixenfe.com.br/WebResource.axd?d=6IQbYtCqWHIep5cfMKwFdlVfl__Eiy15cd1lRwLV6iaH_MR4UozQbWFou2r682_YCuVinfzhLP6AWbRmQ9HQLvyMv9F3-mgcEvxBAgQ8xT81&t=637823257837077270
162.214.71.37200 OK 23 kB URL HTTP/1.1 baixenfe.com.br/WebResource.axd?d=6IQbYtCqWHIep5cfMKwFdlVfl__Eiy15cd1lRwLV6iaH_MR4UozQbWFou2r682_YCuVinfzhLP6AWbRmQ9HQLvyMv9F3-mgcEvxBAgQ8xT81&t=637823257837077270
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 20180537e2ac64e5c60143ac90c84998
82d03de61c4dededbc9fd79d8c3a8e18d3b43744
0999cb5dfb2dcd76a944ef880be49f8e2d66fc60d00817e2b251ba0a67090cbf
GET /WebResource.axd?d=6IQbYtCqWHIep5cfMKwFdlVfl__Eiy15cd1lRwLV6iaH_MR4UozQbWFou2r682_YCuVinfzhLP6AWbRmQ9HQLvyMv9F3-mgcEvxBAgQ8xT81&t=637823257837077270 HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Fri, 02 Feb 2024 12:51:19 GMT
Last-Modified: Tue, 08 Mar 2022 11:43:03 GMT
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:08 GMT
Content-Length: 23086
baixenfe.com.br/ScriptResource.axd?d=ZAb-wthIlPnPIZT9D3YJ0CSBBS9Iek4QwazKNaX4SEatfwYy2OTwaZTo3tPL5RjuqJGnUx0MAqk8F7OXI_JQlwyd-rcjNYn9mMgg7UnO21_44NULHEHOfuaYEQk39XCaa727ZPl2Jog1sKbtSWpirg2&t=ffffffffec54f2d7
162.214.71.37200 OK 27 kB URL HTTP/1.1 baixenfe.com.br/ScriptResource.axd?d=ZAb-wthIlPnPIZT9D3YJ0CSBBS9Iek4QwazKNaX4SEatfwYy2OTwaZTo3tPL5RjuqJGnUx0MAqk8F7OXI_JQlwyd-rcjNYn9mMgg7UnO21_44NULHEHOfuaYEQk39XCaa727ZPl2Jog1sKbtSWpirg2&t=ffffffffec54f2d7
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65496), with CRLF line terminators
Hash fb531ea1c28cb018d28b17b828484cf2
9a1bee1ae56f65173682b0f459662df806757865
9f36137b375c635201edb9df0595b879738707a7f558be8ca5ed233b8f12231e
GET /ScriptResource.axd?d=ZAb-wthIlPnPIZT9D3YJ0CSBBS9Iek4QwazKNaX4SEatfwYy2OTwaZTo3tPL5RjuqJGnUx0MAqk8F7OXI_JQlwyd-rcjNYn9mMgg7UnO21_44NULHEHOfuaYEQk39XCaa727ZPl2Jog1sKbtSWpirg2&t=ffffffffec54f2d7 HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Fri, 02 Feb 2024 13:31:38 GMT
Last-Modified: Thu, 02 Feb 2023 13:31:38 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:08 GMT
Content-Length: 27410
baixenfe.com.br/ScriptResource.axd?d=jLIOgu2RAIs_a55toRIFADsSRF7b7JC3biQ01vzu1CMbjNmgTMVTVe8TQQw0YC6WEHRUImtB9DOhEUcSiYQdTrnxw1DfzAsScbt1e59WpkfitbmsqaCGtIlsBtsWllsJOLgK2XLa3dwSH00z0GMsPQ2&t=ffffffffec54f2d7
162.214.71.37200 OK 9.9 kB URL HTTP/1.1 baixenfe.com.br/ScriptResource.axd?d=jLIOgu2RAIs_a55toRIFADsSRF7b7JC3biQ01vzu1CMbjNmgTMVTVe8TQQw0YC6WEHRUImtB9DOhEUcSiYQdTrnxw1DfzAsScbt1e59WpkfitbmsqaCGtIlsBtsWllsJOLgK2XLa3dwSH00z0GMsPQ2&t=ffffffffec54f2d7
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 (with BOM) text, with very long lines (36270), with CRLF line terminators
Hash 50213fdc03f933255ae128f2087687cf
3d9637d02a109d34984b661524f6602f3b6d6d6a
d021a5775fa54db816a16816ab6299cc80844417c559b7161f09a8d8e6543648
GET /ScriptResource.axd?d=jLIOgu2RAIs_a55toRIFADsSRF7b7JC3biQ01vzu1CMbjNmgTMVTVe8TQQw0YC6WEHRUImtB9DOhEUcSiYQdTrnxw1DfzAsScbt1e59WpkfitbmsqaCGtIlsBtsWllsJOLgK2XLa3dwSH00z0GMsPQ2&t=ffffffffec54f2d7 HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Fri, 02 Feb 2024 13:31:38 GMT
Last-Modified: Thu, 02 Feb 2023 13:31:38 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:08 GMT
Content-Length: 9853
baixenfe.com.br/Utilitarios/StyleSheet.css
162.214.71.37200 OK 24 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/StyleSheet.css
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 (with BOM) text, with very long lines (540), with CRLF line terminators
Hash dd57a95f3ee043efdc303d232859712e
2d038ef4b2933b3d067d20ab6ac3aa090bc78a34
d8bef5356db9de7beb29fd830af5d806365d2a9a06affa7840545f404807aa6b
GET /Utilitarios/StyleSheet.css HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:16:04 GMT
Accept-Ranges: bytes
ETag: "17af663f14e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:08 GMT
Content-Length: 24268
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 20:07:19 GMT
age: 351
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
baixenfe.com.br/Utilitarios/bootstrap-3.1.1/css/bootstrap.css
162.214.71.37200 OK 127 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/bootstrap-3.1.1/css/bootstrap.css
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type assembler source, ASCII text, with very long lines (540), with CRLF line terminators
Size 127 kB (126737 bytes)
Hash 8f9465eb156d796ba0db1258f27245e4
8fc3fa991e1dce189cd00abc633380209305d4a0
8b4be4bbd7c24f037e2a46780d0020e241a26050d99e46a8a0b9ffba889ff70a
GET /Utilitarios/bootstrap-3.1.1/css/bootstrap.css HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:16:04 GMT
Accept-Ranges: bytes
ETag: "bdd7823f14e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
push.services.mozilla.com/
54.148.238.232101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.238.232:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KXUDQdunsXNli3DSBO5NbA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JNc4/136fUWJJIM4JqlxU6HGAQw=
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 19:36:07 GMT
content-type: application/json
age: 2223
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
baixenfe.com.br/Utilitarios/jQuery/jquery-ui-1.8.20.custom.min.js
162.214.71.37200 OK 207 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/jQuery/jquery-ui-1.8.20.custom.min.js
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18608)
Size 207 kB (206784 bytes)
Hash 106820e6326b6dd016868628ec1bc950
ce7f6d5664ab0405122c9c7d30b76b9a3b7f7acb
7f5beda6c49bfcfdab49c00bf2547d341e08caf1ef947e3b7bd9e2da68361cc0
