Report - atr.com.br/dati/Istruzione.zip?PDF.Download_to.acc.id=OS9B5sNQhlghJkH3@MCNP4sQQjg==.MSVF.au

Report Overview

Submitted URL
atr.com.br/dati/Istruzione.zip?PDF.Download_to.acc.id=OS9B5sNQhlghJkH3@MCNP4sQQjg==.MSVF.au
IP
200.160.2.95
ASN
#22548 Nucleo de Inf. e Coord. do Ponto BR - NIC.
Submitted
2023-02-27 05:59:30
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	21 kB	142.250.74.110
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	696 B	449 B	216.239.32.36
art.klickpages.com.br	671633	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	458 B	1.3 kB	172.64.144.43
apis.google.com	105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	731 B	44 kB	172.217.21.174
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	60 kB	34.120.237.76
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.9 kB	180 kB	216.58.207.227
atr.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	422 B	230 B	200.160.2.95
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.2 kB	14 kB	142.250.74.131
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	5.2 kB	142.250.74.106
ocsp.r2m01.amazontrust.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	4.6 kB	54.230.80.227
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	984 B	54.230.245.118
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	371 B	2.9 kB	157.240.200.14
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	8.9 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	268 kB	142.250.74.168
www.3letras.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	821 B	66 kB	34.237.7.9
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	729 B	23.36.77.32
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
static-public.klickpages.com.br	305729	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	721 kB	54.230.111.111
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.89.71.191

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-27	medium	msvf.au	Sinkholed

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	connect.facebook.net/pt_BR/sdk.js#xfbml=1&version=v3.2	3.1 kB	2023-03-14	2023-03-14
Pretty URL connect.facebook.net/pt_BR/sdk.js#xfbml=1&version=v3.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:01:03 Last Seen2023-03-14 13:01:03 Times Seen1 Hash ede628909f17bb3b2eae6c860100a3aa 7c3d5bd31f6b30a7c2d7e17e5985f720a7f43369 7f6196796202b0b5b4f87f926d87152305f7d54cd7984162351c1fd0ee806fa6 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=plus/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs	200 kB	2023-03-14	2023-03-14
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=plus/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 00:39:35 Last Seen2023-03-14 13:01:03 Times Seen1 Hash 70461634b8e2ee449550b3685865375d 93adeae2c19c36ed1ea0efd790057c46b6d4f513 e5bdb2c982e130709e992c7c3b3b368c4e92aea5e4ea2f770e9d904e1fd71c2a Loading...

	static-public.klickpages.com.br/app/assets/javascripts/public/js/body/end.js?v=1667566576	20 kB	2023-03-14	2023-11-11
Pretty URL static-public.klickpages.com.br/app/assets/javascripts/public/js/body/end.js?v=1667566576 IP 54.230.111.20 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 10:43:47 Last Seen2023-11-11 04:14:27 Times Seen13 Hash 7eb3bd20cc263033bdee8558d2d946e6 d9d9cc214fe1c65c25b5765c74fa2e73b3e65cb4 77d6bcbe1be94252e8eef57092e4be2696896b4439c6d11b809371ad1a41a275 Loading...

	www.3letras.com.br/	69 B	2023-03-14	2023-03-14
Pretty URL www.3letras.com.br/ IP 34.237.7.9 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:01:03 Last Seen2023-03-14 13:01:03 Times Seen1 Hash b792a4682665bfeb63e14820bebadfbb 1fdbf76a576da4c4e7b1c79526db09a80fac2fc9 f42c357322e32f2d6f5f0187235cbee1a5f57e7e3724a99f8677fb6c8b3dce29 Loading...

	www.3letras.com.br/	153 B	2023-03-14	2023-03-14
Pretty URL www.3letras.com.br/ IP 34.237.7.9 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:01:03 Last Seen2023-03-14 13:01:03 Times Seen1 Hash f7539ba3a6f4664e326f3e76dcc000d7 a0176ba22ed70eaeb0cac85db8374630fdffa15c 5fa2c80259bb7694683e07da4cd25b12cc01fdcca1b3298e20d5aac3b5cd6954 Loading...

	www.3letras.com.br/	1.8 kB	2023-03-14	2023-03-14
Pretty URL www.3letras.com.br/ IP 34.237.7.9 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:01:03 Last Seen2023-03-14 13:01:03 Times Seen1 Hash e470ed02b99faee237db3436a127c1e2 2d692af738d053a9bfc6ac4ae9cd047ea924f9b1 4e8b845446db0416ec54d85f3ea3951a59521c08d8b232810f59b5a88c71f839 Loading...

	static-public.klickpages.com.br/app/assets/javascripts/libs/libs.js?v=1667566576	7.4 kB	2023-03-14	2023-11-11
Pretty URL static-public.klickpages.com.br/app/assets/javascripts/libs/libs.js?v=1667566576 IP 54.230.111.20 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 10:43:48 Last Seen2023-11-11 04:14:26 Times Seen7 Hash 4888e1579f4ec72d319cbcfb9d508b1e 97ff0166960501f76db48f14d7535aea6de8ab48 41555928210575101175ea0102028541dc0371ac593d46e612f6ef8956301e3c Loading...

	www.googletagmanager.com/gtm.js?id=GTM-KRKKTLX	100 kB	2023-03-14	2023-03-14
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-KRKKTLX IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:01:03 Last Seen2023-03-14 13:01:03 Times Seen1 Hash d3db398efb0e8d014dfdbddf758c5ec5 7e3cabec3e0cfeee90830139e6465bb3cd3766d6 f1983949575757d4ad46a86d3a1919904896ea904dfa0d425002193f2c190253 Loading...

	apis.google.com/js/plusone.js	55 kB	2023-03-13	2023-03-14
Pretty URL apis.google.com/js/plusone.js IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:30:09 Last Seen2023-03-14 14:13:10 Times Seen1 Hash 16c58379dbc00071e786bbcd4201ba8b 41263545ee7cfe317f627bde06a2113412522b08 6cae3ec13bbff388bc73c59a24021f69f4ca6d901de9912005af469f2d750aa8 Loading...

	www.googletagmanager.com/gtag/js?id=UA-240880609-1&l=dataLayer&cx=c	114 kB	2023-03-14	2023-03-14
Pretty URL www.googletagmanager.com/gtag/js?id=UA-240880609-1&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:01:03 Last Seen2023-03-14 13:01:03 Times Seen1 Hash da33f5169472d9a2f6d4ff99cc46f06a 630474bc7f0c23e73c0e70ff9f2b0fa7d6a8be3c 91df5d691c5efacd33a60ff8667b01beb4917b7e84bab811076d993557e5eaa4 Loading...

	static-public.klickpages.com.br/app/assets/javascripts/public/js/include.js?v=1667566576	235 kB	2023-03-14	2023-11-11
Pretty URL static-public.klickpages.com.br/app/assets/javascripts/public/js/include.js?v=1667566576 IP 54.230.111.111 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 10:43:47 Last Seen2023-11-11 04:14:26 Times Seen10 Hash e3c62a2610fa173d5cb5b2c7f3b88537 54d774c065d0842a812930972666d1e2634b7610 967f32071b62b6339e4207159b75d5dbf6defabcc12848a02603370816f9ee89 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.3letras.com.br/	341 B	2023-03-14	2023-03-14
Pretty URL www.3letras.com.br/ IP 34.237.7.9 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:01:03 Last Seen2023-03-14 13:01:03 Times Seen1 Hash 2258085698070881141e84890a9ed98c deff1110071de33094685f1da322580e56deec66 f82bf405f9cd99aed1990e802141c94b2a8b972d1f39cc88a66ec3d31d4321ed Loading...

	www.3letras.com.br/	311 B	2023-03-14	2023-10-28
Pretty URL www.3letras.com.br/ IP 34.237.7.9 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 10:43:48 Last Seen2023-10-28 16:22:29 Times Seen14 Hash 9c71fcdc088501cca3d660a409fe76ba 02b1c226e038e4d08efbf83eeb5d90010b851a51 543ac02f6d2a069d97609bd691061d42c3b724fbc0d8a8287bb019536db358cb Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=plusone/exm=plus/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_1?le=scs	2.6 kB	2023-03-14	2023-03-14
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=plusone/exm=plus/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_1?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 10:43:47 Last Seen2023-03-14 13:01:03 Times Seen1 Hash b8f86cf71b95e4415e74d4e5784e2be3 fa29df8b9cbf2fe3b1e730d8c1f0e7b8e02fd7e2 a7e189b75832908d8bcb22a72123a507b77a0507a1d086c55cb4ccb16120ca25 Loading...

	www.3letras.com.br/	153 B	2023-03-14	2023-03-14
Pretty URL www.3letras.com.br/ IP 34.237.7.9 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:01:03 Last Seen2023-03-14 13:01:03 Times Seen1 Hash 896b36c988c30b6be52ebbe1a1af4fbc f79832092e5cb4a2d6d6a61a7a5a6b74f405b6f9 0393889deb4c7af01157a2ec328bac2fd3b421f62478ab7ece846712d4727d2c Loading...

