r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 666c7f3c3342b2fdca31a2355ee20bea
09bd5cbacba34412f5fff9d44f97e46c8c76d001
cb3a380fc71bc65dfde35069f0fc441400974afcf28c0fbb6fec8f41e16f70c8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB3A380FC71BC65DFDE35069F0FC441400974AFCF28C0FBB6FEC8F41E16F70C8"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2661
Expires: Mon, 27 Feb 2023 06:43:39 GMT
Date: Mon, 27 Feb 2023 05:59:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc3cacbc6c565bf2955b507302b8fb41
7b773e19aff1d4904cec328c456513e80f917ba4
b45c582b42efef5e8bd5744333a137f13e94a93cafbaace39b36cfa1eeb041bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B45C582B42EFEF5E8BD5744333A137F13E94A93CAFBAACE39B36CFA1EEB041BD"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12092
Expires: Mon, 27 Feb 2023 09:20:51 GMT
Date: Mon, 27 Feb 2023 05:59:19 GMT
Connection: keep-alive
atr.com.br/dati/Istruzione.zip?PDF.Download_to.acc.id=OS9B5sNQhlghJkH3@MCNP4sQQjg==.MSVF.au
200.160.2.95302 Found 48 B URL HTTP/1.1 atr.com.br/dati/Istruzione.zip?PDF.Download_to.acc.id=OS9B5sNQhlghJkH3@MCNP4sQQjg==.MSVF.au
IP 200.160.2.95:0
ASN #22548 Nucleo de Inf. e Coord. do Ponto BR - NIC.
File type HTML document, ASCII text
Hash 900ea9b06329f24e34805873cec06da3
39673bb47cdf3038b4ce7e42b1cff82377d0b466
a091ec4ceb8de61eb81f4d28da6099382b8856dc90ec69abb87e40bf4b5aad3a
Analyzer Verdict Alert quad9 Sinkholed
GET /dati/Istruzione.zip?PDF.Download_to.acc.id=OS9B5sNQhlghJkH3@MCNP4sQQjg==.MSVF.au HTTP/1.1
Host: atr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: max-age=300
Content-Type: text/html; charset=utf-8
Location: http://www.3letras.com.br
Date: Mon, 27 Feb 2023 05:59:18 GMT
Content-Length: 48
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 27 Feb 2023 05:12:39 GMT
content-type: application/json
age: 2800
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 955732a866f4168dcaaa1dbcfb06e776
24161b6d53bbf84abc87c943f67daadd7fbcc9f4
ac3d306cc00fcafe5d6fadd5bc1c4398ca87dec499fd0e4ffe60d0e1c3535578
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC3D306CC00FCAFE5D6FADD5BC1C4398CA87DEC499FD0E4FFE60D0E1C3535578"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2659
Expires: Mon, 27 Feb 2023 06:43:38 GMT
Date: Mon, 27 Feb 2023 05:59:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YGM1KlISVhCm7gbkxyiMFCUGDFl2cbcL0GaGPh8uColr/0Wzf6O2FVoJZUcina6XnmB3ZH+5Kj8=
x-amz-request-id: 8SZZSZHJXBME156G
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 27 Feb 2023 05:14:00 GMT
age: 2719
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 27 Feb 2023 05:59:19 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
static-public.klickpages.com.br/app/assets/stylesheets/publish.css?v=1667566576
54.230.111.111200 OK 31 kB URL HTTP/1.1 static-public.klickpages.com.br/app/assets/stylesheets/publish.css?v=1667566576
IP 54.230.111.111:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65368)
Hash 2f597fdab447a1cdaf80d2df768616b6
813bc4163f1e15bcee5cad7240c04012035c025e
0144ca2e6172897d5c016688a1a1099a58ac4b50e6e2f4234d838312c29699a2
GET /app/assets/stylesheets/publish.css?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 27 Sep 2022 14:37:52 GMT
Last-Modified: Tue, 27 Sep 2022 13:34:12 GMT
ETag: W/"72f69325dff9b9e8272258d103ed9298"
Cache-Control: max-age=31536000
Expires: Wed, 27 Sep 2023 13:34:11 GMT
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Fa45YxdtaPcVcmlVGuyw_f1q_HfpVhrHyk1ySF0RvhQVrxyzywo0DA==
Age: 13188088
static-public.klickpages.com.br/app/assets/javascripts/public/js/include.js?v=1667566576
54.230.111.111200 OK 69 kB URL HTTP/1.1 static-public.klickpages.com.br/app/assets/javascripts/public/js/include.js?v=1667566576
IP 54.230.111.111:0
File type ASCII text, with very long lines (32768)
Hash 5f9fcbfdc53bcfc89a8bb3603f7f9fa6
a258647f1c9c464c22ebc1085e5008164e2bfe40
3561974fe3ba0b57570d6e4d9429f79451f03c7817efb559d8834bd080770273
GET /app/assets/javascripts/public/js/include.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 08 Oct 2022 02:15:07 GMT
Last-Modified: Tue, 04 Oct 2022 19:53:01 GMT
ETag: W/"e3c62a2610fa173d5cb5b2c7f3b88537"
Cache-Control: max-age=31536000
Expires: Wed, 04 Oct 2023 19:53:00 GMT
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DmK8V4_Jp_cBS49CULsZpCIhvd0Dv1lidvUItoR97N1KqUT_xhgt-A==
Age: 12282252
static-public.klickpages.com.br/app/assets/javascripts/public/js/body/begin.js?v=1667566576
54.230.111.111200 OK 0 B URL HTTP/1.1 static-public.klickpages.com.br/app/assets/javascripts/public/js/body/begin.js?v=1667566576
IP 54.230.111.111:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/assets/javascripts/public/js/body/begin.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Date: Tue, 27 Sep 2022 14:37:59 GMT
Last-Modified: Tue, 27 Sep 2022 13:33:28 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
Cache-Control: max-age=31536000
Expires: Wed, 27 Sep 2023 13:33:27 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: G-YYfH250rz7zSpBci8hWUVjtTcvNPHoaNrIojugDCHbhKZ5igl3Yg==
Age: 13188081
static-public.klickpages.com.br/tmp/zip/1230/styles/main.css?v=1563827142
54.230.111.111200 OK 1.3 kB URL HTTP/1.1 static-public.klickpages.com.br/tmp/zip/1230/styles/main.css?v=1563827142
IP 54.230.111.111:0
File type ASCII text, with very long lines (6601), with no line terminators
Hash 7e96d34a6d10652370e7632a20f32093
af36a74cfb9b0c226a7909e77615ae6ccaf29071
eb13f94f1d381bbadb5ddcb2e9b96d4cc9b7163c18a80156a577aab9828266c2
GET /tmp/zip/1230/styles/main.css?v=1563827142 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 10 Jan 2023 01:38:34 GMT
Last-Modified: Mon, 22 Jul 2019 20:25:43 GMT
ETag: W/"6c7d12485a91906afcbcf81bcdf28450"
Cache-Control: max-age=31536000
Expires: Wed, 22 Jul 2020 20:25:42 GMT
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AN5TGsWc4Jym8Da4-bl6vxxyWq-I7R3MwESSttG6CVGYruo6g7_rHA==
Age: 4162846
static-public.klickpages.com.br/tmp/zip/1230/scripts/main.js?v=1563827142
54.230.111.111200 OK 0 B URL HTTP/1.1 static-public.klickpages.com.br/tmp/zip/1230/scripts/main.js?v=1563827142
IP 54.230.111.111:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tmp/zip/1230/scripts/main.js?v=1563827142 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Last-Modified: Tue, 15 Jun 2021 15:30:09 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 27 Feb 2023 05:59:19 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qtG-xn519SJcGyH2g_pccnjUdGA-Fs0uHLZev5CihOdKs5ZFubNMyw==
Age: 1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b2ffc9a96adf221d32379861c71882a5
c658e2f09fd511b44cff41f22288b7940f52789b
344a5c0709897a8d63161912d29eab016ae6049691a48f6cd4909622ee00a64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2267c41ae33ba19dc2746e635fb3a4ce