GET /Utilitarios/jQuery/jquery-ui-1.8.20.custom.min.js HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Transfer-Encoding: chunked
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 10 Feb 2020 13:16:06 GMT
Accept-Ranges: bytes
ETag: "ddba6e4014e0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:07 GMT
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221675367448204%22
35.241.9.150200 OK 21 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221675367448204%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (20973), with no line terminators
Hash b9859af550e92112ddc980224f74fde3
352b8fd4e9d7c489a31b4d93208779e3ca126948
02624034b840d900bc38f00e7ca2ba9f48dfcf9548cea02bf928b542874382fb
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221675367448204%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 20973
via: 1.1 google
date: Thu, 02 Feb 2023 19:52:01 GMT
last-modified: Thu, 02 Feb 2023 19:50:48 GMT
content-type: application/json
age: 1269
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: tamNVrJhzclcbtq2llSJhlkEfczJ5JDGnDstgu+L1Ly/wvedPlDkpRgEVfZP0XWUYFXR51dELQs=
x-amz-request-id: K0TYV4ZQ9J6KTWZA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 19:33:31 GMT
age: 2379
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 19:43:31 GMT
content-type: application/json
age: 1779
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
baixenfe.com.br/Imagens/logo_baixenfe.png
162.214.71.37200 OK 18 kB URL HTTP/1.1 baixenfe.com.br/Imagens/logo_baixenfe.png
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 320 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash dddea169b0e244cb4c00444e624d9f4d
4b3ed55451917fd6f45455d0f49da8c6e1825d30
ef84c8a7596d6045b7c77e9875fc0342ec20c9e0fd640d494e07ece575a006c0
GET /Imagens/logo_baixenfe.png HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 10 Feb 2020 13:15:53 GMT
Accept-Ranges: bytes
ETag: "3bf5ab3814e0d51:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:08 GMT
Content-Length: 18320
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.67200 OK 46 kB URL HTTP/1.1 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://baixenfe.com.br
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 46524
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 00:35:17 GMT
Expires: Fri, 02 Feb 2024 00:35:17 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 18 Jul 2022 19:58:01 GMT
Content-Type: font/woff2
Age: 70673
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f70b4947b19bd3fa059e2537f6992310
00db7e5e511744bd041bf1119f91c1f0c08beb03
337ba94ca2dbeca65ba7ca7220177a4474bf4296c3298e3779d04e046f8e567f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6497
Cache-Control: max-age=161999
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:10 GMT
Etag: "63dbd5c4-116"
Expires: Sat, 04 Feb 2023 17:13:09 GMT
Last-Modified: Thu, 02 Feb 2023 15:24:52 GMT
Server: ECS (amb/6B75)
X-Cache: HIT
Content-Length: 278
baixenfe.com.br/Utilitarios/font-awesome-4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
162.214.71.37200 OK 57 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/font-awesome-4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
GET /Utilitarios/font-awesome-4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://baixenfe.com.br/Utilitarios/font-awesome-4.3.0/css/font-awesome.min.css
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: font/x-woff2
Last-Modified: Mon, 10 Feb 2020 13:16:04 GMT
Accept-Ranges: bytes
ETag: "21d19d3f14e0d51:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:09 GMT
Content-Length: 56780
baixenfe.com.br/Imagens/banner.jpg
162.214.71.37200 OK 74 kB URL HTTP/1.1 baixenfe.com.br/Imagens/banner.jpg
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1522x480, components 3\012- data
Hash f61cdcf61b315adf7e5cbaa6475c71c5
ac96f49d753986d59da9d49906e5fb6c1e59e6af
3ccc7111a1ece2f573349fbb6f97f70cceb942b81357ef94456f354600eaedb4
GET /Imagens/banner.jpg HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 10 Feb 2020 13:15:54 GMT
Accept-Ranges: bytes
ETag: "bfd1663914e0d51:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:08 GMT
Content-Length: 73478
baixenfe.com.br/Imagens/multa.png
162.214.71.37200 OK 31 kB URL HTTP/1.1 baixenfe.com.br/Imagens/multa.png
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 250 x 188, 8-bit/color RGBA, non-interlaced\012- data
Hash fc053f10ec5295673848238de3e12c21
3475dff81e19811b0f5e57feafb10cd9545eee8f
86d59cadb33a7f556b86c72c7cb2bf9eccfd00918b21f7240ce4d8a62df28831
GET /Imagens/multa.png HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 10 Feb 2020 13:15:53 GMT
Accept-Ranges: bytes
ETag: "6bc6993814e0d51:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:08 GMT
Content-Length: 31188
baixenfe.com.br/Imagens/cliente-saisfeito.png
162.214.71.37200 OK 120 kB URL HTTP/1.1 baixenfe.com.br/Imagens/cliente-saisfeito.png
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 347 x 346, 8-bit/color RGBA, non-interlaced\012- data
Size 120 kB (119765 bytes)
Hash f93d5c68a1b8d2bfc19a6e1560451877
51355179be9ed0270cf3e331a5b157ba96ebdbdd
bd23bce2b57aa9d1f41d8cfd3caa25320935130347eb4881cbb0c85903830509
GET /Imagens/cliente-saisfeito.png HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 10 Feb 2020 13:15:53 GMT
Accept-Ranges: bytes
ETag: "c4801d3914e0d51:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:08 GMT
Content-Length: 119765