	www.googletagmanager.com/gtag/js?id=G-6QHXV5D3N3	135 kB	2023-03-14	2023-03-14
Pretty URL www.googletagmanager.com/gtag/js?id=G-6QHXV5D3N3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:01:03 Last Seen2023-03-14 13:01:03 Times Seen1 Hash 325fe110cda33687c9a295e09a436145 84d42b0906b27a1ffd6c4f81e69f042d2133e07f e55ad0efe41c74b9b7751e35bd4021d5971fffeb9a33d5abda79779e2afcbafd Loading...

	apis.google.com/js/plus.js	55 kB	2023-03-14	2023-03-14
Pretty URL apis.google.com/js/plus.js IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 10:43:48 Last Seen2023-03-14 13:01:03 Times Seen1 Hash 0ca045aa10814c09f5b4a57eb1a32d44 1789d98366d5c5073e85c1c76cb067a708c98bb6 e6643bec3de9936ebc4d61e7e3836cd28dbfd9af5a3064199fc6bf0effcfad99 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 05:41:31 Times Seen37055406 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (103)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
666c7f3c3342b2fdca31a2355ee20bea
09bd5cbacba34412f5fff9d44f97e46c8c76d001
cb3a380fc71bc65dfde35069f0fc441400974afcf28c0fbb6fec8f41e16f70c8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB3A380FC71BC65DFDE35069F0FC441400974AFCF28C0FBB6FEC8F41E16F70C8"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2661
Expires: Mon, 27 Feb 2023 06:43:39 GMT
Date: Mon, 27 Feb 2023 05:59:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc3cacbc6c565bf2955b507302b8fb41
7b773e19aff1d4904cec328c456513e80f917ba4
b45c582b42efef5e8bd5744333a137f13e94a93cafbaace39b36cfa1eeb041bd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B45C582B42EFEF5E8BD5744333A137F13E94A93CAFBAACE39B36CFA1EEB041BD"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12092
Expires: Mon, 27 Feb 2023 09:20:51 GMT
Date: Mon, 27 Feb 2023 05:59:19 GMT
Connection: keep-alive

atr.com.br/dati/Istruzione.zip?PDF.Download_to.acc.id=OS9B5sNQhlghJkH3@MCNP4sQQjg==.MSVF.au

200.160.2.95

302 Found

48 B

URL HTTP/1.1
atr.com.br/dati/Istruzione.zip?PDF.Download_to.acc.id=OS9B5sNQhlghJkH3@MCNP4sQQjg==.MSVF.au
IP
200.160.2.95:0
ASN
#22548 Nucleo de Inf. e Coord. do Ponto BR - NIC.

File type
HTML document, ASCII text
Size
48 B (48 bytes)
Hash
900ea9b06329f24e34805873cec06da3
39673bb47cdf3038b4ce7e42b1cff82377d0b466
a091ec4ceb8de61eb81f4d28da6099382b8856dc90ec69abb87e40bf4b5aad3a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /dati/Istruzione.zip?PDF.Download_to.acc.id=OS9B5sNQhlghJkH3@MCNP4sQQjg==.MSVF.au HTTP/1.1
Host: atr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Cache-Control: max-age=300
Content-Type: text/html; charset=utf-8
Location: http://www.3letras.com.br
Date: Mon, 27 Feb 2023 05:59:18 GMT
Content-Length: 48

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 27 Feb 2023 05:12:39 GMT
content-type: application/json
age: 2800
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
955732a866f4168dcaaa1dbcfb06e776
24161b6d53bbf84abc87c943f67daadd7fbcc9f4
ac3d306cc00fcafe5d6fadd5bc1c4398ca87dec499fd0e4ffe60d0e1c3535578

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC3D306CC00FCAFE5D6FADD5BC1C4398CA87DEC499FD0E4FFE60D0E1C3535578"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2659
Expires: Mon, 27 Feb 2023 06:43:38 GMT
Date: Mon, 27 Feb 2023 05:59:19 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: YGM1KlISVhCm7gbkxyiMFCUGDFl2cbcL0GaGPh8uColr/0Wzf6O2FVoJZUcina6XnmB3ZH+5Kj8=
x-amz-request-id: 8SZZSZHJXBME156G
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 27 Feb 2023 05:14:00 GMT
age: 2719
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 27 Feb 2023 05:59:19 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

static-public.klickpages.com.br/app/assets/stylesheets/publish.css?v=1667566576

54.230.111.111

200 OK

31 kB

URL HTTP/1.1
static-public.klickpages.com.br/app/assets/stylesheets/publish.css?v=1667566576
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65368)
Size
31 kB (31414 bytes)
Hash
2f597fdab447a1cdaf80d2df768616b6
813bc4163f1e15bcee5cad7240c04012035c025e
0144ca2e6172897d5c016688a1a1099a58ac4b50e6e2f4234d838312c29699a2

HTTP Headers

GET /app/assets/stylesheets/publish.css?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 27 Sep 2022 14:37:52 GMT
Last-Modified: Tue, 27 Sep 2022 13:34:12 GMT
ETag: W/"72f69325dff9b9e8272258d103ed9298"
Cache-Control: max-age=31536000
Expires: Wed, 27 Sep 2023 13:34:11 GMT
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Fa45YxdtaPcVcmlVGuyw_f1q_HfpVhrHyk1ySF0RvhQVrxyzywo0DA==
Age: 13188088

static-public.klickpages.com.br/app/assets/javascripts/public/js/include.js?v=1667566576

54.230.111.111

200 OK

69 kB

URL HTTP/1.1
static-public.klickpages.com.br/app/assets/javascripts/public/js/include.js?v=1667566576
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (32768)
Size
69 kB (68886 bytes)
Hash
5f9fcbfdc53bcfc89a8bb3603f7f9fa6
a258647f1c9c464c22ebc1085e5008164e2bfe40
3561974fe3ba0b57570d6e4d9429f79451f03c7817efb559d8834bd080770273

HTTP Headers

GET /app/assets/javascripts/public/js/include.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/

HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 08 Oct 2022 02:15:07 GMT
Last-Modified: Tue, 04 Oct 2022 19:53:01 GMT
ETag: W/"e3c62a2610fa173d5cb5b2c7f3b88537"
Cache-Control: max-age=31536000
Expires: Wed, 04 Oct 2023 19:53:00 GMT
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DmK8V4_Jp_cBS49CULsZpCIhvd0Dv1lidvUItoR97N1KqUT_xhgt-A==
Age: 12282252

static-public.klickpages.com.br/app/assets/javascripts/public/js/body/begin.js?v=1667566576

54.230.111.111

200 OK

0 B

URL HTTP/1.1
static-public.klickpages.com.br/app/assets/javascripts/public/js/body/begin.js?v=1667566576
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /app/assets/javascripts/public/js/body/begin.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Date: Tue, 27 Sep 2022 14:37:59 GMT
Last-Modified: Tue, 27 Sep 2022 13:33:28 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
Cache-Control: max-age=31536000
Expires: Wed, 27 Sep 2023 13:33:27 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: G-YYfH250rz7zSpBci8hWUVjtTcvNPHoaNrIojugDCHbhKZ5igl3Yg==
Age: 13188081

static-public.klickpages.com.br/tmp/zip/1230/styles/main.css?v=1563827142

54.230.111.111

200 OK

1.3 kB

URL HTTP/1.1
static-public.klickpages.com.br/tmp/zip/1230/styles/main.css?v=1563827142
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (6601), with no line terminators
Size
1.3 kB (1308 bytes)
Hash
7e96d34a6d10652370e7632a20f32093
af36a74cfb9b0c226a7909e77615ae6ccaf29071
eb13f94f1d381bbadb5ddcb2e9b96d4cc9b7163c18a80156a577aab9828266c2

HTTP Headers

GET /tmp/zip/1230/styles/main.css?v=1563827142 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 10 Jan 2023 01:38:34 GMT
Last-Modified: Mon, 22 Jul 2019 20:25:43 GMT
ETag: W/"6c7d12485a91906afcbcf81bcdf28450"
Cache-Control: max-age=31536000
Expires: Wed, 22 Jul 2020 20:25:42 GMT
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AN5TGsWc4Jym8Da4-bl6vxxyWq-I7R3MwESSttG6CVGYruo6g7_rHA==
Age: 4162846

static-public.klickpages.com.br/tmp/zip/1230/scripts/main.js?v=1563827142

54.230.111.111

200 OK

0 B

URL HTTP/1.1
static-public.klickpages.com.br/tmp/zip/1230/scripts/main.js?v=1563827142
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tmp/zip/1230/scripts/main.js?v=1563827142 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Last-Modified: Tue, 15 Jun 2021 15:30:09 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 27 Feb 2023 05:59:19 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qtG-xn519SJcGyH2g_pccnjUdGA-Fs0uHLZev5CihOdKs5ZFubNMyw==
Age: 1