1708d26622ef73a72ae428ce3c0982f8741e54d9
9947507f3d7299e256ad9b9fa2b06482e23de4108bcdb314b3c7f140d26e6ab5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b2ffc9a96adf221d32379861c71882a5
c658e2f09fd511b44cff41f22288b7940f52789b
344a5c0709897a8d63161912d29eab016ae6049691a48f6cd4909622ee00a64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2267c41ae33ba19dc2746e635fb3a4ce
1708d26622ef73a72ae428ce3c0982f8741e54d9
9947507f3d7299e256ad9b9fa2b06482e23de4108bcdb314b3c7f140d26e6ab5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2267c41ae33ba19dc2746e635fb3a4ce
1708d26622ef73a72ae428ce3c0982f8741e54d9
9947507f3d7299e256ad9b9fa2b06482e23de4108bcdb314b3c7f140d26e6ab5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-6QHXV5D3N3
142.250.74.168200 OK 53 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-6QHXV5D3N3
IP 142.250.74.168:0
File type ASCII text, with very long lines (2206)
Hash 5d79f6a5f8eb187411033b88bd405866
531da1ee7813a644336bfb9fe5f1862b85c4eccb
f7e2ec09993520915a9792ed5967fa625c1f253b1a79e57168b3dcaa47e0c8fc
GET /gtag/js?id=G-6QHXV5D3N3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Feb 2023 05:59:19 GMT
expires: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=900
last-modified: Mon, 27 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53084
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static-public.klickpages.com.br/tmp/zip/1433/images/Megaphone.png?v=1638553024
54.230.111.111200 OK 2.6 kB URL HTTP/1.1 static-public.klickpages.com.br/tmp/zip/1433/images/Megaphone.png?v=1638553024
IP 54.230.111.111:0
File type PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d9734aa5481144fc3eec8f84a71b575
db6422061a96127acd97b39d4abc7636c248f269
7ab1e5bafbc7eb88586d1252bd3b296dd57391e01052dea87fc4d8a67ceabcda
GET /tmp/zip/1433/images/Megaphone.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2614
Connection: keep-alive
Date: Fri, 20 Jan 2023 02:31:56 GMT
Last-Modified: Fri, 03 Dec 2021 17:37:05 GMT
ETag: "1d9734aa5481144fc3eec8f84a71b575"
Cache-Control: max-age=31536000
Expires: Sat, 03 Dec 2022 17:37:04 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Vv_K7g6O9fRmgaO8Fzy5i12rQ6sA25P9alUtAzlM3keFIQveQiT_cQ==
Age: 3295644
static-public.klickpages.com.br/tmp/zip/1433/images/Rocket.png?v=1638553024
54.230.111.111200 OK 5.1 kB URL HTTP/1.1 static-public.klickpages.com.br/tmp/zip/1433/images/Rocket.png?v=1638553024
IP 54.230.111.111:0
File type PNG image data, 120 x 121, 8-bit/color RGBA, non-interlaced\012- data
Hash 965b34dffb67490e149439d71a8c52a6
242fe728d5ad32a889439a09fe2a1e17378ab17e
d68fa8747bc01b0e97d47db745adccfe036f17505431f93440f3ee4fcbdd8603
GET /tmp/zip/1433/images/Rocket.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 5130
Connection: keep-alive
Date: Wed, 25 Jan 2023 02:22:46 GMT
Last-Modified: Fri, 03 Dec 2021 17:37:05 GMT
ETag: "965b34dffb67490e149439d71a8c52a6"
Cache-Control: max-age=31536000
Expires: Sat, 03 Dec 2022 17:37:04 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5rx-f8QX9wp59dGanHMJcx6Vp-EBWJR8d4_srqPfQ97XVJ911cyRNQ==
Age: 2864194
www.googletagmanager.com/gtag/js?id=G-S2B2VGGTRY
142.250.74.168200 OK 80 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-S2B2VGGTRY
IP 142.250.74.168:0
File type ASCII text, with very long lines (21849)
Hash d1439e9303c129e31c54f0c75de80e81
233c4219811e608608e0c5ce2a89fa68622e5860
bda901b349ebc2f4a364d90ca8fe66e19d6072c6b8b5459658a6a9be4a672580
GET /gtag/js?id=G-S2B2VGGTRY HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Feb 2023 05:59:19 GMT
expires: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79499
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static-public.klickpages.com.br/tmp/zip/1433/images/Devices.png?v=1638553024
54.230.111.111200 OK 3.8 kB URL HTTP/1.1 static-public.klickpages.com.br/tmp/zip/1433/images/Devices.png?v=1638553024
IP 54.230.111.111:0
File type PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced\012- data
Hash 831ed83ea37387bcc6ea034a0feaf501
9920c0f8d09910a3f793132904915314d4bd1e6a
1d5adfa0ca7fd2dd07a3766f572e27ba60a70e933bdf3c4673133a1baa7b7496
GET /tmp/zip/1433/images/Devices.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3846
Connection: keep-alive
Date: Sat, 05 Nov 2022 02:57:13 GMT
Last-Modified: Fri, 03 Dec 2021 17:37:05 GMT
ETag: "831ed83ea37387bcc6ea034a0feaf501"
Cache-Control: max-age=31536000
Expires: Sat, 03 Dec 2022 17:37:04 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LQG2KRjVkqHr8j4QhQ6Q06oRiuTMHLUEASwqaQA-lnJjnlTGUVsTLg==
Age: 9860527
static-public.klickpages.com.br/tmp/zip/1433/images/Book.png?v=1638553024
54.230.111.111200 OK 16 kB URL HTTP/1.1 static-public.klickpages.com.br/tmp/zip/1433/images/Book.png?v=1638553024
IP 54.230.111.111:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash e3c98a3d9127b468e2b7ff49f9fd7fee
5db8b251703ec946055faee76314e76b20106fc2
53ed1d83b8eb7301f2867158b4d9092a65b00532ec7505ea7251fc6a16148d62
GET /tmp/zip/1433/images/Book.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 16445
Connection: keep-alive
Date: Fri, 27 Jan 2023 11:19:02 GMT
Last-Modified: Fri, 03 Dec 2021 17:37:05 GMT
ETag: "e3c98a3d9127b468e2b7ff49f9fd7fee"
Cache-Control: max-age=31536000
Expires: Sat, 03 Dec 2022 17:37:04 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lZrjUR1e6WoG2Le6nti5ZxQFom9jWYvjvROnNRPR5vANuGJOw3LWcA==
Age: 2659218
static-public.klickpages.com.br/uploads/media/file/5251078/raphael_patrick_transparncia_s.png
54.230.111.111200 OK 40 kB URL HTTP/1.1 static-public.klickpages.com.br/uploads/media/file/5251078/raphael_patrick_transparncia_s.png
IP 54.230.111.111:0
File type PNG image data, 2302 x 583, 8-bit/color RGBA, non-interlaced\012- data
Hash b3219a07981fbf6f24c3bf51c6109ec2
0bc7c4ad91f6c6b6f5d26765b73630641031fcbd
024d7e22fccdee3453ff4409d792c919dc70164098e120b97ba3416ba8f5069b
GET /uploads/media/file/5251078/raphael_patrick_transparncia_s.png HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 40214
Connection: keep-alive
Date: Sun, 26 Feb 2023 18:27:45 GMT
Last-Modified: Fri, 09 Sep 2022 18:56:45 GMT
ETag: "b3219a07981fbf6f24c3bf51c6109ec2"
Cache-Control: must-revalidate,public,max-age=86400
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RmW1Vk3FEKa2jK5_rGxtPo4kwELJ5ASKJKzswSXw9eJGNC2rQMd1Mw==
Age: 41495
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400
142.250.74.106200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400
IP 142.250.74.106:0
Hash 2c10d99e55158cf43c294f8f3b62d6c6
97af7ba98680a28db8b703f1f1dcf05d0b53de50
45b07958a766ac72a374fad92a44923e7aa4420ff8dd5b7585b51f854c09a7e4
GET /css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:19 GMT