baixenfe.com.br/Utilitarios/bootstrap-3.1.1/fonts/glyphicons-halflings-regular.woff
162.214.71.37200 OK 23 kB URL HTTP/1.1 baixenfe.com.br/Utilitarios/bootstrap-3.1.1/fonts/glyphicons-halflings-regular.woff
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 23320, version 1.0\012- data
Hash 68ed1dac06bf0409c18ae7bc62889170
22037a3455914e5662fa51a596677bdb329e2c5c
fc969dc1c6ff531abcf368089dcbaf5775133b0626ff56b52301a059fc0f9e1e
GET /Utilitarios/bootstrap-3.1.1/fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://baixenfe.com.br/Utilitarios/bootstrap-3.1.1/css/bootstrap.css
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: font/x-woff
Last-Modified: Mon, 10 Feb 2020 13:16:04 GMT
Accept-Ranges: bytes
ETag: "afb1823f14e0d51:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:09 GMT
Content-Length: 23320
baixenfe.com.br/C2Box/Style1/images/controls.png
162.214.71.37200 OK 2.9 kB URL HTTP/1.1 baixenfe.com.br/C2Box/Style1/images/controls.png
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 176 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash b68b9ecaae424de4862ba0d055b7a560
9fc804be6b7ddb03729146d53c33945452078ddd
cd0a305d6a16d28b62037fb08f9b062dd1a0a6a3b970d8f95ecebd56f74067e9
GET /C2Box/Style1/images/controls.png HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/C2Box/Style1/colorbox.css
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 10 Feb 2020 13:15:11 GMT
Accept-Ranges: bytes
ETag: "12d0941f14e0d51:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:09 GMT
Content-Length: 2893
baixenfe.com.br/C2Box/Style1/images/border.png
162.214.71.37200 OK 112 B URL HTTP/1.1 baixenfe.com.br/C2Box/Style1/images/border.png
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1 x 50, 1-bit colormap, non-interlaced\012- data
Hash 7ca8a1d2eb0763b35c266cd54bee2fa5
cf8f732ac25ebdb16915cf5f64f23d51ab1aa9fd
11bd83f6446a1b41b0d88ddb2e271fcc9912b210d77f40e34e5e31e1a9af174a
GET /C2Box/Style1/images/border.png HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/C2Box/Style1/colorbox.css
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 10 Feb 2020 13:15:11 GMT
Accept-Ranges: bytes
ETag: "387e971f14e0d51:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:09 GMT
Content-Length: 112
baixenfe.com.br/C2Box/Style1/images/loading_background.png
162.214.71.37200 OK 157 B URL HTTP/1.1 baixenfe.com.br/C2Box/Style1/images/loading_background.png
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash acf427e932fb9413700a4b8b58b41eec
b2c8c248eea433dbb252ea4fac1f14ced78cc97a
959eccc6b71befee67657392e7f22be26cab408483657fb32a218fed6ffe016b
GET /C2Box/Style1/images/loading_background.png HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/C2Box/Style1/colorbox.css
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 10 Feb 2020 13:15:11 GMT
Accept-Ranges: bytes
ETag: "d0718f1f14e0d51:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:09 GMT
Content-Length: 157
baixenfe.com.br/C2Box/Style1/images/loading.gif
162.214.71.37200 OK 9.4 kB URL HTTP/1.1 baixenfe.com.br/C2Box/Style1/images/loading.gif
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 32 x 32\012- data
Hash e6611f867d63754b7a2a974fb0a0e7dc
b8272fea18de003670cc9fad28f089088cebc425
34ef55242fc24c94f0790902c09601d228e9074bf7a1f88c4de6a39b40ce38fa
GET /C2Box/Style1/images/loading.gif HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/C2Box/Style1/colorbox.css
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 10 Feb 2020 13:15:11 GMT
Accept-Ranges: bytes
ETag: "d46931f14e0d51:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:09 GMT
Content-Length: 9427
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Thu, 02 Feb 2023 19:43:15 GMT
Expires: Thu, 02 Feb 2023 21:43:15 GMT
Cache-Control: public, max-age=7200
Age: 1796
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
baixenfe.com.br/Website/Site/favicon.png
162.214.71.37200 OK 1.8 kB URL HTTP/1.1 baixenfe.com.br/Website/Site/favicon.png
IP 162.214.71.37:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 15 x 18, 8-bit/color RGBA, interlaced\012- data
Hash da95cd5cb44fdd8b6ae81d695d5b1ebe
460c6615a6201751e34384fc934db2c79e127003
448077c7b8671aab09b4874c48342000b7d901684b6f0c64f004aca70c99730c
GET /Website/Site/favicon.png HTTP/1.1
Host: baixenfe.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/Website/Site/Index.aspx
Cookie: ASP.NET_SessionId=q50cqmkqdm4giyazbanqx4vu
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 10 Feb 2020 13:16:27 GMT
Accept-Ranges: bytes
ETag: "d6883c4d14e0d51:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:09 GMT
Content-Length: 1835
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:16:08 GMT
age: 46623
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ybz4mmNUwsKOkpz6GFm4nLz7iGX5gJ--EiUjqrs8G92GBLn6qaF7IQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 80120
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e0zaXjoBKOmsY4fPEbl1SWCBxetMssmszZug0-epLq-X5rGb5zKHZw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:36 GMT
age: 80015
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f70b4947b19bd3fa059e2537f6992310
00db7e5e511744bd041bf1119f91c1f0c08beb03
337ba94ca2dbeca65ba7ca7220177a4474bf4296c3298e3779d04e046f8e567f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6498
Cache-Control: max-age=161999
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:11 GMT
Etag: "63dbd5c4-116"