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b2ffc9a96adf221d32379861c71882a5
c658e2f09fd511b44cff41f22288b7940f52789b
344a5c0709897a8d63161912d29eab016ae6049691a48f6cd4909622ee00a64d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2267c41ae33ba19dc2746e635fb3a4ce
1708d26622ef73a72ae428ce3c0982f8741e54d9
9947507f3d7299e256ad9b9fa2b06482e23de4108bcdb314b3c7f140d26e6ab5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b2ffc9a96adf221d32379861c71882a5
c658e2f09fd511b44cff41f22288b7940f52789b
344a5c0709897a8d63161912d29eab016ae6049691a48f6cd4909622ee00a64d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2267c41ae33ba19dc2746e635fb3a4ce
1708d26622ef73a72ae428ce3c0982f8741e54d9
9947507f3d7299e256ad9b9fa2b06482e23de4108bcdb314b3c7f140d26e6ab5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2267c41ae33ba19dc2746e635fb3a4ce
1708d26622ef73a72ae428ce3c0982f8741e54d9
9947507f3d7299e256ad9b9fa2b06482e23de4108bcdb314b3c7f140d26e6ab5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-6QHXV5D3N3

142.250.74.168

200 OK

53 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-6QHXV5D3N3
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2206)
Size
53 kB (53084 bytes)
Hash
5d79f6a5f8eb187411033b88bd405866
531da1ee7813a644336bfb9fe5f1862b85c4eccb
f7e2ec09993520915a9792ed5967fa625c1f253b1a79e57168b3dcaa47e0c8fc

HTTP Headers

GET /gtag/js?id=G-6QHXV5D3N3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Feb 2023 05:59:19 GMT
expires: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=900
last-modified: Mon, 27 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53084
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static-public.klickpages.com.br/tmp/zip/1433/images/Megaphone.png?v=1638553024

54.230.111.111

200 OK

2.6 kB

URL HTTP/1.1
static-public.klickpages.com.br/tmp/zip/1433/images/Megaphone.png?v=1638553024
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type
PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2614 bytes)
Hash
1d9734aa5481144fc3eec8f84a71b575
db6422061a96127acd97b39d4abc7636c248f269
7ab1e5bafbc7eb88586d1252bd3b296dd57391e01052dea87fc4d8a67ceabcda

HTTP Headers

GET /tmp/zip/1433/images/Megaphone.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2614
Connection: keep-alive
Date: Fri, 20 Jan 2023 02:31:56 GMT
Last-Modified: Fri, 03 Dec 2021 17:37:05 GMT
ETag: "1d9734aa5481144fc3eec8f84a71b575"
Cache-Control: max-age=31536000
Expires: Sat, 03 Dec 2022 17:37:04 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Vv_K7g6O9fRmgaO8Fzy5i12rQ6sA25P9alUtAzlM3keFIQveQiT_cQ==
Age: 3295644

static-public.klickpages.com.br/tmp/zip/1433/images/Rocket.png?v=1638553024

54.230.111.111

200 OK

5.1 kB

URL HTTP/1.1
static-public.klickpages.com.br/tmp/zip/1433/images/Rocket.png?v=1638553024
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type
PNG image data, 120 x 121, 8-bit/color RGBA, non-interlaced\012- data
Size
5.1 kB (5130 bytes)
Hash
965b34dffb67490e149439d71a8c52a6
242fe728d5ad32a889439a09fe2a1e17378ab17e
d68fa8747bc01b0e97d47db745adccfe036f17505431f93440f3ee4fcbdd8603

HTTP Headers

GET /tmp/zip/1433/images/Rocket.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 5130
Connection: keep-alive
Date: Wed, 25 Jan 2023 02:22:46 GMT
Last-Modified: Fri, 03 Dec 2021 17:37:05 GMT
ETag: "965b34dffb67490e149439d71a8c52a6"
Cache-Control: max-age=31536000
Expires: Sat, 03 Dec 2022 17:37:04 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5rx-f8QX9wp59dGanHMJcx6Vp-EBWJR8d4_srqPfQ97XVJ911cyRNQ==
Age: 2864194

www.googletagmanager.com/gtag/js?id=G-S2B2VGGTRY

142.250.74.168

200 OK

80 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-S2B2VGGTRY
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (21849)
Size
80 kB (79499 bytes)
Hash
d1439e9303c129e31c54f0c75de80e81
233c4219811e608608e0c5ce2a89fa68622e5860
bda901b349ebc2f4a364d90ca8fe66e19d6072c6b8b5459658a6a9be4a672580

HTTP Headers

GET /gtag/js?id=G-S2B2VGGTRY HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Feb 2023 05:59:19 GMT
expires: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79499
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static-public.klickpages.com.br/tmp/zip/1433/images/Devices.png?v=1638553024

54.230.111.111

200 OK

3.8 kB

URL HTTP/1.1
static-public.klickpages.com.br/tmp/zip/1433/images/Devices.png?v=1638553024
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type
PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3846 bytes)
Hash
831ed83ea37387bcc6ea034a0feaf501
9920c0f8d09910a3f793132904915314d4bd1e6a
1d5adfa0ca7fd2dd07a3766f572e27ba60a70e933bdf3c4673133a1baa7b7496

HTTP Headers

GET /tmp/zip/1433/images/Devices.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3846
Connection: keep-alive
Date: Sat, 05 Nov 2022 02:57:13 GMT
Last-Modified: Fri, 03 Dec 2021 17:37:05 GMT
ETag: "831ed83ea37387bcc6ea034a0feaf501"
Cache-Control: max-age=31536000
Expires: Sat, 03 Dec 2022 17:37:04 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LQG2KRjVkqHr8j4QhQ6Q06oRiuTMHLUEASwqaQA-lnJjnlTGUVsTLg==
Age: 9860527

static-public.klickpages.com.br/tmp/zip/1433/images/Book.png?v=1638553024

54.230.111.111

200 OK

16 kB

URL HTTP/1.1
static-public.klickpages.com.br/tmp/zip/1433/images/Book.png?v=1638553024
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16445 bytes)
Hash
e3c98a3d9127b468e2b7ff49f9fd7fee
5db8b251703ec946055faee76314e76b20106fc2
53ed1d83b8eb7301f2867158b4d9092a65b00532ec7505ea7251fc6a16148d62

HTTP Headers

GET /tmp/zip/1433/images/Book.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 16445
Connection: keep-alive
Date: Fri, 27 Jan 2023 11:19:02 GMT
Last-Modified: Fri, 03 Dec 2021 17:37:05 GMT
ETag: "e3c98a3d9127b468e2b7ff49f9fd7fee"
Cache-Control: max-age=31536000
Expires: Sat, 03 Dec 2022 17:37:04 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lZrjUR1e6WoG2Le6nti5ZxQFom9jWYvjvROnNRPR5vANuGJOw3LWcA==
Age: 2659218

static-public.klickpages.com.br/uploads/media/file/5251078/raphael_patrick_transparncia_s.png

54.230.111.111

200 OK

40 kB

URL HTTP/1.1
static-public.klickpages.com.br/uploads/media/file/5251078/raphael_patrick_transparncia_s.png
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type
PNG image data, 2302 x 583, 8-bit/color RGBA, non-interlaced\012- data
Size
40 kB (40214 bytes)
Hash
b3219a07981fbf6f24c3bf51c6109ec2
0bc7c4ad91f6c6b6f5d26765b73630641031fcbd
024d7e22fccdee3453ff4409d792c919dc70164098e120b97ba3416ba8f5069b

HTTP Headers

GET /uploads/media/file/5251078/raphael_patrick_transparncia_s.png HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 40214
Connection: keep-alive
Date: Sun, 26 Feb 2023 18:27:45 GMT
Last-Modified: Fri, 09 Sep 2022 18:56:45 GMT
ETag: "b3219a07981fbf6f24c3bf51c6109ec2"
Cache-Control: must-revalidate,public,max-age=86400
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RmW1Vk3FEKa2jK5_rGxtPo4kwELJ5ASKJKzswSXw9eJGNC2rQMd1Mw==
Age: 41495

fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400

142.250.74.106

200 OK

1.5 kB

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.5 kB (1456 bytes)
Hash
2c10d99e55158cf43c294f8f3b62d6c6
97af7ba98680a28db8b703f1f1dcf05d0b53de50
45b07958a766ac72a374fad92a44923e7aa4420ff8dd5b7585b51f854c09a7e4

HTTP Headers

GET /css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:19 GMT
date: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2267c41ae33ba19dc2746e635fb3a4ce
1708d26622ef73a72ae428ce3c0982f8741e54d9
9947507f3d7299e256ad9b9fa2b06482e23de4108bcdb314b3c7f140d26e6ab5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Cache-Control, Backoff, Pragma, Expires, Last-Modified, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 27 Feb 2023 05:03:35 GMT
age: 3344
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b1d73c7d1e3e594a7be10b7ac62176ac
46105f3b581c409f00524674825c08343e4d71d1
7b31674705946d30e1822ddca8008520258d81a32cb11fadeded012dac2b0d13