date: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2267c41ae33ba19dc2746e635fb3a4ce
1708d26622ef73a72ae428ce3c0982f8741e54d9
9947507f3d7299e256ad9b9fa2b06482e23de4108bcdb314b3c7f140d26e6ab5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Cache-Control, Backoff, Pragma, Expires, Last-Modified, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 27 Feb 2023 05:03:35 GMT
age: 3344
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b1d73c7d1e3e594a7be10b7ac62176ac
46105f3b581c409f00524674825c08343e4d71d1
7b31674705946d30e1822ddca8008520258d81a32cb11fadeded012dac2b0d13
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7B31674705946D30E1822DDCA8008520258D81A32CB11FADEDED012DAC2B0D13"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3998
Expires: Mon, 27 Feb 2023 07:05:57 GMT
Date: Mon, 27 Feb 2023 05:59:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e720bd8776a4866e1b266bf202adcc15
c40a456897e04380e8effd637f44ca48c1dfea42
257fa2327db8d6096d95d23099116416e87a2aa89cd08769d177a2e57be341e1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "257FA2327DB8D6096D95D23099116416E87A2AA89CD08769D177A2E57BE341E1"
Last-Modified: Sat, 25 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21554
Expires: Mon, 27 Feb 2023 11:58:33 GMT
Date: Mon, 27 Feb 2023 05:59:19 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2267c41ae33ba19dc2746e635fb3a4ce
1708d26622ef73a72ae428ce3c0982f8741e54d9
9947507f3d7299e256ad9b9fa2b06482e23de4108bcdb314b3c7f140d26e6ab5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b2ffc9a96adf221d32379861c71882a5
c658e2f09fd511b44cff41f22288b7940f52789b
344a5c0709897a8d63161912d29eab016ae6049691a48f6cd4909622ee00a64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.89.71.191101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.71.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PP3nealotVhtl4iyMWLkbg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5xxH1ruBcfH7nZI+uguNE3vEiTM=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b2ffc9a96adf221d32379861c71882a5
c658e2f09fd511b44cff41f22288b7940f52789b
344a5c0709897a8d63161912d29eab016ae6049691a48f6cd4909622ee00a64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-S2B2VGGTRY
142.250.74.168200 OK 80 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-S2B2VGGTRY
IP 142.250.74.168:0
File type ASCII text, with very long lines (21849)
Hash 330e15898ef4e7de9202056ffe608014
f358a67df2052cdadc5551900767cc0be64ab0f1
115db0d905b39a796086a75a56702148efa0bc2ad1adc524dc9661b66c111a70
GET /gtag/js?id=G-S2B2VGGTRY HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Feb 2023 05:59:20 GMT
expires: Mon, 27 Feb 2023 05:59:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79495
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-6QHXV5D3N3
142.250.74.168200 OK 53 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-6QHXV5D3N3
IP 142.250.74.168:0
File type ASCII text, with very long lines (2206)
Hash 1d10dc169c3d473a73b9079a046ab47f
8996d4352b388a886b1ddb7e18cb751c1a0f6bda
3022bacdbddaf4404ed6a4ee60f134f1039f5ab476d7932744caac34166e81e2
GET /gtag/js?id=G-6QHXV5D3N3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Feb 2023 05:59:20 GMT
expires: Mon, 27 Feb 2023 05:59:20 GMT
cache-control: private, max-age=900
last-modified: Mon, 27 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53077
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 19c3fcf789f41b045a0acbf765ae8e0e
a4cdfaaf6c47865f5ebd48bfbf934d3d995d8567
66fd82545938aa3a74d9c99af524288497deed709854c630559a1abef4fd1d21
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 27 Feb 2023 05:59:20 GMT
Last-Modified: Mon, 27 Feb 2023 05:59:17 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: apHuP2VAmBp7p_oZRcKXH8GsSjn9zLClxiGL8MvmTEBCvPjXy8NHpg==
Age: 3
static-public.klickpages.com.br/tmp/zip/1433/images/Devices.png?v=1638553024
54.230.111.20200 OK 3.8 kB URL HTTP/2 static-public.klickpages.com.br/tmp/zip/1433/images/Devices.png?v=1638553024
IP 54.230.111.20:0
File type PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced\012- data
Hash 831ed83ea37387bcc6ea034a0feaf501
9920c0f8d09910a3f793132904915314d4bd1e6a
1d5adfa0ca7fd2dd07a3766f572e27ba60a70e933bdf3c4673133a1baa7b7496
GET /tmp/zip/1433/images/Devices.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3846
date: Sat, 05 Nov 2022 02:57:13 GMT
last-modified: Fri, 03 Dec 2021 17:37:05 GMT
etag: "831ed83ea37387bcc6ea034a0feaf501"
cache-control: max-age=31536000
expires: Sat, 03 Dec 2022 17:37:04 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KR_Wvj2U0Rj4wdXul3N20rhNudFaqi98_KUv80m9IoYeYcKv822QNw==
age: 9860528
X-Firefox-Spdy: h2
static-public.klickpages.com.br/tmp/zip/1433/images/Megaphone.png?v=1638553024
54.230.111.20200 OK 2.6 kB URL HTTP/2 static-public.klickpages.com.br/tmp/zip/1433/images/Megaphone.png?v=1638553024
IP 54.230.111.20:0
File type PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d9734aa5481144fc3eec8f84a71b575
db6422061a96127acd97b39d4abc7636c248f269
7ab1e5bafbc7eb88586d1252bd3b296dd57391e01052dea87fc4d8a67ceabcda
GET /tmp/zip/1433/images/Megaphone.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2614
date: Fri, 20 Jan 2023 02:31:56 GMT
last-modified: Fri, 03 Dec 2021 17:37:05 GMT
etag: "1d9734aa5481144fc3eec8f84a71b575"
cache-control: max-age=31536000
expires: Sat, 03 Dec 2022 17:37:04 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AkXr1ELBKFft_-NdhuzD2Tqn_FgGDcjWNjl284IDFnGou9UUN9TM6w==
age: 3295645
X-Firefox-Spdy: h2
static-public.klickpages.com.br/tmp/zip/1433/images/Rocket.png?v=1638553024
54.230.111.20200 OK 5.1 kB URL HTTP/2 static-public.klickpages.com.br/tmp/zip/1433/images/Rocket.png?v=1638553024
IP 54.230.111.20:0
File type PNG image data, 120 x 121, 8-bit/color RGBA, non-interlaced\012- data
Hash 965b34dffb67490e149439d71a8c52a6
242fe728d5ad32a889439a09fe2a1e17378ab17e
d68fa8747bc01b0e97d47db745adccfe036f17505431f93440f3ee4fcbdd8603
GET /tmp/zip/1433/images/Rocket.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 5130
date: Wed, 25 Jan 2023 02:22:46 GMT
last-modified: Fri, 03 Dec 2021 17:37:05 GMT
etag: "965b34dffb67490e149439d71a8c52a6"
cache-control: max-age=31536000
expires: Sat, 03 Dec 2022 17:37:04 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XpSx9OgJ4W2swT41y29J5BuT5RubVujQbY5EamcSRTFnpQxVx9IHXg==
age: 2864195
X-Firefox-Spdy: h2
static-public.klickpages.com.br/tmp/zip/1467/images/content.png?v=1638551908
54.230.111.20200 OK 96 kB URL HTTP/2 static-public.klickpages.com.br/tmp/zip/1467/images/content.png?v=1638551908
IP 54.230.111.20:0
File type PNG image data, 916 x 749, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ddbc055bf5d5a7823ea70032590c210