Expires: Sat, 04 Feb 2023 17:13:10 GMT
Last-Modified: Thu, 02 Feb 2023 15:24:52 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 78693
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 78693
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:54:58 GMT
age: 80293
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
34.111.73.144200 OK 807 kB URL HTTP/2 firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
IP 34.111.73.144:0
Size 807 kB (807180 bytes)
Hash 914be443bdfbe8a1c3ded61e1c114bd6
4fe7c5ff83f6a29e6699f4cebc17550891504661
41b036d0c889509d547296b238027a063c313261ad52d5f7bb81922011791857
GET /staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin HTTP/1.1
Host: firefox-settings-attachments.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DYhzcZihah3+nn9uccTU0QhbDsrYIGJkUq7DnVhCQOs6Y7PkJ/a98vsBufG9wJH7B/5czaGL4HQ=
x-amz-request-id: AQB6GT81KDJK8DAX
x-amz-version-id: K1ODzappZsD35qeu0OM5zvs_BP1eybj7
accept-ranges: bytes
server: AmazonS3
content-length: 807180
via: 1.1 google
date: Sat, 28 Jan 2023 15:34:35 GMT
age: 448716
last-modified: Tue, 10 Jan 2023 12:38:46 GMT
etag: "914be443bdfbe8a1c3ded61e1c114bd6"
content-type: application/octet-stream
cache-control: public,max-age=604800
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1108788401&t=pageview&_s=1&dl=http%3A%2F%2Fbaixenfe.com.br%2FWebsite%2FSite%2FIndex.aspx&ul=en-us&de=UTF-8&dt=Software%20de%20Armazenamento%20e%20Download%20de%20XML%20de%20NF-e%20-%20Baixe%20NFe&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1087081999&gjid=650242835&cid=1623378156.1675368819&tid=UA-58557465-1&_gid=1555344960.1675368819&_r=1&_slc=1&z=1526748156
142.250.74.110200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1108788401&t=pageview&_s=1&dl=http%3A%2F%2Fbaixenfe.com.br%2FWebsite%2FSite%2FIndex.aspx&ul=en-us&de=UTF-8&dt=Software%20de%20Armazenamento%20e%20Download%20de%20XML%20de%20NF-e%20-%20Baixe%20NFe&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1087081999&gjid=650242835&cid=1623378156.1675368819&tid=UA-58557465-1&_gid=1555344960.1675368819&_r=1&_slc=1&z=1526748156
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=1108788401&t=pageview&_s=1&dl=http%3A%2F%2Fbaixenfe.com.br%2FWebsite%2FSite%2FIndex.aspx&ul=en-us&de=UTF-8&dt=Software%20de%20Armazenamento%20e%20Download%20de%20XML%20de%20NF-e%20-%20Baixe%20NFe&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1087081999&gjid=650242835&cid=1623378156.1675368819&tid=UA-58557465-1&_gid=1555344960.1675368819&_r=1&_slc=1&z=1526748156 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://baixenfe.com.br
Connection: keep-alive
Referer: http://baixenfe.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://baixenfe.com.br
date: Thu, 02 Feb 2023 20:13:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/play/v17/6aez4K2oVqwIvtU2Hw.woff2
142.250.74.67200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/play/v17/6aez4K2oVqwIvtU2Hw.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 17164, version 1.0\012- data
Hash c76806d1f447336b530232d9a7ecaa10
72f3c5f813c34a85df23c05a79e5125cd6096260
6cdceb438e41ee07d58b7214785e14651205d8cc4b158a9a3ab988515f66c1cc
GET /s/play/v17/6aez4K2oVqwIvtU2Hw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://baixenfe.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 18:06:33 GMT
expires: Sat, 27 Jan 2024 18:06:33 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:06:40 GMT
content-type: font/woff2
age: 525998
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1675367448204&_since=%221666279968541%22
35.241.9.150200 OK 64 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1675367448204&_since=%221666279968541%22
IP 35.241.9.150:0
File type ASCII text, with very long lines (64222), with no line terminators
Hash faa6129cc61e1243632f6c8e18f93668
552b5e4ed8d2fcf0c2ead12acaa42a1dbfaaad0d
7066295219cbb4e066fea2d71d70fef87f43e6aae6a391db28058d466e780e79
GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1675367448204&_since=%221666279968541%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 64222
via: 1.1 google
date: Thu, 02 Feb 2023 19:58:16 GMT
last-modified: Thu, 02 Feb 2023 19:50:48 GMT
content-type: application/json
age: 895
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,300,700
142.250.74.74200 OK 683 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:400,300,700
IP 142.250.74.74:0
Hash 811aba771f53232088791a691dc2e85a
b4b83e106290e8a51b537f2ed50d10e99f184b9a
1f11e7aa985aa9d4a8ccfe4afda98e022b600a53592955344e23f8a9109ad3ec
GET /css?family=Open+Sans:400,300,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://2task.com.br/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 02 Feb 2023 20:13:12 GMT
Date: Thu, 02 Feb 2023 20:13:12 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash a7f7aaefea5c7c65dc3c2e83b2032919
492d09014cebce118c2ae4adb38d97637016e629
bd41dab63041d1b61138918350b5616ec031ffab572ed6e37113be12efa112e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3211
Cache-Control: max-age=113366
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:12 GMT
Etag: "63db24a3-116"
Expires: Sat, 04 Feb 2023 03:42:38 GMT
Last-Modified: Thu, 02 Feb 2023 02:49:07 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22
35.241.9.150200 OK 2.1 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (2144), with no line terminators
Hash 5cfd74fcbede0ee061689b95c597b11b
75d870f627cdc06f4cb7fa47751ae56c740da850