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7B31674705946D30E1822DDCA8008520258D81A32CB11FADEDED012DAC2B0D13"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3998
Expires: Mon, 27 Feb 2023 07:05:57 GMT
Date: Mon, 27 Feb 2023 05:59:19 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e720bd8776a4866e1b266bf202adcc15
c40a456897e04380e8effd637f44ca48c1dfea42
257fa2327db8d6096d95d23099116416e87a2aa89cd08769d177a2e57be341e1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "257FA2327DB8D6096D95D23099116416E87A2AA89CD08769D177A2E57BE341E1"
Last-Modified: Sat, 25 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21554
Expires: Mon, 27 Feb 2023 11:58:33 GMT
Date: Mon, 27 Feb 2023 05:59:19 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2267c41ae33ba19dc2746e635fb3a4ce
1708d26622ef73a72ae428ce3c0982f8741e54d9
9947507f3d7299e256ad9b9fa2b06482e23de4108bcdb314b3c7f140d26e6ab5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b2ffc9a96adf221d32379861c71882a5
c658e2f09fd511b44cff41f22288b7940f52789b
344a5c0709897a8d63161912d29eab016ae6049691a48f6cd4909622ee00a64d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

52.89.71.191

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.89.71.191:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PP3nealotVhtl4iyMWLkbg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5xxH1ruBcfH7nZI+uguNE3vEiTM=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b2ffc9a96adf221d32379861c71882a5
c658e2f09fd511b44cff41f22288b7940f52789b
344a5c0709897a8d63161912d29eab016ae6049691a48f6cd4909622ee00a64d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-S2B2VGGTRY

142.250.74.168

200 OK

80 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-S2B2VGGTRY
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (21849)
Size
80 kB (79495 bytes)
Hash
330e15898ef4e7de9202056ffe608014
f358a67df2052cdadc5551900767cc0be64ab0f1
115db0d905b39a796086a75a56702148efa0bc2ad1adc524dc9661b66c111a70

HTTP Headers

GET /gtag/js?id=G-S2B2VGGTRY HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Feb 2023 05:59:20 GMT
expires: Mon, 27 Feb 2023 05:59:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79495
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-6QHXV5D3N3

142.250.74.168

200 OK

53 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-6QHXV5D3N3
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2206)
Size
53 kB (53077 bytes)
Hash
1d10dc169c3d473a73b9079a046ab47f
8996d4352b388a886b1ddb7e18cb751c1a0f6bda
3022bacdbddaf4404ed6a4ee60f134f1039f5ab476d7932744caac34166e81e2

HTTP Headers

GET /gtag/js?id=G-6QHXV5D3N3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Feb 2023 05:59:20 GMT
expires: Mon, 27 Feb 2023 05:59:20 GMT
cache-control: private, max-age=900
last-modified: Mon, 27 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53077
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
19c3fcf789f41b045a0acbf765ae8e0e
a4cdfaaf6c47865f5ebd48bfbf934d3d995d8567
66fd82545938aa3a74d9c99af524288497deed709854c630559a1abef4fd1d21

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 27 Feb 2023 05:59:20 GMT
Last-Modified: Mon, 27 Feb 2023 05:59:17 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: apHuP2VAmBp7p_oZRcKXH8GsSjn9zLClxiGL8MvmTEBCvPjXy8NHpg==
Age: 3

static-public.klickpages.com.br/tmp/zip/1433/images/Devices.png?v=1638553024

54.230.111.20

200 OK

3.8 kB

URL HTTP/2
static-public.klickpages.com.br/tmp/zip/1433/images/Devices.png?v=1638553024
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type
PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3846 bytes)
Hash
831ed83ea37387bcc6ea034a0feaf501
9920c0f8d09910a3f793132904915314d4bd1e6a
1d5adfa0ca7fd2dd07a3766f572e27ba60a70e933bdf3c4673133a1baa7b7496

HTTP Headers

GET /tmp/zip/1433/images/Devices.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 3846
date: Sat, 05 Nov 2022 02:57:13 GMT
last-modified: Fri, 03 Dec 2021 17:37:05 GMT
etag: "831ed83ea37387bcc6ea034a0feaf501"
cache-control: max-age=31536000
expires: Sat, 03 Dec 2022 17:37:04 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KR_Wvj2U0Rj4wdXul3N20rhNudFaqi98_KUv80m9IoYeYcKv822QNw==
age: 9860528
X-Firefox-Spdy: h2

static-public.klickpages.com.br/tmp/zip/1433/images/Megaphone.png?v=1638553024

54.230.111.20

200 OK

2.6 kB

URL HTTP/2
static-public.klickpages.com.br/tmp/zip/1433/images/Megaphone.png?v=1638553024
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type
PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2614 bytes)
Hash
1d9734aa5481144fc3eec8f84a71b575
db6422061a96127acd97b39d4abc7636c248f269
7ab1e5bafbc7eb88586d1252bd3b296dd57391e01052dea87fc4d8a67ceabcda

HTTP Headers

GET /tmp/zip/1433/images/Megaphone.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2614
date: Fri, 20 Jan 2023 02:31:56 GMT
last-modified: Fri, 03 Dec 2021 17:37:05 GMT
etag: "1d9734aa5481144fc3eec8f84a71b575"
cache-control: max-age=31536000
expires: Sat, 03 Dec 2022 17:37:04 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AkXr1ELBKFft_-NdhuzD2Tqn_FgGDcjWNjl284IDFnGou9UUN9TM6w==
age: 3295645
X-Firefox-Spdy: h2

static-public.klickpages.com.br/tmp/zip/1433/images/Rocket.png?v=1638553024

54.230.111.20

200 OK

5.1 kB

URL HTTP/2
static-public.klickpages.com.br/tmp/zip/1433/images/Rocket.png?v=1638553024
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type
PNG image data, 120 x 121, 8-bit/color RGBA, non-interlaced\012- data
Size
5.1 kB (5130 bytes)
Hash
965b34dffb67490e149439d71a8c52a6
242fe728d5ad32a889439a09fe2a1e17378ab17e
d68fa8747bc01b0e97d47db745adccfe036f17505431f93440f3ee4fcbdd8603

HTTP Headers

GET /tmp/zip/1433/images/Rocket.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 5130
date: Wed, 25 Jan 2023 02:22:46 GMT
last-modified: Fri, 03 Dec 2021 17:37:05 GMT
etag: "965b34dffb67490e149439d71a8c52a6"
cache-control: max-age=31536000
expires: Sat, 03 Dec 2022 17:37:04 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XpSx9OgJ4W2swT41y29J5BuT5RubVujQbY5EamcSRTFnpQxVx9IHXg==
age: 2864195
X-Firefox-Spdy: h2

static-public.klickpages.com.br/tmp/zip/1467/images/content.png?v=1638551908

54.230.111.20

200 OK

96 kB

URL HTTP/2
static-public.klickpages.com.br/tmp/zip/1467/images/content.png?v=1638551908
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type
PNG image data, 916 x 749, 8-bit/color RGBA, non-interlaced\012- data
Size
96 kB (96025 bytes)
Hash
4ddbc055bf5d5a7823ea70032590c210
fe4a7a4a92db769a8614b00537d9897658df1691
98e0a426229900fd7e87d941a76fd433628cdf8fa811cc2b6e2bba9dd7ab5ef2

HTTP Headers

GET /tmp/zip/1467/images/content.png?v=1638551908 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 96025
date: Fri, 20 Jan 2023 02:31:56 GMT
last-modified: Fri, 03 Dec 2021 17:18:29 GMT
etag: "4ddbc055bf5d5a7823ea70032590c210"
cache-control: max-age=31536000
expires: Sat, 03 Dec 2022 17:18:28 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Qw3pNHkC-iyaxT-151FsdGlmvWydmAPBrOub_u7fo6KMJncJjfDogg==
age: 3295645
X-Firefox-Spdy: h2

static-public.klickpages.com.br/tmp/zip/1433/images/Book.png?v=1638553024

54.230.111.20

200 OK

16 kB

URL HTTP/2
static-public.klickpages.com.br/tmp/zip/1433/images/Book.png?v=1638553024
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16445 bytes)
Hash
e3c98a3d9127b468e2b7ff49f9fd7fee
5db8b251703ec946055faee76314e76b20106fc2
53ed1d83b8eb7301f2867158b4d9092a65b00532ec7505ea7251fc6a16148d62

HTTP Headers

GET /tmp/zip/1433/images/Book.png?v=1638553024 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 16445
date: Fri, 27 Jan 2023 11:19:02 GMT
last-modified: Fri, 03 Dec 2021 17:37:05 GMT
etag: "e3c98a3d9127b468e2b7ff49f9fd7fee"
cache-control: max-age=31536000
expires: Sat, 03 Dec 2022 17:37:04 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iyiI1UH_pT_nKpSLFtF8BtQ7g1NLnbDRxS1SA-LB7OFxLqfgwhUL-g==
age: 2659219
X-Firefox-Spdy: h2

static-public.klickpages.com.br/uploads/media/file/5251078/raphael_patrick_transparncia_s.png

54.230.111.20

200 OK

40 kB

URL HTTP/2
static-public.klickpages.com.br/uploads/media/file/5251078/raphael_patrick_transparncia_s.png
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type
PNG image data, 2302 x 583, 8-bit/color RGBA, non-interlaced\012- data
Size
40 kB (40214 bytes)
Hash
b3219a07981fbf6f24c3bf51c6109ec2
0bc7c4ad91f6c6b6f5d26765b73630641031fcbd
024d7e22fccdee3453ff4409d792c919dc70164098e120b97ba3416ba8f5069b