fe4a7a4a92db769a8614b00537d9897658df1691
98e0a426229900fd7e87d941a76fd433628cdf8fa811cc2b6e2bba9dd7ab5ef2
GET /tmp/zip/1467/images/content.png?v=1638551908 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 96025
date: Fri, 20 Jan 2023 02:31:56 GMT
last-modified: Fri, 03 Dec 2021 17:18:29 GMT
etag: "4ddbc055bf5d5a7823ea70032590c210"
cache-control: max-age=31536000
expires: Sat, 03 Dec 2022 17:18:28 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Qw3pNHkC-iyaxT-151FsdGlmvWydmAPBrOub_u7fo6KMJncJjfDogg==
age: 3295645
X-Firefox-Spdy: h2
static-public.klickpages.com.br/tmp/zip/1433/images/Book.png?v=1638553024
54.230.111.20200 OK 16 kB URL HTTP/2 static-public.klickpages.com.br/tmp/zip/1433/images/Book.png?v=1638553024
IP 54.230.111.20:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash e3c98a3d9127b468e2b7ff49f9fd7fee
5db8b251703ec946055faee76314e76b20106fc2
53ed1d83b8eb7301f2867158b4d9092a65b00532ec7505ea7251fc6a16148d62
GET /tmp/zip/1433/images/Book.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 16445
date: Fri, 27 Jan 2023 11:19:02 GMT
last-modified: Fri, 03 Dec 2021 17:37:05 GMT
etag: "e3c98a3d9127b468e2b7ff49f9fd7fee"
cache-control: max-age=31536000
expires: Sat, 03 Dec 2022 17:37:04 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iyiI1UH_pT_nKpSLFtF8BtQ7g1NLnbDRxS1SA-LB7OFxLqfgwhUL-g==
age: 2659219
X-Firefox-Spdy: h2
static-public.klickpages.com.br/uploads/media/file/5251078/raphael_patrick_transparncia_s.png
54.230.111.20200 OK 40 kB URL HTTP/2 static-public.klickpages.com.br/uploads/media/file/5251078/raphael_patrick_transparncia_s.png
IP 54.230.111.20:0
File type PNG image data, 2302 x 583, 8-bit/color RGBA, non-interlaced\012- data
Hash b3219a07981fbf6f24c3bf51c6109ec2
0bc7c4ad91f6c6b6f5d26765b73630641031fcbd
024d7e22fccdee3453ff4409d792c919dc70164098e120b97ba3416ba8f5069b
GET /uploads/media/file/5251078/raphael_patrick_transparncia_s.png HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 40214
date: Sun, 26 Feb 2023 18:27:45 GMT
last-modified: Fri, 09 Sep 2022 18:56:45 GMT
etag: "b3219a07981fbf6f24c3bf51c6109ec2"
cache-control: must-revalidate,public,max-age=86400
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v7Shy1SWcK9WuoJB0PJkgVwOlAVHSx5mST_hsxFnbXD2pSI8BlWRYg==
age: 41496
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 19c3fcf789f41b045a0acbf765ae8e0e
a4cdfaaf6c47865f5ebd48bfbf934d3d995d8567
66fd82545938aa3a74d9c99af524288497deed709854c630559a1abef4fd1d21
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 27 Feb 2023 05:59:20 GMT
Etag: "63fb066f-1d7"
Server: ECS (dcb/7EEB)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Z9Bb97iZZvwkIiURyNHg1Rub2GHh0nYA9t0QEqExHZ8KdsWfMaE8Tw==
static-public.klickpages.com.br/uploads/media/file/5251072/raphael_faixa_preta_fundo_branco.png
54.230.111.20200 OK 135 kB URL HTTP/2 static-public.klickpages.com.br/uploads/media/file/5251072/raphael_faixa_preta_fundo_branco.png
IP 54.230.111.20:0
File type PNG image data, 398 x 399, 8-bit/color RGBA, non-interlaced\012- data
Size 135 kB (135170 bytes)
Hash 3ff84fc251a0d3bdd7005d4a79a46e82
46d06d66d45c331d030c387436367529a7643f67
46e23251dd5b28279c2eea60c2e50ee4a7ffc9fa48dc92440b49881e66345168
GET /uploads/media/file/5251072/raphael_faixa_preta_fundo_branco.png HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 135170
date: Sun, 26 Feb 2023 19:40:51 GMT
last-modified: Fri, 09 Sep 2022 18:54:43 GMT
etag: "3ff84fc251a0d3bdd7005d4a79a46e82"
cache-control: must-revalidate,public,max-age=86400
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BYlLIjZa1Y7sIsqXe4mF01Tw4ABrO0GlKVCLJNSA29KqOhcOxdFxIg==
age: 37110
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 19c3fcf789f41b045a0acbf765ae8e0e
a4cdfaaf6c47865f5ebd48bfbf934d3d995d8567
66fd82545938aa3a74d9c99af524288497deed709854c630559a1abef4fd1d21
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=90807
Date: Mon, 27 Feb 2023 05:59:20 GMT
Etag: "63fb066f-1d7"
Expires: Tue, 28 Feb 2023 07:12:47 GMT
Last-Modified: Sun, 26 Feb 2023 07:12:47 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XmmvDu5mPJrYtKwGUb6NAWvcSPGaeIDqQbl22KXXAiJ7_AjVlgk3yA==
www.3letras.com.br/
34.237.7.9200 OK 65 kB IP 34.237.7.9:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58791)
Hash 37477f474f247bfe9f1d75ad3f99a8f4
3ae0ab050214b675b2e6085f63320fd881ca8c02
4763dee1ec035089d0805a0ec5e9fc68ff5840df64f9a0a5b28e2326dc65a710
GET / HTTP/1.1
Host: www.3letras.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
content-length: 64590
ratelimit-reset: 1
ratelimit-remaining: 9
x-ratelimit-remaining-second: 9
x-ratelimit-limit-second: 10
x-ratelimit-remaining-hour: 9952
x-ratelimit-limit-hour: 10000
ratelimit-limit: 10
content-security-policy: frame-ancestors 'self' sun.eduzz.com http://*.monetizze.com.br https://*.monetizze.com.br *.hotmart.com http://aporasal.net https://aporasal.net http://adf.ly https://adf.ly;
domain-kp: true
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-kong-upstream-latency: 8
x-kong-proxy-latency: 1
via: kong/3.1.1
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 19c3fcf789f41b045a0acbf765ae8e0e
a4cdfaaf6c47865f5ebd48bfbf934d3d995d8567
66fd82545938aa3a74d9c99af524288497deed709854c630559a1abef4fd1d21
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 27 Feb 2023 05:59:20 GMT
Etag: "63fb066f-1d7"
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZFLL-S_sVueOmymCRwYkUBFVHXpq7cLy5eqSG9Ao5-fOzCrqhx1q_w==
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 19c3fcf789f41b045a0acbf765ae8e0e
a4cdfaaf6c47865f5ebd48bfbf934d3d995d8567
66fd82545938aa3a74d9c99af524288497deed709854c630559a1abef4fd1d21
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 27 Feb 2023 05:59:20 GMT
Etag: "63fb066f-1d7"
Server: ECS (dcb/7EA6)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n-C6FlohEGpxboO09npuDAKBdeFOFmoTDs768m_uO48QyhK6i1yeQw==
static-public.klickpages.com.br/tmp/zip/1230/scripts/main.js?v=1563827142
54.230.111.20200 OK 0 B URL HTTP/2 static-public.klickpages.com.br/tmp/zip/1230/scripts/main.js?v=1563827142
IP 54.230.111.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tmp/zip/1230/scripts/main.js?v=1563827142 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 0
last-modified: Tue, 15 Jun 2021 15:30:09 GMT
accept-ranges: bytes
server: AmazonS3
date: Mon, 27 Feb 2023 05:59:19 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fbBo2E9V-J7vLWY9izeCHtCn5WD_DniRu3fkAtcHOhbfWNI9D02yOQ==
age: 2
X-Firefox-Spdy: h2
static-public.klickpages.com.br/app/assets/javascripts/public/js/body/begin.js?v=1667566576
54.230.111.20200 OK 0 B URL HTTP/2 static-public.klickpages.com.br/app/assets/javascripts/public/js/body/begin.js?v=1667566576