c68708f43d2bf28e3d619542c6fd7ab408f034a7f87de731ed11356efc4453eb
GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 2144
via: 1.1 google
date: Thu, 02 Feb 2023 19:25:19 GMT
age: 2873
last-modified: Thu, 02 Feb 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash a7f7aaefea5c7c65dc3c2e83b2032919
492d09014cebce118c2ae4adb38d97637016e629
bd41dab63041d1b61138918350b5616ec031ffab572ed6e37113be12efa112e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3211
Cache-Control: max-age=113366
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:12 GMT
Etag: "63db24a3-116"
Expires: Sat, 04 Feb 2023 03:42:38 GMT
Last-Modified: Thu, 02 Feb 2023 02:49:07 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
www.googleadservices.com/pagead/conversion_async.js
142.250.74.130200 OK 16 kB URL HTTP/1.1 www.googleadservices.com/pagead/conversion_async.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (1654)
Hash 1ce7fcb7ba3b5bc4f35cc7042cfc7527
7a86914537e4534887586e377142f54b78c0f807
bb4372522978d15e07df68020ded57148e44ed0bc546d2ca2495f22a02b2260b
GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://2task.com.br/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Thu, 02 Feb 2023 20:13:12 GMT
Expires: Thu, 02 Feb 2023 20:13:12 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 10376002428160754156
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 15671
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash a7f7aaefea5c7c65dc3c2e83b2032919
492d09014cebce118c2ae4adb38d97637016e629
bd41dab63041d1b61138918350b5616ec031ffab572ed6e37113be12efa112e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1744
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:12 GMT
Last-Modified: Thu, 02 Feb 2023 19:44:08 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash a7f7aaefea5c7c65dc3c2e83b2032919
492d09014cebce118c2ae4adb38d97637016e629
bd41dab63041d1b61138918350b5616ec031ffab572ed6e37113be12efa112e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5848
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:13:12 GMT
Last-Modified: Thu, 02 Feb 2023 18:35:44 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 278
firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1675353179510&_since=%221661199949574%22
35.241.9.150200 OK 22 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1675353179510&_since=%221661199949574%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (22471), with no line terminators
Hash 86e5267005f7001a7a7fb7f25d7e02b9
67ea12312364541e026dfd85800ce5f4280601c5
9c469d6cd61cb4f4e3f06e980f86f3ee16cb4ec776ed105998810bcabbe12969
GET /v1/buckets/main/collections/search-config/changeset?_expected=1675353179510&_since=%221661199949574%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 22471
via: 1.1 google
date: Thu, 02 Feb 2023 19:57:53 GMT
age: 919
last-modified: Thu, 02 Feb 2023 15:52:59 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
2task.com.br/app/Contratos/ContratacaoBaixeNfe/cadastroContratacaoTeste.xhtml?faces-redirect=true&includeViewParams=true&prm=FpI+8Lg7L/XpDwyw2RkUEQ==&c=N%C3%A3o%20identificado
162.215.216.158200 200 36 kB URL HTTP/1.1 2task.com.br/app/Contratos/ContratacaoBaixeNfe/cadastroContratacaoTeste.xhtml?faces-redirect=true&includeViewParams=true&prm=FpI+8Lg7L/XpDwyw2RkUEQ==&c=N%C3%A3o%20identificado
IP 162.215.216.158:0
ASN #46606 UNIFIEDLAYER-AS-1
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1042)
Hash f3e6328a9a8013a9820b35697634c6bc
132c54a2a15f0e74a74b65242019f55e92c09dd7
76702506baed115642c9922f43c3bdefbc674d6d948e7b1b21567782676654cc
GET /app/Contratos/ContratacaoBaixeNfe/cadastroContratacaoTeste.xhtml?faces-redirect=true&includeViewParams=true&prm=FpI+8Lg7L/XpDwyw2RkUEQ==&c=N%C3%A3o%20identificado HTTP/1.1
Host: 2task.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://baixenfe.com.br/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 200
Content-Type: text/html;charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Set-Cookie: JSESSIONID=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1; Path=/app; HttpOnly
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:10 GMT
Content-Length: 36534
embed.tawk.to/596f97c01dc79b329518f321/default
172.67.38.66200 OK 3.8 kB URL HTTP/2 embed.tawk.to/596f97c01dc79b329518f321/default
IP 172.67.38.66:0
Hash 06fa7fb9eb926a529d7c1c9a75bf71ca
deb89541e1f202dae40cb7c0336aa81e1653a91c
3bcf2222f6d6f760a949bf67efbeb759ff0c0ccdf1797d687758a6554379a6f4
GET /596f97c01dc79b329518f321/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://baixenfe.com.br
Connection: keep-alive
Referer: http://baixenfe.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:13:11 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63b77dcd282"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793595fede47b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
104.18.11.207200 OK 15 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP 104.18.11.207:0
File type ASCII text, with very long lines (32033)
Hash e77b40ed1a55aaa13f15ffdd6bc73cd0
0827ebeb58f1a3349468913b76caa61aa3114a60
417b480c55a5d7728a7820c8c6e9291a99dac9c5abd484523bf3dda89f11ab33
GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://2task.com.br
Connection: keep-alive
Referer: http://2task.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:13:12 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"5869c96cc8f19086aee625d670d741f9"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 11/15/2022 10:30:01