HTTP Headers

GET /uploads/media/file/5251078/raphael_patrick_transparncia_s.png HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 40214
date: Sun, 26 Feb 2023 18:27:45 GMT
last-modified: Fri, 09 Sep 2022 18:56:45 GMT
etag: "b3219a07981fbf6f24c3bf51c6109ec2"
cache-control: must-revalidate,public,max-age=86400
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v7Shy1SWcK9WuoJB0PJkgVwOlAVHSx5mST_hsxFnbXD2pSI8BlWRYg==
age: 41496
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
19c3fcf789f41b045a0acbf765ae8e0e
a4cdfaaf6c47865f5ebd48bfbf934d3d995d8567
66fd82545938aa3a74d9c99af524288497deed709854c630559a1abef4fd1d21

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 27 Feb 2023 05:59:20 GMT
Etag: "63fb066f-1d7"
Server: ECS (dcb/7EEB)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Z9Bb97iZZvwkIiURyNHg1Rub2GHh0nYA9t0QEqExHZ8KdsWfMaE8Tw==

static-public.klickpages.com.br/uploads/media/file/5251072/raphael_faixa_preta_fundo_branco.png

54.230.111.20

200 OK

135 kB

URL HTTP/2
static-public.klickpages.com.br/uploads/media/file/5251072/raphael_faixa_preta_fundo_branco.png
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type
PNG image data, 398 x 399, 8-bit/color RGBA, non-interlaced\012- data
Size
135 kB (135170 bytes)
Hash
3ff84fc251a0d3bdd7005d4a79a46e82
46d06d66d45c331d030c387436367529a7643f67
46e23251dd5b28279c2eea60c2e50ee4a7ffc9fa48dc92440b49881e66345168

HTTP Headers

GET /uploads/media/file/5251072/raphael_faixa_preta_fundo_branco.png HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 135170
date: Sun, 26 Feb 2023 19:40:51 GMT
last-modified: Fri, 09 Sep 2022 18:54:43 GMT
etag: "3ff84fc251a0d3bdd7005d4a79a46e82"
cache-control: must-revalidate,public,max-age=86400
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BYlLIjZa1Y7sIsqXe4mF01Tw4ABrO0GlKVCLJNSA29KqOhcOxdFxIg==
age: 37110
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
19c3fcf789f41b045a0acbf765ae8e0e
a4cdfaaf6c47865f5ebd48bfbf934d3d995d8567
66fd82545938aa3a74d9c99af524288497deed709854c630559a1abef4fd1d21

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=90807
Date: Mon, 27 Feb 2023 05:59:20 GMT
Etag: "63fb066f-1d7"
Expires: Tue, 28 Feb 2023 07:12:47 GMT
Last-Modified: Sun, 26 Feb 2023 07:12:47 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XmmvDu5mPJrYtKwGUb6NAWvcSPGaeIDqQbl22KXXAiJ7_AjVlgk3yA==

www.3letras.com.br/

34.237.7.9

200 OK

65 kB

URL HTTP/2
www.3letras.com.br/
IP
34.237.7.9:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58791)
Size
65 kB (64590 bytes)
Hash
37477f474f247bfe9f1d75ad3f99a8f4
3ae0ab050214b675b2e6085f63320fd881ca8c02
4763dee1ec035089d0805a0ec5e9fc68ff5840df64f9a0a5b28e2326dc65a710

HTTP Headers

GET / HTTP/1.1
Host: www.3letras.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html;charset=utf-8
content-length: 64590
ratelimit-reset: 1
ratelimit-remaining: 9
x-ratelimit-remaining-second: 9
x-ratelimit-limit-second: 10
x-ratelimit-remaining-hour: 9952
x-ratelimit-limit-hour: 10000
ratelimit-limit: 10
content-security-policy: frame-ancestors 'self' sun.eduzz.com http://*.monetizze.com.br https://*.monetizze.com.br *.hotmart.com http://aporasal.net https://aporasal.net http://adf.ly https://adf.ly;
domain-kp: true
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-kong-upstream-latency: 8
x-kong-proxy-latency: 1
via: kong/3.1.1
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
19c3fcf789f41b045a0acbf765ae8e0e
a4cdfaaf6c47865f5ebd48bfbf934d3d995d8567
66fd82545938aa3a74d9c99af524288497deed709854c630559a1abef4fd1d21

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 27 Feb 2023 05:59:20 GMT
Etag: "63fb066f-1d7"
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZFLL-S_sVueOmymCRwYkUBFVHXpq7cLy5eqSG9Ao5-fOzCrqhx1q_w==

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
19c3fcf789f41b045a0acbf765ae8e0e
a4cdfaaf6c47865f5ebd48bfbf934d3d995d8567
66fd82545938aa3a74d9c99af524288497deed709854c630559a1abef4fd1d21

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 27 Feb 2023 05:59:20 GMT
Etag: "63fb066f-1d7"
Server: ECS (dcb/7EA6)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n-C6FlohEGpxboO09npuDAKBdeFOFmoTDs768m_uO48QyhK6i1yeQw==

static-public.klickpages.com.br/tmp/zip/1230/scripts/main.js?v=1563827142

54.230.111.20

200 OK

0 B

URL HTTP/2
static-public.klickpages.com.br/tmp/zip/1230/scripts/main.js?v=1563827142
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tmp/zip/1230/scripts/main.js?v=1563827142 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 0
last-modified: Tue, 15 Jun 2021 15:30:09 GMT
accept-ranges: bytes
server: AmazonS3
date: Mon, 27 Feb 2023 05:59:19 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fbBo2E9V-J7vLWY9izeCHtCn5WD_DniRu3fkAtcHOhbfWNI9D02yOQ==
age: 2
X-Firefox-Spdy: h2

static-public.klickpages.com.br/app/assets/javascripts/public/js/body/begin.js?v=1667566576

54.230.111.20

200 OK

0 B

URL HTTP/2
static-public.klickpages.com.br/app/assets/javascripts/public/js/body/begin.js?v=1667566576
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /app/assets/javascripts/public/js/body/begin.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 0
date: Tue, 27 Sep 2022 14:37:59 GMT
last-modified: Tue, 27 Sep 2022 13:33:28 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: max-age=31536000
expires: Wed, 27 Sep 2023 13:33:27 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K1iujeb9-OkqKPU8yXHicfNN8CxktFyIfpbs2eWRUv21y8TdcEBJTw==
age: 13188082
X-Firefox-Spdy: h2

static-public.klickpages.com.br/uploads/media/file/5251103/logo_raphael_patrick.png

54.230.111.20

200 OK

21 kB

URL HTTP/2
static-public.klickpages.com.br/uploads/media/file/5251103/logo_raphael_patrick.png
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type
PNG image data, 671 x 178, 8-bit/color RGB, non-interlaced\012- data
Size
21 kB (20639 bytes)
Hash
4575925bc69ee9e514d055eb7277e872
0f904f89b20479acf0748c49bfc50a8eaea857d4
3061ee50193568084d0718033a002359bc121d91e4bd072d6af3c7fc92b4ac87

HTTP Headers

GET /uploads/media/file/5251103/logo_raphael_patrick.png HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 20639
date: Sun, 26 Feb 2023 19:40:51 GMT
last-modified: Fri, 09 Sep 2022 19:03:22 GMT
etag: "4575925bc69ee9e514d055eb7277e872"
cache-control: must-revalidate,public,max-age=86400
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V_rMD8cwAvkyarPAbRGCVHRKMu3AVP7TTjQReDlwaij2BQmtEmr_ZA==
age: 37110
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.118

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.118:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
916dc5e5446ca6612fec6e27bd005076
7918acc83891fc10fbc6e21a3984a49a6c4c480a
be9e4c1fe79a5f720d5b54719e7d0dd61a18fa1d7ae610ed7fb8de8038103dc9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171466
Date: Mon, 27 Feb 2023 05:59:20 GMT
Etag: "63fc4182-1d7"
Expires: Wed, 01 Mar 2023 05:37:06 GMT
Last-Modified: Mon, 27 Feb 2023 05:37:06 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nGHeeYtv_GaTBegefcNi10b9xtwLgfUHa6RDy2KIGncM6UhWbkmCZA==

static-public.klickpages.com.br/app/assets/javascripts/public/js/body/end.js?v=1667566576

54.230.111.20

200 OK

6.1 kB

URL HTTP/2
static-public.klickpages.com.br/app/assets/javascripts/public/js/body/end.js?v=1667566576
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type
data
Size
6.1 kB (6113 bytes)
Hash
587893e15975ef3e399c0f6162bc0535
bb299c57821f0ffb6a10ba169750724ed9580e7d
7c072c099564128f2bab78130e630390a6e00b6f5bf1582de4871253265fa49e