IP 54.230.111.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/assets/javascripts/public/js/body/begin.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 0
date: Tue, 27 Sep 2022 14:37:59 GMT
last-modified: Tue, 27 Sep 2022 13:33:28 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: max-age=31536000
expires: Wed, 27 Sep 2023 13:33:27 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K1iujeb9-OkqKPU8yXHicfNN8CxktFyIfpbs2eWRUv21y8TdcEBJTw==
age: 13188082
X-Firefox-Spdy: h2
static-public.klickpages.com.br/uploads/media/file/5251103/logo_raphael_patrick.png
54.230.111.20200 OK 21 kB URL HTTP/2 static-public.klickpages.com.br/uploads/media/file/5251103/logo_raphael_patrick.png
IP 54.230.111.20:0
File type PNG image data, 671 x 178, 8-bit/color RGB, non-interlaced\012- data
Hash 4575925bc69ee9e514d055eb7277e872
0f904f89b20479acf0748c49bfc50a8eaea857d4
3061ee50193568084d0718033a002359bc121d91e4bd072d6af3c7fc92b4ac87
GET /uploads/media/file/5251103/logo_raphael_patrick.png HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 20639
date: Sun, 26 Feb 2023 19:40:51 GMT
last-modified: Fri, 09 Sep 2022 19:03:22 GMT
etag: "4575925bc69ee9e514d055eb7277e872"
cache-control: must-revalidate,public,max-age=86400
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V_rMD8cwAvkyarPAbRGCVHRKMu3AVP7TTjQReDlwaij2BQmtEmr_ZA==
age: 37110
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 916dc5e5446ca6612fec6e27bd005076
7918acc83891fc10fbc6e21a3984a49a6c4c480a
be9e4c1fe79a5f720d5b54719e7d0dd61a18fa1d7ae610ed7fb8de8038103dc9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171466
Date: Mon, 27 Feb 2023 05:59:20 GMT
Etag: "63fc4182-1d7"
Expires: Wed, 01 Mar 2023 05:37:06 GMT
Last-Modified: Mon, 27 Feb 2023 05:37:06 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nGHeeYtv_GaTBegefcNi10b9xtwLgfUHa6RDy2KIGncM6UhWbkmCZA==
static-public.klickpages.com.br/app/assets/javascripts/public/js/body/end.js?v=1667566576
54.230.111.20200 OK 6.1 kB URL HTTP/2 static-public.klickpages.com.br/app/assets/javascripts/public/js/body/end.js?v=1667566576
IP 54.230.111.20:0
Hash 587893e15975ef3e399c0f6162bc0535
bb299c57821f0ffb6a10ba169750724ed9580e7d
7c072c099564128f2bab78130e630390a6e00b6f5bf1582de4871253265fa49e
GET /app/assets/javascripts/public/js/body/end.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 08 Oct 2022 16:09:37 GMT
last-modified: Tue, 04 Oct 2022 19:52:42 GMT
etag: W/"7eb3bd20cc263033bdee8558d2d946e6"
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 19:52:41 GMT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IKNlTK1AwUp4F8mGm1FrxBaXOyNjmTdQkVe8iShGM-BzkRkGTcZdnQ==
age: 12232183
X-Firefox-Spdy: h2
static-public.klickpages.com.br/uploads/media/file/5251661/favicon_faixa_preta.png
54.230.111.20200 OK 34 kB URL HTTP/2 static-public.klickpages.com.br/uploads/media/file/5251661/favicon_faixa_preta.png
IP 54.230.111.20:0
File type PNG image data, 174 x 175, 8-bit/color RGBA, non-interlaced\012- data
Hash e95a872497e47fc838be544ab608db41
63b686f70e7a2ab9ebf6e4610239fa1d5cdb6345
702f20ec9c983f2f63b61be3c8929b06139e197ae55e98b5dbd9507a242012e8
GET /uploads/media/file/5251661/favicon_faixa_preta.png HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 33934
date: Mon, 27 Feb 2023 05:59:20 GMT
last-modified: Fri, 09 Sep 2022 21:32:38 GMT
etag: "e95a872497e47fc838be544ab608db41"
cache-control: must-revalidate,public,max-age=86400
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G8QognYyJATqHollATun6htWx7voADKwyegGoSGAqSGulabVbPcWUA==
age: 2
X-Firefox-Spdy: h2
static-public.klickpages.com.br/tmp/zip/1448/images/bg.png?v=1634840422
54.230.111.20200 OK 176 kB URL HTTP/2 static-public.klickpages.com.br/tmp/zip/1448/images/bg.png?v=1634840422
IP 54.230.111.20:0
File type PNG image data, 1446 x 1071, 8-bit colormap, non-interlaced\012- data
Size 176 kB (175751 bytes)
Hash 567a51073b0f94b3ceffd1fc52ec5edb
455fb431549917fb40c049979e02464eacec59e5
f2fe2e7bb1d580a776d160dadf1e460e20dd62d9b4d0bcd64a8f578c9fa403fa
GET /tmp/zip/1448/images/bg.png?v=1634840422 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 175751
date: Thu, 26 Jan 2023 02:41:10 GMT
last-modified: Thu, 21 Oct 2021 18:20:23 GMT
etag: "567a51073b0f94b3ceffd1fc52ec5edb"
cache-control: max-age=31536000
expires: Fri, 21 Oct 2022 18:20:22 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uoQV0568q2QxCWwmbZwHJ3ZH78mVsHOXGviziNpfno2uCTGlAT4E2w==
age: 2776692
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 13f4d5ed1bb94cbd6d65c687b9c81868
f3e7a9795c675e58ad3ac26fb2ccef10c0663046
7d6de7212228304b4178ad6bf6428e23ea35ff96ee88c5f155ab7b6031a13b51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 13f4d5ed1bb94cbd6d65c687b9c81868
f3e7a9795c675e58ad3ac26fb2ccef10c0663046
7d6de7212228304b4178ad6bf6428e23ea35ff96ee88c5f155ab7b6031a13b51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 13f4d5ed1bb94cbd6d65c687b9c81868
f3e7a9795c675e58ad3ac26fb2ccef10c0663046
7d6de7212228304b4178ad6bf6428e23ea35ff96ee88c5f155ab7b6031a13b51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.2 kB IP 142.250.74.131:0
File type gzip compressed data, max compression\012- data
Hash 7eb3197f3de80d6d4c97ab33d68f1ffd
77b6b26c6053c1cf8843929525b4359e856ffa53
10f363b191b2f4f1811795f3fe020e7a802491244b322f2cc0ba289f67fb3eba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/plus.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/plus.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash 38049e9af1792aca7c96e27ae560fe5d
76a9f8f9f84809c3f3dc892803bf748f36aaf65f
9fa7bc33fe6cbec665847b5f51ef08797a0b742492247de7a44e2a13d33af832
GET /js/plus.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Mon, 27 Feb 2023 05:59:21 GMT
expires: Mon, 27 Feb 2023 05:59:21 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "8fd8082d36557804"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/js/plusone.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash f8971f3ad662af35a2ca6871f8c78482
35a0b814d6ecec8deacc9aea87ce9be62b15d92b
a438d380bab44504b1ff13673a0e041c6ac6645d03926e7f076465d1fe049765
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Mon, 27 Feb 2023 05:59:21 GMT
expires: Mon, 27 Feb 2023 05:59:21 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "9dea963ca1c75dde"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 558ba056bf23a0799ff7c31ddfc63907
77faec7acf2e7ae0addfced95703428e7bb003d8
71a184f74e92890736814d4266e9e1845f06e0031b7495f5302ac93e279847d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5d489919b4da18a3fbd90c84779a271b
0d23399d66702ce1395ac28aea7a199629202a9b
72449a6198683c234289989f6b100e3f13ad9a85b9b45e579f0a889e8b276cdb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5817