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1053
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: c3d1bec1b8ebfaec3bc7edcad21d10eb
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 79359606cc2cfac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22
35.241.9.150200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1742), with no line terminators
Hash 22092e301760ed865af6ece6eb04b1be
557b52e40ec2d8f2fe080580a1858c8666791bf2
12afba8f5929ab372e9cffbbe57e8bb562c60fc0a98b751c69de1adc04fb4aea
GET /v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1742
via: 1.1 google
date: Thu, 02 Feb 2023 19:27:59 GMT
age: 2713
last-modified: Wed, 01 Feb 2023 16:36:43 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
35.241.9.150200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1719), with no line terminators
Hash 91fc66b0cc0a6a614095f1a64df0ae3b
36d83cd4aac353d81990df94ac1e5466483ab145
fee8713249b5cc35e5a4bb521c3a645c8b2a0c927c8384b99cf4f3a046e5d316
GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1719
via: 1.1 google
date: Thu, 02 Feb 2023 19:55:18 GMT
age: 1074
last-modified: Tue, 31 Jan 2023 16:36:45 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
35.241.9.150200 OK 1.3 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1250), with no line terminators
Hash 4b4dc2f2fa90e5157009acf4c7b1d589
ec64bb109dac848eafb80765cb510015c5d3ffd5
83ad9f7b27e6c7f20f257f0a3ff004ca69cfd0d4768222a51a655ac9ae139f6e
GET /v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1250
via: 1.1 google
date: Thu, 02 Feb 2023 19:43:54 GMT
age: 1758
last-modified: Tue, 31 Jan 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
2task.com.br/app/javax.faces.resource/theme.css.xhtml?ln=primefaces-ui-lightness
162.215.216.158200 200 19 kB URL HTTP/1.1 2task.com.br/app/javax.faces.resource/theme.css.xhtml?ln=primefaces-ui-lightness
IP 162.215.216.158:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18626), with no line terminators
Hash 78fb4bf0851bf03546acd81f59ed2671
9ee1852f6acf5cac03396c813f8987d4a6f0f134
259f4c8d28280196fe7f9a6277f862e16a8546b19ea99fdcd9c101c1e972a8f1
GET /app/javax.faces.resource/theme.css.xhtml?ln=primefaces-ui-lightness HTTP/1.1
Host: 2task.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://2task.com.br/app/Contratos/ContratacaoBaixeNfe/cadastroContratacaoTeste.xhtml?faces-redirect=true&includeViewParams=true&prm=FpI+8Lg7L/XpDwyw2RkUEQ==&c=N%C3%A3o%20identificado
HTTP/1.1 200 200
Content-Type: text/css;charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Feb 2023 20:13:11 GMT
Last-Modified: Wed, 11 Jan 2023 14:29:23 GMT
ETag: W/"18286-1673447363075"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:10 GMT
Content-Length: 18649
firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
35.241.9.150200 OK 682 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (682), with no line terminators
Hash ee3b2ca8193a47eb1c2f1628b80b953f
6b53021c8663e3a0f874c5f030902a78c3ef1b9d
2cc501aa09d747a9b69b88c92f896650b9c9f5c32dae8b2315ab61c63d9a4ccc
GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 682
via: 1.1 google
date: Thu, 02 Feb 2023 19:38:34 GMT
age: 2078
last-modified: Sun, 29 Jan 2023 16:36:52 GMT
etag: "1675010212483"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: OHGyUnDoUwtoERO3R6wR9eGI5EhzQZTs5GERffi169Lo/FJAiSRfdvpu5/36GSeZRuuZ+T8zAOiTgvWmN5r7mg==
x-amz-request-id: AQNWHFSGNGEB3ZAG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 19:23:14 GMT
age: 2998
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
35.241.9.150200 OK 935 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (935), with no line terminators
Hash 3d63398bfcd270d3aff50d730b7fbf8e
95b217d19c323845ba9739f9e343ffd4a050dc2a
28be153e42646803b6aa62501fcb5262eea2812237655cec6be8b2a3ff4e7d0c
GET /v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 935
via: 1.1 google
date: Thu, 02 Feb 2023 19:28:29 GMT
age: 2683
last-modified: Sat, 28 Jan 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1674841566207&_since=%221666483264567%22
35.241.9.150200 OK 52 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1674841566207&_since=%221666483264567%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (52267), with no line terminators
Hash 43fa3c33ef7e1368ef38013ab44077ec
70447b3d512f20511dec32ecad04b77a76a86b6f
bae20740abda87eb747664b2ec70fb29c5ff7899292685645d7ed2c609727391
GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1674841566207&_since=%221666483264567%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 52267
via: 1.1 google
date: Thu, 02 Feb 2023 20:11:46 GMT
age: 86
last-modified: Fri, 27 Jan 2023 17:46:06 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
2task.com.br/app/javax.faces.resource/fa/font-awesome.css.xhtml?ln=primefaces&v=5.3
162.215.216.158200 200 25 kB URL HTTP/1.1 2task.com.br/app/javax.faces.resource/fa/font-awesome.css.xhtml?ln=primefaces&v=5.3
IP 162.215.216.158:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (24965), with no line terminators
Hash 942efce263e8c7c356cf6ef71e93d89f
6e45bf1a3c9354b094288f77c526c483fd9cfc81
d8df206cb53b0312f57ca24b5cb0375a285192b1578fed87313468f6010fec51
GET /app/javax.faces.resource/fa/font-awesome.css.xhtml?ln=primefaces&v=5.3 HTTP/1.1
Host: 2task.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://2task.com.br/app/Contratos/ContratacaoBaixeNfe/cadastroContratacaoTeste.xhtml?faces-redirect=true&includeViewParams=true&prm=FpI+8Lg7L/XpDwyw2RkUEQ==&c=N%C3%A3o%20identificado