HTTP Headers

GET /app/assets/javascripts/public/js/body/end.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Sat, 08 Oct 2022 16:09:37 GMT
last-modified: Tue, 04 Oct 2022 19:52:42 GMT
etag: W/"7eb3bd20cc263033bdee8558d2d946e6"
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 19:52:41 GMT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IKNlTK1AwUp4F8mGm1FrxBaXOyNjmTdQkVe8iShGM-BzkRkGTcZdnQ==
age: 12232183
X-Firefox-Spdy: h2

static-public.klickpages.com.br/uploads/media/file/5251661/favicon_faixa_preta.png

54.230.111.20

200 OK

34 kB

URL HTTP/2
static-public.klickpages.com.br/uploads/media/file/5251661/favicon_faixa_preta.png
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type
PNG image data, 174 x 175, 8-bit/color RGBA, non-interlaced\012- data
Size
34 kB (33934 bytes)
Hash
e95a872497e47fc838be544ab608db41
63b686f70e7a2ab9ebf6e4610239fa1d5cdb6345
702f20ec9c983f2f63b61be3c8929b06139e197ae55e98b5dbd9507a242012e8

HTTP Headers

GET /uploads/media/file/5251661/favicon_faixa_preta.png HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 33934
date: Mon, 27 Feb 2023 05:59:20 GMT
last-modified: Fri, 09 Sep 2022 21:32:38 GMT
etag: "e95a872497e47fc838be544ab608db41"
cache-control: must-revalidate,public,max-age=86400
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G8QognYyJATqHollATun6htWx7voADKwyegGoSGAqSGulabVbPcWUA==
age: 2
X-Firefox-Spdy: h2

static-public.klickpages.com.br/tmp/zip/1448/images/bg.png?v=1634840422

54.230.111.20

200 OK

176 kB

URL HTTP/2
static-public.klickpages.com.br/tmp/zip/1448/images/bg.png?v=1634840422
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1446 x 1071, 8-bit colormap, non-interlaced\012- data
Size
176 kB (175751 bytes)
Hash
567a51073b0f94b3ceffd1fc52ec5edb
455fb431549917fb40c049979e02464eacec59e5
f2fe2e7bb1d580a776d160dadf1e460e20dd62d9b4d0bcd64a8f578c9fa403fa

HTTP Headers

GET /tmp/zip/1448/images/bg.png?v=1634840422 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 175751
date: Thu, 26 Jan 2023 02:41:10 GMT
last-modified: Thu, 21 Oct 2021 18:20:23 GMT
etag: "567a51073b0f94b3ceffd1fc52ec5edb"
cache-control: max-age=31536000
expires: Fri, 21 Oct 2022 18:20:22 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uoQV0568q2QxCWwmbZwHJ3ZH78mVsHOXGviziNpfno2uCTGlAT4E2w==
age: 2776692
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
13f4d5ed1bb94cbd6d65c687b9c81868
f3e7a9795c675e58ad3ac26fb2ccef10c0663046
7d6de7212228304b4178ad6bf6428e23ea35ff96ee88c5f155ab7b6031a13b51

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
13f4d5ed1bb94cbd6d65c687b9c81868
f3e7a9795c675e58ad3ac26fb2ccef10c0663046
7d6de7212228304b4178ad6bf6428e23ea35ff96ee88c5f155ab7b6031a13b51

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
13f4d5ed1bb94cbd6d65c687b9c81868
f3e7a9795c675e58ad3ac26fb2ccef10c0663046
7d6de7212228304b4178ad6bf6428e23ea35ff96ee88c5f155ab7b6031a13b51

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

1.2 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
1.2 kB (1177 bytes)
Hash
7eb3197f3de80d6d4c97ab33d68f1ffd
77b6b26c6053c1cf8843929525b4359e856ffa53
10f363b191b2f4f1811795f3fe020e7a802491244b322f2cc0ba289f67fb3eba

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

apis.google.com/js/plus.js

172.217.21.174

200 OK

21 kB

URL HTTP/2
apis.google.com/js/plus.js
IP
172.217.21.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1429)
Size
21 kB (20950 bytes)
Hash
38049e9af1792aca7c96e27ae560fe5d
76a9f8f9f84809c3f3dc892803bf748f36aaf65f
9fa7bc33fe6cbec665847b5f51ef08797a0b742492247de7a44e2a13d33af832

HTTP Headers

GET /js/plus.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Mon, 27 Feb 2023 05:59:21 GMT
expires: Mon, 27 Feb 2023 05:59:21 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "8fd8082d36557804"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

apis.google.com/js/plusone.js

172.217.21.174

200 OK

21 kB

URL HTTP/2
apis.google.com/js/plusone.js
IP
172.217.21.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1429)
Size
21 kB (20950 bytes)
Hash
f8971f3ad662af35a2ca6871f8c78482
35a0b814d6ecec8deacc9aea87ce9be62b15d92b
a438d380bab44504b1ff13673a0e041c6ac6645d03926e7f076465d1fe049765

HTTP Headers

GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Mon, 27 Feb 2023 05:59:21 GMT
expires: Mon, 27 Feb 2023 05:59:21 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "9dea963ca1c75dde"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
558ba056bf23a0799ff7c31ddfc63907
77faec7acf2e7ae0addfced95703428e7bb003d8
71a184f74e92890736814d4266e9e1845f06e0031b7495f5302ac93e279847d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5d489919b4da18a3fbd90c84779a271b
0d23399d66702ce1395ac28aea7a199629202a9b
72449a6198683c234289989f6b100e3f13ad9a85b9b45e579f0a889e8b276cdb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5817
Cache-Control: max-age=115698
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Etag: "63fb50f2-1d7"
Expires: Tue, 28 Feb 2023 14:07:39 GMT
Last-Modified: Sun, 26 Feb 2023 12:30:42 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
558ba056bf23a0799ff7c31ddfc63907
77faec7acf2e7ae0addfced95703428e7bb003d8
71a184f74e92890736814d4266e9e1845f06e0031b7495f5302ac93e279847d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
558ba056bf23a0799ff7c31ddfc63907
77faec7acf2e7ae0addfced95703428e7bb003d8
71a184f74e92890736814d4266e9e1845f06e0031b7495f5302ac93e279847d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2

216.58.207.227

200 OK

25 kB

URL HTTP/2
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Size
25 kB (25372 bytes)
Hash
fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1

HTTP Headers

GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Feb 2023 13:03:52 GMT
expires: Thu, 22 Feb 2024 13:03:52 GMT
cache-control: public, max-age=31536000
age: 406529
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Feb 2023 13:02:36 GMT
expires: Thu, 22 Feb 2024 13:02:36 GMT
cache-control: public, max-age=31536000
age: 406605
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2

216.58.207.227

200 OK

23 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 26 Feb 2023 10:25:03 GMT
expires: Mon, 26 Feb 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 70458
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2

216.58.207.227

200 OK

23 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Size
23 kB (23236 bytes)
Hash
716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429

HTTP Headers

GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Feb 2023 17:45:56 GMT
expires: Fri, 23 Feb 2024 17:45:56 GMT
cache-control: public, max-age=31536000
age: 303205
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Feb 2023 13:09:06 GMT
expires: Wed, 21 Feb 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 492615
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

1.0 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
1.0 kB (1027 bytes)
Hash
bfe894a0fdb9a1f2f96ca2b96010b81e
9c4b3222c7f7a4dc8cd3e97a9b2c233279a0363d
930b6471e8fe33e28716c3132401fc1804ba5fb10729e34cc2b903227fd2c1fd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Feb 2023 01:50:02 GMT
expires: Sat, 24 Feb 2024 01:50:02 GMT
cache-control: public, max-age=31536000
age: 274159
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Feb 2023 04:29:09 GMT
expires: Wed, 21 Feb 2024 04:29:09 GMT
cache-control: public, max-age=31536000
age: 523812
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Feb 2023 13:15:37 GMT
expires: Thu, 22 Feb 2024 13:15:37 GMT
cache-control: public, max-age=31536000
age: 405824
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

connect.facebook.net/pt_BR/sdk.js

157.240.200.14

200 OK

1.7 kB

URL HTTP/2
connect.facebook.net/pt_BR/sdk.js
IP
157.240.200.14:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1957)
Size
1.7 kB (1685 bytes)
Hash
a7a5cd07b2ea484209d6333bae1d32e6
9a3a5ad8924bde35ac06c4d47e76aafc2966ebea
b33dd3c916d347f6637c18a2d9796af2a3a57e21bda72006959bac3bea628280

HTTP Headers

GET /pt_BR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ede628909f17bb3b2eae6c860100a3aa
etag: "24b07979e505b3c04e7603a476f4bb46"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 27 Feb 2023 06:04:13 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: p6XNB7LqSEIJ1jM7rh0y5g==
x-fb-debug: WyNFyrUMi9ODxK3YCw15bd8TMbnHfG1V9MQg2fqU6a8+1ie/TMYii4MVdLDBMqLsAWXZSbWukU4XuHWW6h7yMw==
priority: u=3,i
content-length: 1685
x-fb-trip-id: 1679558926
date: Mon, 27 Feb 2023 05:59:21 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
558ba056bf23a0799ff7c31ddfc63907
77faec7acf2e7ae0addfced95703428e7bb003d8
71a184f74e92890736814d4266e9e1845f06e0031b7495f5302ac93e279847d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
ddf5db30e653b5a4cc5d45b2e415be63
243ac1b26d91440059744a4591a50899b1d72e34
2ef4ee3291e7df7ccc2c577deb0e8ece418eb95b382783372ef65d2da4a09726