Cache-Control: max-age=115698
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Etag: "63fb50f2-1d7"
Expires: Tue, 28 Feb 2023 14:07:39 GMT
Last-Modified: Sun, 26 Feb 2023 12:30:42 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 558ba056bf23a0799ff7c31ddfc63907
77faec7acf2e7ae0addfced95703428e7bb003d8
71a184f74e92890736814d4266e9e1845f06e0031b7495f5302ac93e279847d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 558ba056bf23a0799ff7c31ddfc63907
77faec7acf2e7ae0addfced95703428e7bb003d8
71a184f74e92890736814d4266e9e1845f06e0031b7495f5302ac93e279847d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
216.58.207.227200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Feb 2023 13:03:52 GMT
expires: Thu, 22 Feb 2024 13:03:52 GMT
cache-control: public, max-age=31536000
age: 406529
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Feb 2023 13:02:36 GMT
expires: Thu, 22 Feb 2024 13:02:36 GMT
cache-control: public, max-age=31536000
age: 406605
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 26 Feb 2023 10:25:03 GMT
expires: Mon, 26 Feb 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 70458
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Feb 2023 17:45:56 GMT
expires: Fri, 23 Feb 2024 17:45:56 GMT
cache-control: public, max-age=31536000
age: 303205
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Feb 2023 13:09:06 GMT
expires: Wed, 21 Feb 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 492615
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.0 kB IP 142.250.74.131:0
File type gzip compressed data, max compression\012- data
Hash bfe894a0fdb9a1f2f96ca2b96010b81e
9c4b3222c7f7a4dc8cd3e97a9b2c233279a0363d
930b6471e8fe33e28716c3132401fc1804ba5fb10729e34cc2b903227fd2c1fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Feb 2023 01:50:02 GMT
expires: Sat, 24 Feb 2024 01:50:02 GMT
cache-control: public, max-age=31536000
age: 274159
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Feb 2023 04:29:09 GMT
expires: Wed, 21 Feb 2024 04:29:09 GMT
cache-control: public, max-age=31536000
age: 523812
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Feb 2023 13:15:37 GMT
expires: Thu, 22 Feb 2024 13:15:37 GMT
cache-control: public, max-age=31536000
age: 405824
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/pt_BR/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/pt_BR/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1957)
Hash a7a5cd07b2ea484209d6333bae1d32e6
9a3a5ad8924bde35ac06c4d47e76aafc2966ebea
b33dd3c916d347f6637c18a2d9796af2a3a57e21bda72006959bac3bea628280
GET /pt_BR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ede628909f17bb3b2eae6c860100a3aa
etag: "24b07979e505b3c04e7603a476f4bb46"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 27 Feb 2023 06:04:13 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: p6XNB7LqSEIJ1jM7rh0y5g==
x-fb-debug: WyNFyrUMi9ODxK3YCw15bd8TMbnHfG1V9MQg2fqU6a8+1ie/TMYii4MVdLDBMqLsAWXZSbWukU4XuHWW6h7yMw==
priority: u=3,i
content-length: 1685
x-fb-trip-id: 1679558926
date: Mon, 27 Feb 2023 05:59:21 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 558ba056bf23a0799ff7c31ddfc63907
77faec7acf2e7ae0addfced95703428e7bb003d8
71a184f74e92890736814d4266e9e1845f06e0031b7495f5302ac93e279847d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ddf5db30e653b5a4cc5d45b2e415be63
243ac1b26d91440059744a4591a50899b1d72e34
2ef4ee3291e7df7ccc2c577deb0e8ece418eb95b382783372ef65d2da4a09726
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2EF4EE3291E7DF7CCC2C577DEB0E8ECE418EB95B382783372EF65D2DA4A09726"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21572
Expires: Mon, 27 Feb 2023 11:58:53 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5d489919b4da18a3fbd90c84779a271b
0d23399d66702ce1395ac28aea7a199629202a9b
72449a6198683c234289989f6b100e3f13ad9a85b9b45e579f0a889e8b276cdb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5817
Cache-Control: max-age=115698
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Etag: "63fb50f2-1d7"
Expires: Tue, 28 Feb 2023 14:07:39 GMT
Last-Modified: Sun, 26 Feb 2023 12:30:42 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3210
Expires: Mon, 27 Feb 2023 06:52:51 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3210
Expires: Mon, 27 Feb 2023 06:52:51 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3210
Expires: Mon, 27 Feb 2023 06:52:51 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3210
Expires: Mon, 27 Feb 2023 06:52:51 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3210
Expires: Mon, 27 Feb 2023 06:52:51 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedaf7d4d-dc11-4b93-9937-ca06601d9d74.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedaf7d4d-dc11-4b93-9937-ca06601d9d74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d42fe09fd8188afaf59754f59adda2ed
05a92d08c73d0ff888f990a19f3a95645fc44bd5
08de831bc8c2b62065dfe7ac504c897aa60fd0d7c7294f20c6c0b4465c8fa2f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedaf7d4d-dc11-4b93-9937-ca06601d9d74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8264
x-amzn-requestid: a3696650-7010-4c3b-b376-e797b1b8115d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A91zdG4joAMFl4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fbd015-155809a87c5b54f4719f2cb6;Sampled=0
x-amzn-remapped-date: Sun, 26 Feb 2023 21:33:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: DiQnRbCrZEVyWK3hIjUuWPKGIzxgevjZ3KEPx8XJmVwfbty_dIqnLQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6af3b573d8970d5db2a4d03354335b84.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Feb 2023 21:58:53 GMT
age: 28828
etag: "05a92d08c73d0ff888f990a19f3a95645fc44bd5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec402fde-1c7d-4dbd-8447-addb3a661518.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec402fde-1c7d-4dbd-8447-addb3a661518.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffb8f5b4089baa7b82374b8fbe70ebe0
02facc492b9e6cd658e0cca772d302a881c1d99c
7f98075dee46110a3095e3c9821748846cb21167cfbdd835a9108f53f1306dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec402fde-1c7d-4dbd-8447-addb3a661518.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7926
x-amzn-requestid: afce3b0b-4fac-4c22-8557-604cb33a3b2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A0umGFmWoAMFjaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f82af3-34d2c99729dcd2a9591b6ef2;Sampled=0
x-amzn-remapped-date: Fri, 24 Feb 2023 03:11:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oMkeYQyU0a_ItGOMCRMMZ9PKMeJRzGUW-bzBhXip84Hg7UjtgqEKxw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Feb 2023 02:01:17 GMT
age: 14284