HTTP/1.1 200 200
Content-Type: text/css;charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Feb 2023 20:13:11 GMT
Last-Modified: Wed, 11 Jan 2023 14:29:23 GMT
ETag: W/"24809-1673447363016"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:10 GMT
Content-Length: 24988
2task.com.br/app/javax.faces.resource/jquery.mask.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=js
162.215.216.158200 200 16 kB URL HTTP/1.1 2task.com.br/app/javax.faces.resource/jquery.mask.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=js
IP 162.215.216.158:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash a2132c3618098aefa5cd58ca333af066
fb4ea2ed0c9c7bf600f9ddf6ccb0a18902b1c2b0
6dab9cee1239030ccb1e25afe20a5132bdf8cae553b817b68b15b2a1ae669302
GET /app/javax.faces.resource/jquery.mask.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=js HTTP/1.1
Host: 2task.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://2task.com.br/app/Contratos/ContratacaoBaixeNfe/cadastroContratacaoTeste.xhtml?faces-redirect=true&includeViewParams=true&prm=FpI+8Lg7L/XpDwyw2RkUEQ==&c=N%C3%A3o%20identificado
HTTP/1.1 200 200
Content-Type: application/javascript;charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Feb 2023 20:13:11 GMT
Last-Modified: Wed, 11 Jan 2023 14:29:21 GMT
ETag: W/"15705-1673447361080"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:11 GMT
Content-Length: 15728
firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
35.241.9.150200 OK 1.5 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1505), with no line terminators
Hash bf91148bc6bc52655c8e8138e8a0a4f4
919f632d0fa2021439aefb26804e6c811f077343
0b87aabbe04ee50ba0cdfdfd6710e761f3ede6ac42cc8faa1b136315529daabf
GET /v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1505
via: 1.1 google
date: Thu, 02 Feb 2023 19:55:58 GMT
age: 1034
last-modified: Fri, 27 Jan 2023 16:36:46 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
2task.com.br/app/javax.faces.resource/primefaces.css.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3
162.215.216.158200 200 71 kB URL HTTP/1.1 2task.com.br/app/javax.faces.resource/primefaces.css.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3
IP 162.215.216.158:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12790)
Hash bff5f0983b13ece773040cd2a0f63f58
9f43aedaf202e01e89699a9db9184131520dfd19
9a381e73c1f7ee17f6f0778af55a80bd3b36d86a00c6cd7ddeb87ceca7e92807
GET /app/javax.faces.resource/primefaces.css.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3 HTTP/1.1
Host: 2task.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://2task.com.br/app/Contratos/ContratacaoBaixeNfe/cadastroContratacaoTeste.xhtml?faces-redirect=true&includeViewParams=true&prm=FpI+8Lg7L/XpDwyw2RkUEQ==&c=N%C3%A3o%20identificado
HTTP/1.1 200 200
Transfer-Encoding: chunked
Content-Type: text/css;charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Feb 2023 20:13:11 GMT
Last-Modified: Wed, 11 Jan 2023 14:29:23 GMT
ETag: W/"70391-1673447363016"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:10 GMT
2task.com.br/app/javax.faces.resource/jquery/jquery.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3
162.215.216.158200 200 108 kB URL HTTP/1.1 2task.com.br/app/javax.faces.resource/jquery/jquery.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3
IP 162.215.216.158:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (60027)
Size 108 kB (107700 bytes)
Hash 79f7eeefe25fcee5ca5bdd20c0e3c1de
8ddff25b7b4a6337f1b1bf57ec86f94db90333e9
2c6b6c95bd7448820b1e4d53c4ea0e516f191e9796242c4202a859a16d3fbd40
GET /app/javax.faces.resource/jquery/jquery.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3 HTTP/1.1
Host: 2task.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://2task.com.br/app/Contratos/ContratacaoBaixeNfe/cadastroContratacaoTeste.xhtml?faces-redirect=true&includeViewParams=true&prm=FpI+8Lg7L/XpDwyw2RkUEQ==&c=N%C3%A3o%20identificado
HTTP/1.1 200 200
Transfer-Encoding: chunked
Content-Type: application/javascript;charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Feb 2023 20:13:11 GMT
Last-Modified: Wed, 11 Jan 2023 14:29:23 GMT
ETag: W/"107667-1673447363016"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:10 GMT
2task.com.br/app/javax.faces.resource/primefaces.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3
162.215.216.158200 200 350 kB URL HTTP/1.1 2task.com.br/app/javax.faces.resource/primefaces.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3
IP 162.215.216.158:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14892)
Size 350 kB (349889 bytes)
Hash d6a50d4cc0057fd934bd2be2270d5cb1
a97deb0830b90be2f763c2a1ead35c25d8f7e688
fff4a6628ab6d022732fbf0004c24e03647bb058b1267fe4e51b0739c6da9150
GET /app/javax.faces.resource/primefaces.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3 HTTP/1.1
Host: 2task.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://2task.com.br/app/Contratos/ContratacaoBaixeNfe/cadastroContratacaoTeste.xhtml?faces-redirect=true&includeViewParams=true&prm=FpI+8Lg7L/XpDwyw2RkUEQ==&c=N%C3%A3o%20identificado
HTTP/1.1 200 200
Transfer-Encoding: chunked
Content-Type: application/javascript;charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Feb 2023 20:13:11 GMT
Last-Modified: Wed, 11 Jan 2023 14:29:23 GMT
ETag: W/"349821-1673447363016"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:10 GMT
2task.com.br/app/javax.faces.resource/jquery/jquery-plugins.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3
162.215.216.158200 200 243 kB URL HTTP/1.1 2task.com.br/app/javax.faces.resource/jquery/jquery-plugins.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3
IP 162.215.216.158:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18882)
Size 243 kB (242808 bytes)
Hash e918619d2d8eed975069ea16fc0c8340
946bff490fa885c1480a85e5afcf73eaf5eae8b5
100594a0920626fd1c3d9a228055354c3760a98cf010120597287127d51c2b33
GET /app/javax.faces.resource/jquery/jquery-plugins.js.xhtml;jsessionid=3F4A38CDD58E0875F03A5272ED2BA1A5.worker1?ln=primefaces&v=5.3 HTTP/1.1
Host: 2task.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://2task.com.br/app/Contratos/ContratacaoBaixeNfe/cadastroContratacaoTeste.xhtml?faces-redirect=true&includeViewParams=true&prm=FpI+8Lg7L/XpDwyw2RkUEQ==&c=N%C3%A3o%20identificado
HTTP/1.1 200 200
Transfer-Encoding: chunked
Content-Type: application/javascript;charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 09 Feb 2023 20:13:11 GMT
Last-Modified: Wed, 11 Jan 2023 14:29:23 GMT
ETag: W/"242755-1673447363016"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Thu, 02 Feb 2023 20:13:10 GMT
va.tawk.to/v1/session/start
172.67.38.66400 Bad Request 60 B URL HTTP/2 va.tawk.to/v1/session/start
IP 172.67.38.66:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8c04c034cb1ced724724d31b83e2d859
5e42632a72e73e27336ac03f884a5ce8b6ceb37f
138180bb51412a7b5c7d22ac7aeff4b8450080a6588984807afa9618dafff7fb
POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://baixenfe.com.br/
Content-Type: application/json; charset=utf-8
Origin: http://baixenfe.com.br
Content-Length: 197
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
date: Thu, 02 Feb 2023 20:13:14 GMT
content-type: application/json
content-length: 60
x-served-by: visitor-application-preemptive-h6xx
access-control-allow-origin: http://baixenfe.com.br
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79359612ea47b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
IP 172.67.38.66:0
GET /_s/v4/app/63b77dcd282/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://baixenfe.com.br
Connection: keep-alive
Referer: http://baixenfe.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:13:13 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"385105148a50079bafff97e9c9476109"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7935960e1992b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Play
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Play
IP 142.250.74.74:0
GET /css?family=Play HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://baixenfe.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 20:13:09 GMT
date: Thu, 02 Feb 2023 20:13:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.11.207:0
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://2task.com.br
Connection: keep-alive
Referer: http://2task.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:13:12 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/18/2022 06:18:29
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 88edefdbdf636da07298acdb53208f9e
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 79359606cc24fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js
IP 172.67.38.66:0
GET /_s/v4/app/63b77dcd282/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://baixenfe.com.br
Connection: keep-alive
Referer: http://baixenfe.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:13:13 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"de21d01e9f8b6cc35ea67267d0ba80ec"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7935960e1997b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js
IP 172.67.38.66:0
GET /_s/v4/app/63b77dcd282/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://baixenfe.com.br
Connection: keep-alive
Referer: http://baixenfe.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:13:13 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7935960e097db51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js
IP 172.67.38.66:0
GET /_s/v4/app/63b77dcd282/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://baixenfe.com.br
Connection: keep-alive
Referer: http://baixenfe.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:13:13 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7935960de92db51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
IP 172.67.38.66:0
GET /_s/v4/app/63b77dcd282/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://baixenfe.com.br
Connection: keep-alive
Referer: http://baixenfe.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:13:13 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7935960e199bb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
IP 104.18.11.207:0
GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://2task.com.br
Connection: keep-alive
Referer: http://2task.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:13:12 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ec3bb52a00e176a7181d454dffaea219"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 01/05/2023 13:19:14
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1082
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: c576a2db23b61a9f4ffa0fa68782cbe6
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 79359606bbfafac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2