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2EF4EE3291E7DF7CCC2C577DEB0E8ECE418EB95B382783372EF65D2DA4A09726"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21572
Expires: Mon, 27 Feb 2023 11:58:53 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5d489919b4da18a3fbd90c84779a271b
0d23399d66702ce1395ac28aea7a199629202a9b
72449a6198683c234289989f6b100e3f13ad9a85b9b45e579f0a889e8b276cdb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5817
Cache-Control: max-age=115698
Content-Type: application/ocsp-response
Date: Mon, 27 Feb 2023 05:59:21 GMT
Etag: "63fb50f2-1d7"
Expires: Tue, 28 Feb 2023 14:07:39 GMT
Last-Modified: Sun, 26 Feb 2023 12:30:42 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3210
Expires: Mon, 27 Feb 2023 06:52:51 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3210
Expires: Mon, 27 Feb 2023 06:52:51 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3210
Expires: Mon, 27 Feb 2023 06:52:51 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3210
Expires: Mon, 27 Feb 2023 06:52:51 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3210
Expires: Mon, 27 Feb 2023 06:52:51 GMT
Date: Mon, 27 Feb 2023 05:59:21 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedaf7d4d-dc11-4b93-9937-ca06601d9d74.jpeg

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedaf7d4d-dc11-4b93-9937-ca06601d9d74.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8264 bytes)
Hash
d42fe09fd8188afaf59754f59adda2ed
05a92d08c73d0ff888f990a19f3a95645fc44bd5
08de831bc8c2b62065dfe7ac504c897aa60fd0d7c7294f20c6c0b4465c8fa2f0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedaf7d4d-dc11-4b93-9937-ca06601d9d74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8264
x-amzn-requestid: a3696650-7010-4c3b-b376-e797b1b8115d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A91zdG4joAMFl4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fbd015-155809a87c5b54f4719f2cb6;Sampled=0
x-amzn-remapped-date: Sun, 26 Feb 2023 21:33:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: DiQnRbCrZEVyWK3hIjUuWPKGIzxgevjZ3KEPx8XJmVwfbty_dIqnLQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6af3b573d8970d5db2a4d03354335b84.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Feb 2023 21:58:53 GMT
age: 28828
etag: "05a92d08c73d0ff888f990a19f3a95645fc44bd5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec402fde-1c7d-4dbd-8447-addb3a661518.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7926 bytes)
Hash
ffb8f5b4089baa7b82374b8fbe70ebe0
02facc492b9e6cd658e0cca772d302a881c1d99c
7f98075dee46110a3095e3c9821748846cb21167cfbdd835a9108f53f1306dab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec402fde-1c7d-4dbd-8447-addb3a661518.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7926
x-amzn-requestid: afce3b0b-4fac-4c22-8557-604cb33a3b2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A0umGFmWoAMFjaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f82af3-34d2c99729dcd2a9591b6ef2;Sampled=0
x-amzn-remapped-date: Fri, 24 Feb 2023 03:11:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oMkeYQyU0a_ItGOMCRMMZ9PKMeJRzGUW-bzBhXip84Hg7UjtgqEKxw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Feb 2023 02:01:17 GMT
age: 14284
etag: "02facc492b9e6cd658e0cca772d302a881c1d99c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9093 bytes)
Hash
2a5f3d376fe6a3a78a5d1fe136f962fb
3e9b03cc296e954d63526a4e7e75beea3130fc3b
c8cf4f1c0352102764247e4dc5a2076921e0eaa18bfd110e5b0b97a55c706690

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9093
x-amzn-requestid: 3fd9f8c8-cf10-4222-a2cc-5f18ff7b2e9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D3HqmoAMFeBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-352315613cc0c2bc7eb28e05;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: S8s54RJtScNtsl6uEFtBEHnTj4lb3l5xIWR96Kvr_SdwQQQMgSKNxA==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Feb 2023 21:34:59 GMT
age: 30262
etag: "3e9b03cc296e954d63526a4e7e75beea3130fc3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95783353-2a29-4152-9ae1-28a33f54fc0f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11750 bytes)
Hash
edd8f6f262695a70a98091f3ed7553c5
421299d703b29421d5ec0e49a25e5e58a29a0f38
6f39a73e40a669724bd8eb47e1dbc7f94de591a6608cac0fd396bcde6a0c1986

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95783353-2a29-4152-9ae1-28a33f54fc0f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11750
x-amzn-requestid: c3f10359-2eda-487c-961c-022d3dc74372
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ArXuCHc-IAMFhaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f46cbf-50d50e3e365cc7da7adfa34a;Sampled=0
x-amzn-remapped-date: Tue, 21 Feb 2023 07:03:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lIc2TaGmx6HDN0MsxRTU9EXUA-VFh2v10-Pdyci9NbJNCNgiSs3cuw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Feb 2023 02:46:15 GMT
age: 11586
etag: "421299d703b29421d5ec0e49a25e5e58a29a0f38"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff926a496-cbe3-4604-85ed-4f1913eeee5c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9445 bytes)
Hash
3e4fb58a7087b0732741cfae504f7cac
459f1c019f7dca423a40e4ddc21d23611f216b7f
0f4ba3e55fb7bfe3214bba4e4b910941dbb12f9d14c5118efe11a9489943a61f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff926a496-cbe3-4604-85ed-4f1913eeee5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9445
x-amzn-requestid: a5596ce6-f6f2-4594-94f9-2a70cc8020de
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A91yqEfloAMFk8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fbd010-448f22521a3e81886f1498de;Sampled=0
x-amzn-remapped-date: Sun, 26 Feb 2023 21:33:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: U6zHij_o5QY8e5dEwa07xw9HBSiedmVT4lXMDFb_TucZ9M-wTiY15w==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Feb 2023 21:57:23 GMT
age: 28918
etag: "459f1c019f7dca423a40e4ddc21d23611f216b7f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36bd1287-b32c-4603-9360-89332f5a1691.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6868 bytes)
Hash
98b2f7c8e759e559d28d0e2b15651bf5
dbe61e9ed7cd1f187a1b7cd24708b05c8c3b9e7e
c1d34f17f7642871ca63cb65d3fd7a33592b53e03c282ca60d9e22ecde5afdb9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36bd1287-b32c-4603-9360-89332f5a1691.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6868
x-amzn-requestid: cf613d6f-8c37-434c-b467-565409889ee9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A91zAE8zIAMFhog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fbd012-5f358161034e44d50766c19d;Sampled=0
x-amzn-remapped-date: Sun, 26 Feb 2023 21:33:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: HjL7q58a3oDSGcYoniT_tEMLriVytaxA0jQG3hoRXVq0_L3ceYShpw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 f268a165a18929fd0a24a3189fbd16b2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Feb 2023 21:58:26 GMT
age: 28855
etag: "dbe61e9ed7cd1f187a1b7cd24708b05c8c3b9e7e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 27 Feb 2023 05:53:25 GMT
expires: Mon, 27 Feb 2023 07:53:25 GMT
cache-control: public, max-age=7200
age: 356
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-S2B2VGGTRY&gtm=45je32m0&_p=1197115690&cid=1472467545.1677477672&ul=en-us&sr=1280x1024&_s=1&sid=1677477672&sct=1&seg=0&dl=https%3A%2F%2Fwww.3letras.com.br%2F&dr=http%3A%2F%2Fwww.3letras.com.br%2F&dt=Nova%20P%C3%A1gina&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-S2B2VGGTRY&gtm=45je32m0&_p=1197115690&cid=1472467545.1677477672&ul=en-us&sr=1280x1024&_s=1&sid=1677477672&sct=1&seg=0&dl=https%3A%2F%2Fwww.3letras.com.br%2F&dr=http%3A%2F%2Fwww.3letras.com.br%2F&dt=Nova%20P%C3%A1gina&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-S2B2VGGTRY&gtm=45je32m0&_p=1197115690&cid=1472467545.1677477672&ul=en-us&sr=1280x1024&_s=1&sid=1677477672&sct=1&seg=0&dl=https%3A%2F%2Fwww.3letras.com.br%2F&dr=http%3A%2F%2Fwww.3letras.com.br%2F&dt=Nova%20P%C3%A1gina&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.3letras.com.br
date: Mon, 27 Feb 2023 05:59:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static-public.klickpages.com.br/tmp/zip/1230/styles/main.css?v=1563827142