etag: "02facc492b9e6cd658e0cca772d302a881c1d99c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a5f3d376fe6a3a78a5d1fe136f962fb
3e9b03cc296e954d63526a4e7e75beea3130fc3b
c8cf4f1c0352102764247e4dc5a2076921e0eaa18bfd110e5b0b97a55c706690
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9093
x-amzn-requestid: 3fd9f8c8-cf10-4222-a2cc-5f18ff7b2e9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D3HqmoAMFeBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-352315613cc0c2bc7eb28e05;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: S8s54RJtScNtsl6uEFtBEHnTj4lb3l5xIWR96Kvr_SdwQQQMgSKNxA==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Feb 2023 21:34:59 GMT
age: 30262
etag: "3e9b03cc296e954d63526a4e7e75beea3130fc3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95783353-2a29-4152-9ae1-28a33f54fc0f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95783353-2a29-4152-9ae1-28a33f54fc0f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edd8f6f262695a70a98091f3ed7553c5
421299d703b29421d5ec0e49a25e5e58a29a0f38
6f39a73e40a669724bd8eb47e1dbc7f94de591a6608cac0fd396bcde6a0c1986
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95783353-2a29-4152-9ae1-28a33f54fc0f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11750
x-amzn-requestid: c3f10359-2eda-487c-961c-022d3dc74372
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ArXuCHc-IAMFhaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f46cbf-50d50e3e365cc7da7adfa34a;Sampled=0
x-amzn-remapped-date: Tue, 21 Feb 2023 07:03:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lIc2TaGmx6HDN0MsxRTU9EXUA-VFh2v10-Pdyci9NbJNCNgiSs3cuw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Feb 2023 02:46:15 GMT
age: 11586
etag: "421299d703b29421d5ec0e49a25e5e58a29a0f38"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff926a496-cbe3-4604-85ed-4f1913eeee5c.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff926a496-cbe3-4604-85ed-4f1913eeee5c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e4fb58a7087b0732741cfae504f7cac
459f1c019f7dca423a40e4ddc21d23611f216b7f
0f4ba3e55fb7bfe3214bba4e4b910941dbb12f9d14c5118efe11a9489943a61f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff926a496-cbe3-4604-85ed-4f1913eeee5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9445
x-amzn-requestid: a5596ce6-f6f2-4594-94f9-2a70cc8020de
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A91yqEfloAMFk8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fbd010-448f22521a3e81886f1498de;Sampled=0
x-amzn-remapped-date: Sun, 26 Feb 2023 21:33:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: U6zHij_o5QY8e5dEwa07xw9HBSiedmVT4lXMDFb_TucZ9M-wTiY15w==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Feb 2023 21:57:23 GMT
age: 28918
etag: "459f1c019f7dca423a40e4ddc21d23611f216b7f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36bd1287-b32c-4603-9360-89332f5a1691.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36bd1287-b32c-4603-9360-89332f5a1691.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98b2f7c8e759e559d28d0e2b15651bf5
dbe61e9ed7cd1f187a1b7cd24708b05c8c3b9e7e
c1d34f17f7642871ca63cb65d3fd7a33592b53e03c282ca60d9e22ecde5afdb9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36bd1287-b32c-4603-9360-89332f5a1691.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6868
x-amzn-requestid: cf613d6f-8c37-434c-b467-565409889ee9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A91zAE8zIAMFhog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fbd012-5f358161034e44d50766c19d;Sampled=0
x-amzn-remapped-date: Sun, 26 Feb 2023 21:33:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: HjL7q58a3oDSGcYoniT_tEMLriVytaxA0jQG3hoRXVq0_L3ceYShpw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 f268a165a18929fd0a24a3189fbd16b2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Feb 2023 21:58:26 GMT
age: 28855
etag: "dbe61e9ed7cd1f187a1b7cd24708b05c8c3b9e7e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 27 Feb 2023 05:53:25 GMT
expires: Mon, 27 Feb 2023 07:53:25 GMT
cache-control: public, max-age=7200
age: 356
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-S2B2VGGTRY>m=45je32m0&_p=1197115690&cid=1472467545.1677477672&ul=en-us&sr=1280x1024&_s=1&sid=1677477672&sct=1&seg=0&dl=https%3A%2F%2Fwww.3letras.com.br%2F&dr=http%3A%2F%2Fwww.3letras.com.br%2F&dt=Nova%20P%C3%A1gina&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-S2B2VGGTRY>m=45je32m0&_p=1197115690&cid=1472467545.1677477672&ul=en-us&sr=1280x1024&_s=1&sid=1677477672&sct=1&seg=0&dl=https%3A%2F%2Fwww.3letras.com.br%2F&dr=http%3A%2F%2Fwww.3letras.com.br%2F&dt=Nova%20P%C3%A1gina&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-S2B2VGGTRY>m=45je32m0&_p=1197115690&cid=1472467545.1677477672&ul=en-us&sr=1280x1024&_s=1&sid=1677477672&sct=1&seg=0&dl=https%3A%2F%2Fwww.3letras.com.br%2F&dr=http%3A%2F%2Fwww.3letras.com.br%2F&dt=Nova%20P%C3%A1gina&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.3letras.com.br
date: Mon, 27 Feb 2023 05:59:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static-public.klickpages.com.br/tmp/zip/1230/styles/main.css?v=1563827142
54.230.111.20200 OK 0 B URL HTTP/2 static-public.klickpages.com.br/tmp/zip/1230/styles/main.css?v=1563827142
IP 54.230.111.20:0
GET /tmp/zip/1230/styles/main.css?v=1563827142 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Tue, 10 Jan 2023 01:38:34 GMT
last-modified: Mon, 22 Jul 2019 20:25:43 GMT
etag: W/"6c7d12485a91906afcbcf81bcdf28450"
cache-control: max-age=31536000
expires: Wed, 22 Jul 2020 20:25:42 GMT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EsIFkdUx49StBhmf3qXzRz6UvOaL0MhAR6N1YOUJO5LU6NC2UQImPQ==
age: 4162847
X-Firefox-Spdy: h2
static-public.klickpages.com.br/app/assets/javascripts/libs/libs.js?v=1667566576
54.230.111.20200 OK 0 B URL HTTP/2 static-public.klickpages.com.br/app/assets/javascripts/libs/libs.js?v=1667566576
IP 54.230.111.20:0
GET /app/assets/javascripts/libs/libs.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 27 Sep 2022 14:38:00 GMT
last-modified: Tue, 27 Sep 2022 13:34:03 GMT
etag: W/"4888e1579f4ec72d319cbcfb9d508b1e"
cache-control: max-age=31536000
expires: Wed, 27 Sep 2023 13:34:02 GMT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OhY0RCJVH2ddstNfLXrPeASZ2Y38No9WIPsj46dKGB2-XFYa5nAUyg==
age: 13188081
X-Firefox-Spdy: h2
www.3letras.com.br/
34.237.7.9200 OK 0 B IP 34.237.7.9:0
GET / HTTP/1.1
Host: www.3letras.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
Content-Length: 64590
Connection: keep-alive
RateLimit-Reset: 1
RateLimit-Remaining: 9
X-RateLimit-Remaining-Second: 9
X-RateLimit-Limit-Second: 10
X-RateLimit-Remaining-Hour: 9939
X-RateLimit-Limit-Hour: 10000
RateLimit-Limit: 10
Content-Security-Policy: frame-ancestors 'self' sun.eduzz.com http://*.monetizze.com.br https://*.monetizze.com.br *.hotmart.com http://aporasal.net https://aporasal.net http://adf.ly https://adf.ly;
Domain-KP: true
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Kong-Upstream-Latency: 7
X-Kong-Proxy-Latency: 0
Via: kong/3.1.1
fonts.googleapis.com/css2?family=Roboto:wght@300;400;700;900&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@300;400;700;900&display=swap
IP 142.250.74.106:0
GET /css2?family=Roboto:wght@300;400;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:19 GMT
date: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Oswald:wght@300;400;700&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Oswald:wght@300;400;700&display=swap
IP 142.250.74.106:0
GET /css2?family=Oswald:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:19 GMT
date: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400
IP 142.250.74.106:0
GET /css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:20 GMT
date: Mon, 27 Feb 2023 05:59:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static-public.klickpages.com.br/app/assets/javascripts/public/js/include.js?v=1667566576
54.230.111.20200 OK 0 B URL HTTP/2 static-public.klickpages.com.br/app/assets/javascripts/public/js/include.js?v=1667566576
IP 54.230.111.20:0
GET /app/assets/javascripts/public/js/include.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 08 Oct 2022 02:15:07 GMT
last-modified: Tue, 04 Oct 2022 19:53:01 GMT
etag: W/"e3c62a2610fa173d5cb5b2c7f3b88537"
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 19:53:00 GMT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZXrIH0HKdUyBqyTscRHPu9wW7Xmxo6ZdjJKMUbu5js2hdO4atelnQA==
age: 12282253
X-Firefox-Spdy: h2
static-public.klickpages.com.br/tmp/zip/1467/images/content.png?v=1638551908
54.230.111.111200 OK 0 B URL HTTP/1.1 static-public.klickpages.com.br/tmp/zip/1467/images/content.png?v=1638551908
IP 54.230.111.111:0
GET /tmp/zip/1467/images/content.png?v=1638551908 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 96025
Connection: keep-alive
Date: Fri, 20 Jan 2023 02:31:56 GMT
Last-Modified: Fri, 03 Dec 2021 17:18:29 GMT
ETag: "4ddbc055bf5d5a7823ea70032590c210"
Cache-Control: max-age=31536000
Expires: Sat, 03 Dec 2022 17:18:28 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lXLEbTKF6SetOQpDd1mkSG2KFHy66CQcFaSqrGtyvHnqgaKzG6QDvg==
Age: 3295644
fonts.googleapis.com/css2?family=Roboto:wght@300;400;700&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@300;400;700&display=swap
IP 142.250.74.106:0
GET /css2?family=Roboto:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:19 GMT
date: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Dosis:300,500,700|Just+Another+Hand|Lato:%27100italic%27,%27300italic%27,%27400italic%27,%27700italic%27,%27900italic%27,100,300,400,700,900|Lora:%27400italic%27,%27700italic%27,400,700|Montserrat:300,400,500,700|Oswald:300,400,700|Open+Sans:%27300italic%27,%27400italic%27,%27600italic%27,%27700italic%27,300,400,600,700|Open+Sans+Condensed:%27300italic%27,300,700|Roboto:%27100italic%27,%27300italic%27,%27400italic%27,%27500italic%27,%27700italic%27,%27900italic%27,100,300,400,500,700,900|Raleway:%27300italic%27,%27400italic%27,%27700italic%27,300,400,700|Nunito:%27wght@200%27,400,700,800|Vollkorn:%27ital,,400,500,600,700,800,900,wght@0,
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Dosis:300,500,700|Just+Another+Hand|Lato:%27100italic%27,%27300italic%27,%27400italic%27,%27700italic%27,%27900italic%27,100,300,400,700,900|Lora:%27400italic%27,%27700italic%27,400,700|Montserrat:300,400,500,700|Oswald:300,400,700|Open+Sans:%27300italic%27,%27400italic%27,%27600italic%27,%27700italic%27,300,400,600,700|Open+Sans+Condensed:%27300italic%27,300,700|Roboto:%27100italic%27,%27300italic%27,%27400italic%27,%27500italic%27,%27700italic%27,%27900italic%27,100,300,400,500,700,900|Raleway:%27300italic%27,%27400italic%27,%27700italic%27,300,400,700|Nunito:%27wght@200%27,400,700,800|Vollkorn:%27ital,,400,500,600,700,800,900,wght@0,
IP 142.250.74.106:0
GET /css?family=Dosis:300,500,700|Just+Another+Hand|Lato:%27100italic%27,%27300italic%27,%27400italic%27,%27700italic%27,%27900italic%27,100,300,400,700,900|Lora:%27400italic%27,%27700italic%27,400,700|Montserrat:300,400,500,700|Oswald:300,400,700|Open+Sans:%27300italic%27,%27400italic%27,%27600italic%27,%27700italic%27,300,400,600,700|Open+Sans+Condensed:%27300italic%27,300,700|Roboto:%27100italic%27,%27300italic%27,%27400italic%27,%27500italic%27,%27700italic%27,%27900italic%27,100,300,400,500,700,900|Raleway:%27300italic%27,%27400italic%27,%27700italic%27,300,400,700|Nunito:%27wght@200%27,400,700,800|Vollkorn:%27ital,,400,500,600,700,800,900,wght@0, HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:19 GMT
date: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static-public.klickpages.com.br/app/assets/stylesheets/publish.css?v=1667566576
54.230.111.20200 OK 0 B URL HTTP/2 static-public.klickpages.com.br/app/assets/stylesheets/publish.css?v=1667566576
IP 54.230.111.20:0
GET /app/assets/stylesheets/publish.css?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Tue, 27 Sep 2022 14:37:52 GMT
last-modified: Tue, 27 Sep 2022 13:34:12 GMT
etag: W/"72f69325dff9b9e8272258d103ed9298"
cache-control: max-age=31536000
expires: Wed, 27 Sep 2023 13:34:11 GMT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9SJIpw91nHrtg2O_Sd63xmGdqzASne7OtnDp966J3C5wHo1yTbwklw==
age: 13188089
X-Firefox-Spdy: h2
art.klickpages.com.br/public/server/date_time
172.64.144.43200 OK 0 B URL HTTP/2 art.klickpages.com.br/public/server/date_time
IP 172.64.144.43:0
GET /public/server/date_time HTTP/1.1
Host: art.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Feb 2023 05:59:21 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-expose-headers:
access-control-max-age: 1728000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
etag: W/"88d218d0f4be649bb14d1bbd81e06e00"
cache-control: max-age=0, private, must-revalidate
vary: Origin
x-request-id: 00866d91-1d38-4929-b69d-232ce93966f9
x-runtime: 0.019811
cf-cache-status: DYNAMIC
set-cookie: klickpages_locale=en; domain=.klickpages.com.br; path=/; expires=Sun, 25 Feb 2024 20:01:40 -0000
__cf_bm=MQZj766zjqIsoyJJ3LExlC5EvH72.UeKVFtO_9uop0A-1677477561-0-ATseEDL7xgGEXTwejSLxNUZaEL5lIK44R7i3Sh8pSSFP6TVEgshz2gBpcZXfqlSiGqyVJ425z1XFXceZY6AyXx8=; path=/; expires=Mon, 27-Feb-23 06:29:21 GMT; domain=.klickpages.com.br; HttpOnly; Secure; SameSite=None
__cfruid=b4176e0c890a5cd281fad70658b570180e01f9da-1677477561; path=/; domain=.klickpages.com.br; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 79feb1a6feaab518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2