54.230.111.20

200 OK

0 B

URL HTTP/2
static-public.klickpages.com.br/tmp/zip/1230/styles/main.css?v=1563827142
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tmp/zip/1230/styles/main.css?v=1563827142 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
date: Tue, 10 Jan 2023 01:38:34 GMT
last-modified: Mon, 22 Jul 2019 20:25:43 GMT
etag: W/"6c7d12485a91906afcbcf81bcdf28450"
cache-control: max-age=31536000
expires: Wed, 22 Jul 2020 20:25:42 GMT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EsIFkdUx49StBhmf3qXzRz6UvOaL0MhAR6N1YOUJO5LU6NC2UQImPQ==
age: 4162847
X-Firefox-Spdy: h2

static-public.klickpages.com.br/app/assets/javascripts/libs/libs.js?v=1667566576

54.230.111.20

200 OK

0 B

URL HTTP/2
static-public.klickpages.com.br/app/assets/javascripts/libs/libs.js?v=1667566576
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/assets/javascripts/libs/libs.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 27 Sep 2022 14:38:00 GMT
last-modified: Tue, 27 Sep 2022 13:34:03 GMT
etag: W/"4888e1579f4ec72d319cbcfb9d508b1e"
cache-control: max-age=31536000
expires: Wed, 27 Sep 2023 13:34:02 GMT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OhY0RCJVH2ddstNfLXrPeASZ2Y38No9WIPsj46dKGB2-XFYa5nAUyg==
age: 13188081
X-Firefox-Spdy: h2

www.3letras.com.br/

34.237.7.9

200 OK

0 B

URL HTTP/1.1
www.3letras.com.br/
IP
34.237.7.9:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: www.3letras.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
Content-Length: 64590
Connection: keep-alive
RateLimit-Reset: 1
RateLimit-Remaining: 9
X-RateLimit-Remaining-Second: 9
X-RateLimit-Limit-Second: 10
X-RateLimit-Remaining-Hour: 9939
X-RateLimit-Limit-Hour: 10000
RateLimit-Limit: 10
Content-Security-Policy: frame-ancestors 'self' sun.eduzz.com http://*.monetizze.com.br https://*.monetizze.com.br *.hotmart.com http://aporasal.net https://aporasal.net http://adf.ly https://adf.ly;
Domain-KP: true
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Kong-Upstream-Latency: 7
X-Kong-Proxy-Latency: 0
Via: kong/3.1.1

fonts.googleapis.com/css2?family=Roboto:wght@300;400;700;900&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@300;400;700;900&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Roboto:wght@300;400;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:19 GMT
date: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Oswald:wght@300;400;700&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Oswald:wght@300;400;700&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Oswald:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:19 GMT
date: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans:300,400,600,700,800,italic|Varela+Round:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:20 GMT
date: Mon, 27 Feb 2023 05:59:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static-public.klickpages.com.br/app/assets/javascripts/public/js/include.js?v=1667566576

54.230.111.20

200 OK

0 B

URL HTTP/2
static-public.klickpages.com.br/app/assets/javascripts/public/js/include.js?v=1667566576
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/assets/javascripts/public/js/include.js?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Sat, 08 Oct 2022 02:15:07 GMT
last-modified: Tue, 04 Oct 2022 19:53:01 GMT
etag: W/"e3c62a2610fa173d5cb5b2c7f3b88537"
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 19:53:00 GMT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZXrIH0HKdUyBqyTscRHPu9wW7Xmxo6ZdjJKMUbu5js2hdO4atelnQA==
age: 12282253
X-Firefox-Spdy: h2

static-public.klickpages.com.br/tmp/zip/1467/images/content.png?v=1638551908

54.230.111.111

200 OK

0 B

URL HTTP/1.1
static-public.klickpages.com.br/tmp/zip/1467/images/content.png?v=1638551908
IP
54.230.111.111:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tmp/zip/1467/images/content.png?v=1638551908 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3letras.com.br/

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 96025
Connection: keep-alive
Date: Fri, 20 Jan 2023 02:31:56 GMT
Last-Modified: Fri, 03 Dec 2021 17:18:29 GMT
ETag: "4ddbc055bf5d5a7823ea70032590c210"
Cache-Control: max-age=31536000
Expires: Sat, 03 Dec 2022 17:18:28 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lXLEbTKF6SetOQpDd1mkSG2KFHy66CQcFaSqrGtyvHnqgaKzG6QDvg==
Age: 3295644

fonts.googleapis.com/css2?family=Roboto:wght@300;400;700&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@300;400;700&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Roboto:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:19 GMT
date: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Dosis:300,500,700|Just+Another+Hand|Lato:%27100italic%27,%27300italic%27,%27400italic%27,%27700italic%27,%27900italic%27,100,300,400,700,900|Lora:%27400italic%27,%27700italic%27,400,700|Montserrat:300,400,500,700|Oswald:300,400,700|Open+Sans:%27300italic%27,%27400italic%27,%27600italic%27,%27700italic%27,300,400,600,700|Open+Sans+Condensed:%27300italic%27,300,700|Roboto:%27100italic%27,%27300italic%27,%27400italic%27,%27500italic%27,%27700italic%27,%27900italic%27,100,300,400,500,700,900|Raleway:%27300italic%27,%27400italic%27,%27700italic%27,300,400,700|Nunito:%27wght@200%27,400,700,800|Vollkorn:%27ital,,400,500,600,700,800,900,wght@0,

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Dosis:300,500,700|Just+Another+Hand|Lato:%27100italic%27,%27300italic%27,%27400italic%27,%27700italic%27,%27900italic%27,100,300,400,700,900|Lora:%27400italic%27,%27700italic%27,400,700|Montserrat:300,400,500,700|Oswald:300,400,700|Open+Sans:%27300italic%27,%27400italic%27,%27600italic%27,%27700italic%27,300,400,600,700|Open+Sans+Condensed:%27300italic%27,300,700|Roboto:%27100italic%27,%27300italic%27,%27400italic%27,%27500italic%27,%27700italic%27,%27900italic%27,100,300,400,500,700,900|Raleway:%27300italic%27,%27400italic%27,%27700italic%27,300,400,700|Nunito:%27wght@200%27,400,700,800|Vollkorn:%27ital,,400,500,600,700,800,900,wght@0,
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Dosis:300,500,700|Just+Another+Hand|Lato:%27100italic%27,%27300italic%27,%27400italic%27,%27700italic%27,%27900italic%27,100,300,400,700,900|Lora:%27400italic%27,%27700italic%27,400,700|Montserrat:300,400,500,700|Oswald:300,400,700|Open+Sans:%27300italic%27,%27400italic%27,%27600italic%27,%27700italic%27,300,400,600,700|Open+Sans+Condensed:%27300italic%27,300,700|Roboto:%27100italic%27,%27300italic%27,%27400italic%27,%27500italic%27,%27700italic%27,%27900italic%27,100,300,400,500,700,900|Raleway:%27300italic%27,%27400italic%27,%27700italic%27,300,400,700|Nunito:%27wght@200%27,400,700,800|Vollkorn:%27ital,,400,500,600,700,800,900,wght@0, HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Feb 2023 05:59:19 GMT
date: Mon, 27 Feb 2023 05:59:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static-public.klickpages.com.br/app/assets/stylesheets/publish.css?v=1667566576

54.230.111.20

200 OK

0 B

URL HTTP/2
static-public.klickpages.com.br/app/assets/stylesheets/publish.css?v=1667566576
IP
54.230.111.20:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/assets/stylesheets/publish.css?v=1667566576 HTTP/1.1
Host: static-public.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
date: Tue, 27 Sep 2022 14:37:52 GMT
last-modified: Tue, 27 Sep 2022 13:34:12 GMT
etag: W/"72f69325dff9b9e8272258d103ed9298"
cache-control: max-age=31536000
expires: Wed, 27 Sep 2023 13:34:11 GMT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9SJIpw91nHrtg2O_Sd63xmGdqzASne7OtnDp966J3C5wHo1yTbwklw==
age: 13188089
X-Firefox-Spdy: h2

art.klickpages.com.br/public/server/date_time

172.64.144.43

200 OK

0 B

URL HTTP/2
art.klickpages.com.br/public/server/date_time
IP
172.64.144.43:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /public/server/date_time HTTP/1.1
Host: art.klickpages.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.3letras.com.br
Connection: keep-alive
Referer: https://www.3letras.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 27 Feb 2023 05:59:21 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-expose-headers: 
access-control-max-age: 1728000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
etag: W/"88d218d0f4be649bb14d1bbd81e06e00"
cache-control: max-age=0, private, must-revalidate
vary: Origin
x-request-id: 00866d91-1d38-4929-b69d-232ce93966f9
x-runtime: 0.019811
cf-cache-status: DYNAMIC
set-cookie: klickpages_locale=en; domain=.klickpages.com.br; path=/; expires=Sun, 25 Feb 2024 20:01:40 -0000
__cf_bm=MQZj766zjqIsoyJJ3LExlC5EvH72.UeKVFtO_9uop0A-1677477561-0-ATseEDL7xgGEXTwejSLxNUZaEL5lIK44R7i3Sh8pSSFP6TVEgshz2gBpcZXfqlSiGqyVJ425z1XFXceZY6AyXx8=; path=/; expires=Mon, 27-Feb-23 06:29:21 GMT; domain=.klickpages.com.br; HttpOnly; Secure; SameSite=None
__cfruid=b4176e0c890a5cd281fad70658b570180e01f9da-1677477561; path=/; domain=.klickpages.com.br; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 79feb1a6feaab518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML