r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5170
Expires: Wed, 28 Sep 2022 04:03:14 GMT
Date: Wed, 28 Sep 2022 02:37:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 02:15:37 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: o5HDUvXiS5wDcm8b0r9fZVRF_LOau3Mc26Se4XVZcYTtogSOXJ_ZXA==
Age: 1287
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lg9XwpV5uQVl-lOYPkhm4ylOgtZBS921V0s7ZVPKMkd_L6NpSdtXZg==
age: 61971
X-Firefox-Spdy: h2
revista-2085082.azurewebsites.net/renner/inicio/login.php
301 Moved Permanently 0 B URL HTTP/1.1 revista-2085082.azurewebsites.net/renner/inicio/login.php
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /renner/inicio/login.php HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Date: Wed, 28 Sep 2022 02:37:04 GMT
Location: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:37:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 28 Sep 2022 02:10:46 GMT
Expires: Wed, 28 Sep 2022 02:12:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0wdeg5EGp0zVm8OrrlL7dq3iT_JKBR5NrHqnjK7QTa7y1OhxwokGNg==
Age: 1579
ocsp.digicert.com/
200 OK 471 B IP
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5322
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:05 GMT
Last-Modified: Wed, 28 Sep 2022 01:08:23 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-N2FTFQ
200 OK 49 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N2FTFQ
IP
File type ASCII text, with very long lines (3707)
Hash c4cd7484d453080b2b91ae2b2d5f0190
93161378f56e031d6cc1f23b437915cdf5031158
250ddaa284b9c03efe1146f0738032713137276935d78764e660873f77305ec9
GET /gtm.js?id=GTM-N2FTFQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 02:37:05 GMT
expires: Wed, 28 Sep 2022 02:37:05 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48902
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
revista-2085082.azurewebsites.net/renner/inicio/login.php
200 OK 128 kB URL HTTP/1.1 revista-2085082.azurewebsites.net/renner/inicio/login.php
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (667)
Size 128 kB (128232 bytes)
Hash 4e4dabf2a5daa9da15981e9db571badd
f629bc90f68c29e2ce6464ad352ac3af9fe6b5ea
22e66d3e6a0ea2d226d6a9d143f4000273a250e7b35bd8792b10d894001fd73d
Analyzer Verdict Alert fortinet Phishing
GET /renner/inicio/login.php HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Wed, 28 Sep 2022 02:37:05 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
X-Powered-By: PHP/8.0.19
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /5Ck+jBKFps304wwpR11yw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: In08HDAj/PAWJ5IwAPVxtWT8VRY=
ocsp.digicert.com/
200 OK 278 B IP
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6212
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:05 GMT
Last-Modified: Wed, 28 Sep 2022 00:53:33 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 278 B IP
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6212
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:05 GMT
Last-Modified: Wed, 28 Sep 2022 00:53:33 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 278
cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
200 OK 27 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
File type ASCII text, with very long lines (65451)
Hash 77bd61b98f7b67af56639229724f8dd4
f04f07dd8ff53e58c32b738f81b71a014bca441d
8ce54c3b77bf31899b27b29188ff4936b580f2bd2b3222d43dda2851ba272e24
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 02:37:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 27433
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-1538f"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 226
expires: Mon, 18 Sep 2023 02:37:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3ngnklM8h8BLNAP%2FcGRg7%2F1IVleQpiKwZK59Bt%2BR9NVULBaxiB0HgPEt6NKfuGtFbOh6Z6eq0ZBZkdbvynw71LXPClUXMLhBboN%2BYpPLgU%2FDvalJiLMdkkeGkFd8BetO3d4YyTuw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7519185f8b22b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6212
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:05 GMT
Last-Modified: Wed, 28 Sep 2022 00:53:33 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5e01e4cfb215a3f052b4c716bc77c1a6
6e63b3e883051319571310c44b87591f0312d83f
aebb544e0762c6c3eb289d85c20299baa3f742dc46cfa5bcc33ac6df411285ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?onload=onLoadRecaptcha&render=explicit&hl=pt-BR
200 OK 577 B URL HTTP/2 www.google.com/recaptcha/api.js?onload=onLoadRecaptcha&render=explicit&hl=pt-BR
IP
File type ASCII text, with very long lines (913), with no line terminators
Hash 1cabadc7c2f1772988eada3a342c7d4b
c567f9c6f4b23c49d6215d90ccafcd311f0adbac
2a506a2727b89bcd5b033d98a80f5be4251d9d453924d3dcde3a77037db054af
GET /recaptcha/api.js?onload=onLoadRecaptcha&render=explicit&hl=pt-BR HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 28 Sep 2022 02:37:05 GMT
date: Wed, 28 Sep 2022 02:37:05 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 577
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
revista-2085082.azurewebsites.net/cartoes-renner/js/vendors.bundle-859d26788acf215a201a.js
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/js/vendors.bundle-859d26788acf215a201a.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/js/vendors.bundle-859d26788acf215a201a.js HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:05 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
revista-2085082.azurewebsites.net/cartoes-renner/js/main.bundle-af99510fd5623f73dd00.js
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/js/main.bundle-af99510fd5623f73dd00.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/js/main.bundle-af99510fd5623f73dd00.js HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
revista-2085082.azurewebsites.net/cartoes-renner/js/2.bundle-f1f55db44dc2d8d8d302.js
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/js/2.bundle-f1f55db44dc2d8d8d302.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/js/2.bundle-f1f55db44dc2d8d8d302.js HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
revista-2085082.azurewebsites.net/cartoes-renner/js/3.bundle-b50fd5103304ce6835d8.js
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/js/3.bundle-b50fd5103304ce6835d8.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/js/3.bundle-b50fd5103304ce6835d8.js HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 09de3f9b993678d3283307dbef6e3445
c57a8146f99bc641a8a067265e277b0e79fd94f7
0173661df06b9c63a9ca182b5c1b8d2d545999afe41b0a3084e36951924e4299
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 02:37:06 GMT
Last-Modified: Wed, 28 Sep 2022 01:25:58 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bwRwcnWexCPJ7o63zkfPJAJY8RK33nBdWC5x3VHeCMbzFLPQLawALQ==
Age: 4269
revista-2085082.azurewebsites.net/ruxitagentjs_D_10249220905100923.js
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/ruxitagentjs_D_10249220905100923.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /ruxitagentjs_D_10249220905100923.js HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
revista-2085082.azurewebsites.net/cartoes-renner/js/2.bundle-f1f55db44dc2d8d8d302.js
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/js/2.bundle-f1f55db44dc2d8d8d302.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/js/2.bundle-f1f55db44dc2d8d8d302.js HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
revista-2085082.azurewebsites.net/ruxitagentjs_D_10249220905100923.js
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/ruxitagentjs_D_10249220905100923.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /ruxitagentjs_D_10249220905100923.js HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/PRMRaAwB3KlylGQR57Dyk-pF/styles__ltr.css
200 OK 24 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/PRMRaAwB3KlylGQR57Dyk-pF/styles__ltr.css
IP
File type ASCII text, with very long lines (52762), with no line terminators
Hash f2d649025c814be9c33f166a5e04fe88
26bf59de631415927ba2c6c9e44fe9c763f95313
f95ec963b7657097e1ef827fc07d96eda5b63f7d3e17b5a1b5eeb7a8d0b67921
GET /recaptcha/releases/PRMRaAwB3KlylGQR57Dyk-pF/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24251
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 00:57:17 GMT
expires: Wed, 27 Sep 2023 00:57:17 GMT
cache-control: public, max-age=31536000
age: 92389
last-modified: Mon, 15 Aug 2022 20:03:29 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
revista-2085082.azurewebsites.net/cartoes-renner/vectors/whatsapp.svg
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/vectors/whatsapp.svg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/vectors/whatsapp.svg HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
revista-2085082.azurewebsites.net/cartoes-renner/js/vendors.bundle-859d26788acf215a201a.js
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/js/vendors.bundle-859d26788acf215a201a.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/js/vendors.bundle-859d26788acf215a201a.js HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
revista-2085082.azurewebsites.net/cartoes-renner/vectors/bg-login.svg
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/vectors/bg-login.svg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/vectors/bg-login.svg HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
cdn.pmweb.com.br/df/tag.js?id=PM-N2FTFQ
200 OK 9.2 kB URL HTTP/1.1 cdn.pmweb.com.br/df/tag.js?id=PM-N2FTFQ
IP
File type ASCII text, with very long lines (22651), with no line terminators
Hash bb462b00b14c20c1058237a188f4033b
6cb3f0724e5b750d6d1ae92518a9126314368e7b
ff1a4463eadc1c7e0bce4edd7635a026f7106130efd1c27bd4bb8af6104edf08
GET /df/tag.js?id=PM-N2FTFQ HTTP/1.1
Host: cdn.pmweb.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=300
Content-Encoding: gzip
Content-Type: application/javascript
Date: Wed, 28 Sep 2022 02:37:06 GMT
ETag: W/"63335e7e-587b"
Expires: Wed, 28 Sep 2022 02:42:06 GMT
Last-Modified: Tue, 27 Sep 2022 20:35:10 GMT
Server: nginx
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Vary: Accept-Encoding
Content-Length: 9197
Connection: keep-alive
www.gstatic.com/recaptcha/releases/PRMRaAwB3KlylGQR57Dyk-pF/recaptcha__pt_br.js
200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/PRMRaAwB3KlylGQR57Dyk-pF/recaptcha__pt_br.js
IP
File type ASCII text, with very long lines (661)
Size 158 kB (158387 bytes)
Hash 714a6dee54312535c0e0332e05e2ebee
bd78198f31ccd04d76e83216071da0e0d630999e
4d1824b700ec7315410f205cfe89aec8c2d2fb92d4bcb7e7cac7afee3eaafcb5
GET /recaptcha/releases/PRMRaAwB3KlylGQR57Dyk-pF/recaptcha__pt_br.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158387
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 12:41:55 GMT
expires: Mon, 25 Sep 2023 12:41:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 20:03:29 GMT
content-type: text/javascript
age: 222911
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Regular.woff2
404 Not Found 153 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Regular.woff2
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ac5ea41aae137cead073d37a7bb732bc
85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae
fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7
GET /cartoes-renner/fonts/Roboto-Regular.woff2 HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Bold.woff2
404 Not Found 153 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Bold.woff2
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ac5ea41aae137cead073d37a7bb732bc
85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae
fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7
GET /cartoes-renner/fonts/Roboto-Bold.woff2 HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Black.woff2
404 Not Found 153 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Black.woff2
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ac5ea41aae137cead073d37a7bb732bc
85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae
fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7
GET /cartoes-renner/fonts/Roboto-Black.woff2 HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
revista-2085082.azurewebsites.net/cartoes-renner/js/main.bundle-af99510fd5623f73dd00.js
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/js/main.bundle-af99510fd5623f73dd00.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/js/main.bundle-af99510fd5623f73dd00.js HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Regular.woff
404 Not Found 153 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Regular.woff
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ac5ea41aae137cead073d37a7bb732bc
85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae
fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7
GET /cartoes-renner/fonts/Roboto-Regular.woff HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-; _pm_id=690201664332624227; _pm_sid=480441664332624228
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Bold.woff
404 Not Found 153 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Bold.woff
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ac5ea41aae137cead073d37a7bb732bc
85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae
fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7
GET /cartoes-renner/fonts/Roboto-Bold.woff HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-; _pm_id=690201664332624227; _pm_sid=480441664332624228
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Black.woff
404 Not Found 153 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Black.woff
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ac5ea41aae137cead073d37a7bb732bc
85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae
fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7
GET /cartoes-renner/fonts/Roboto-Black.woff HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-; _pm_id=690201664332624227; _pm_sid=480441664332624228
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3457
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Wed, 28 Sep 2022 02:37:06 GMT
Connection: keep-alive
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Regular.ttf
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Regular.ttf
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/fonts/Roboto-Regular.ttf HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-; _pm_id=690201664332624227; _pm_sid=480441664332624228
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash c157622abc2881860117a5c511cfd089
4df9c12db30a07cbe0fc2e017ee68f6013eceb67
12f19814e22ece52c6e8f3bd2010d30bd7465b990c9200ab05ac22dc292a1a4b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 02:37:06 GMT
Last-Modified: Wed, 28 Sep 2022 00:56:28 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RJhQn4WSFtIiCgH9WPb72RzKEInPBewH706tcvmtzrISfjyQDd3WeQ==
Age: 6038
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Light.woff2
404 Not Found 153 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Light.woff2
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ac5ea41aae137cead073d37a7bb732bc
85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae
fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7
GET /cartoes-renner/fonts/Roboto-Light.woff2 HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3457
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Wed, 28 Sep 2022 02:37:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3457
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Wed, 28 Sep 2022 02:37:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3457
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Wed, 28 Sep 2022 02:37:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: 626c21ec-f29b-4b69-b275-c22c864c2409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VmENnIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c23-75eccc381fbd6e5d4ff59c06;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Eyy8qoYVCJbt6b6hTGJ-rOrYex9RuX1InyZbpHkeu9yQqPUEvowKcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
age: 17288
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Bold.ttf
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Bold.ttf
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/fonts/Roboto-Bold.ttf HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-; _pm_id=690201664332624227; _pm_sid=480441664332624228
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3e1fd3401c5e635a8dbeec5f78b721d
2142075b27d0d355c51231ab06fea46e25eb9c59
2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Vak91l2UKRnX0Go62y1yPwJ8E-Af7XBurmQATw5MSZXBqhUJrIgOCQ==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 04:59:08 GMT
age: 77878
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Black.ttf
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Black.ttf
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/fonts/Roboto-Black.ttf HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-; _pm_id=690201664332624227; _pm_sid=480441664332624228
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:06 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb17f4e8-cf01-41dc-8d4d-247daf3e0160.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb17f4e8-cf01-41dc-8d4d-247daf3e0160.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d039db0b842a4cbbaefdaab98bc6722b
78b1a603c4f7f2d6fbad15d7a4cd1397554339e9
65a3c7b0515cfd2a723f3bc3147cb98f3dd75ce1ecfce915c7c8e9ba5ae0bf2d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb17f4e8-cf01-41dc-8d4d-247daf3e0160.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14018
x-amzn-requestid: fb0f02e7-1ce0-4861-9446-13d60df06f24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3xSEhCIAMFWkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cd4-79f482493d204a1208fad00f;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZAov4fpWAjIBhHfeYEwu39wJTG58HnW7ebekpIoNSgA7PLIs5b7sSg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:28:52 GMT
age: 14894
etag: "78b1a603c4f7f2d6fbad15d7a4cd1397554339e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 0ceafc65-764c-4367-b031-257061eb65d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF00oAMFUpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-0d46481b7394081b14a81131;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ve8l6PxpMuBLt5BxwywNpqM2ISt0zy2r_gweYnVw4X65PBEhpMbckg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:00 GMT
age: 17466
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pR4b1-lZZRMnWf-PdXFGXaHBCGAfOyp3AjeuCvtu5imWmf9N9l2wKQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:38 GMT
age: 17308
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 2001b3c9c0edad96c2d9eda795fa7efc
5fb256828f5af1568a2d6f22773d3e06d28e775d
4068495a1533e912ca8e587d6ae64fdd946bb873f8299f16cab05830e76950a7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 02:37:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 12:18:09 GMT
Expires: Tue, 04 Oct 2022 12:18:08 GMT
Etag: "5fb256828f5af1568a2d6f22773d3e06d28e775d"
Cache-Control: max-age=552660,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75191866db95b4f9-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 2001b3c9c0edad96c2d9eda795fa7efc
5fb256828f5af1568a2d6f22773d3e06d28e775d
4068495a1533e912ca8e587d6ae64fdd946bb873f8299f16cab05830e76950a7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 02:37:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 12:18:09 GMT
Expires: Tue, 04 Oct 2022 12:18:08 GMT
Etag: "5fb256828f5af1568a2d6f22773d3e06d28e775d"
Cache-Control: max-age=552660,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75191866fda41c02-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 2001b3c9c0edad96c2d9eda795fa7efc
5fb256828f5af1568a2d6f22773d3e06d28e775d
4068495a1533e912ca8e587d6ae64fdd946bb873f8299f16cab05830e76950a7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 02:37:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 12:18:09 GMT
Expires: Tue, 04 Oct 2022 12:18:08 GMT
Etag: "5fb256828f5af1568a2d6f22773d3e06d28e775d"
Cache-Control: max-age=552660,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751918672daf1c02-OSL
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Light.woff
404 Not Found 153 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Light.woff
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ac5ea41aae137cead073d37a7bb732bc
85bde4b57e1f38bd7ff0e6cf4b6ac5f626a5fbae
fcdc802dabd14bed15efb9235ee0decac4adb6908dca03eeba74e2bf8f4eb5a7
GET /cartoes-renner/fonts/Roboto-Light.woff HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h1vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334423486|1664332623481; dtLatC=412; dtSa=-; _pm_id=690201664332624227; _pm_sid=480441664332624228
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:07 GMT
Server: nginx/1.22.0
ocsp.sectigo.com/
200 OK 472 B IP
Hash 2001b3c9c0edad96c2d9eda795fa7efc
5fb256828f5af1568a2d6f22773d3e06d28e775d
4068495a1533e912ca8e587d6ae64fdd946bb873f8299f16cab05830e76950a7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 02:37:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 12:18:09 GMT
Expires: Tue, 04 Oct 2022 12:18:08 GMT
Etag: "5fb256828f5af1568a2d6f22773d3e06d28e775d"
Cache-Control: max-age=552660,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751918670d5eb515-OSL
s3-sa-east-1.amazonaws.com/frame-image-br/bg.png?x-id=real&x-r=
200 OK 0 B URL HTTP/1.1 s3-sa-east-1.amazonaws.com/frame-image-br/bg.png?x-id=real&x-r=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /frame-image-br/bg.png?x-id=real&x-r= HTTP/1.1
Host: s3-sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +rPUOCrHtgD0iM4fBrHETHpOpsvVhRXFXgU02Qxd+qrR0q3RfY3nbW4yR3c+lDmdasluX4dlyFc=
x-amz-request-id: 4R4WG8TN65FAQWBY
Date: Wed, 28 Sep 2022 02:37:08 GMT
Last-Modified: Thu, 04 May 2017 08:21:21 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-meta-s3cmd-attrs: uid:502/gname:staff/uname:user/gid:20/mode:33188/mtime:1493416832/atime:1493796970/md5:d41d8cd98f00b204e9800998ecf8427e/ctime:1493416832
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 0
revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Light.ttf
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/fonts/Roboto-Light.ttf
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/fonts/Roboto-Light.ttf HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h4vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334424765|1664332623481; dtLatC=412; dtSa=-; _pm_id=690201664332624227; _pm_sid=480441664332624228
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:07 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
www.realizesolucoesfinanceiras.com.br/cartoes-renner/vectors/google-play-badge.svg
200 OK 4.1 kB URL HTTP/1.1 www.realizesolucoesfinanceiras.com.br/cartoes-renner/vectors/google-play-badge.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (10785)
Hash 1c129f8fb2eacc18c9fb615f27cd120d
046ac834889efee3a7a7184ef09a1fd76dc9ac6a
234865093b4eebfc55170640bd67c45c09a2d3754ea78196bb14534032aaff76
GET /cartoes-renner/vectors/google-play-badge.svg HTTP/1.1
Host: www.realizesolucoesfinanceiras.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 02:37:07 GMT
Content-Type: image/svg+xml
Last-Modified: Wed, 27 Jul 2022 20:31:47 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62e1a0b3-2a22"
Server-Timing: dtSInfo;desc="1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Strict-Transport-Security: max-age=16070400; includeSubDomains
X-Frame-Options: deny
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Set-Cookie: dtCookie=v_4_srv_3_sn_FFCC9A59739BA142C5887610D91D3AD0_perc_100000_ol_0_mul_1_app-3A189e25234ffe70ce_1_rcs-3Acss_0; Path=/; Domain=.realizesolucoesfinanceiras.com.br
LBSessionID=!2GTOyvGDI5knygEwvU4xC4Cc5ENYpZVUaWxGN0wEFJ6MW//hyPeKxvDQmkWfDsRxkJOR+7RmRSZO6uI=; path=/
TS0129a473=01c0c86495a27dee95d3a32454aca35e644d6ec888928f1235d264c68f9cd41bba8730f42be442cf79840dc661844983820a49d366; Path=/
TS01fa365e=01c0c86495a27dee95d3a32454aca35e644d6ec888928f1235d264c68f9cd41bba8730f42be442cf79840dc661844983820a49d366; path=/; domain=.realizesolucoesfinanceiras.com.br
Transfer-Encoding: chunked
www.realizesolucoesfinanceiras.com.br/cartoes-renner/vectors/app-store-badge.svg
200 OK 3.2 kB URL HTTP/1.1 www.realizesolucoesfinanceiras.com.br/cartoes-renner/vectors/app-store-badge.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (14261)
Hash 668f84fa44206efd24ee39cc62335448
2e30dbcadf25bb30cd215c730697f78bc5cb7169
4c6d88babbcc1b9aa250e2cfcb04d7af282a7e8b093e5ed0bde51fc64b2efead
GET /cartoes-renner/vectors/app-store-badge.svg HTTP/1.1
Host: www.realizesolucoesfinanceiras.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 02:37:07 GMT
Content-Type: image/svg+xml
Last-Modified: Wed, 27 Jul 2022 20:31:47 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62e1a0b3-37b6"
Server-Timing: dtSInfo;desc="1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Strict-Transport-Security: max-age=16070400; includeSubDomains
X-Frame-Options: deny
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Set-Cookie: dtCookie=v_4_srv_4_sn_25BE29E4864A8F3399A263B4F8FC7B64_perc_100000_ol_0_mul_1_app-3A189e25234ffe70ce_1_rcs-3Acss_0; Path=/; Domain=.realizesolucoesfinanceiras.com.br
LBSessionID=!7UXNT87Vp2Au0GowvU4xC4Cc5ENYpdANP6Pa0AjngIdWMvYp7FLFaMaNdc/ZabAcCN1GpZk8VxL0; path=/
TS0129a473=01c0c864951433a9007bb981c1c68591b4ae85804c08b0cae23fba9cf5f6ee9bc7f231e7c16188fa06295becd5c00b6b9542a32372; Path=/
TS01fa365e=01c0c864951433a9007bb981c1c68591b4ae85804c08b0cae23fba9cf5f6ee9bc7f231e7c16188fa06295becd5c00b6b9542a32372; path=/; domain=.realizesolucoesfinanceiras.com.br
Transfer-Encoding: chunked
www.realizesolucoesfinanceiras.com.br/cartoes-renner/vectors/google-play-badge-reverse.svg
200 OK 4.1 kB URL HTTP/1.1 www.realizesolucoesfinanceiras.com.br/cartoes-renner/vectors/google-play-badge-reverse.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (10788)
Hash 7b19842be289959083f32598c7a28948
cf017a80268641be5d07e92752bf8d9810e9784a
fcdcdc5d4255b28025c96a0a5cebf4c63d6f76dd51b0dbe2ba5e34d080257d21
GET /cartoes-renner/vectors/google-play-badge-reverse.svg HTTP/1.1
Host: www.realizesolucoesfinanceiras.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 02:37:07 GMT
Content-Type: image/svg+xml
Last-Modified: Wed, 27 Jul 2022 20:31:47 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62e1a0b3-2a25"
Server-Timing: dtSInfo;desc="1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Strict-Transport-Security: max-age=16070400; includeSubDomains
X-Frame-Options: deny
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Set-Cookie: dtCookie=v_4_srv_10_sn_EDE16AAF971200A1A60E30FC15B1A176_perc_100000_ol_0_mul_1_app-3A189e25234ffe70ce_1_rcs-3Acss_0; Path=/; Domain=.realizesolucoesfinanceiras.com.br
LBSessionID=!ljHgbPBpcD6jUUAwvU4xC4Cc5ENYpdluzyRgCKz14me59Em4TlM1d50h9XAOHwld6uAXRJmuZd+FoC8=; path=/
TS0129a473=01c0c86495f34c692acb1059c2801c094ad7dd603befa8a83ecfba3daeade50babba02095b3abd5560622221bb65695eb874288c2d; Path=/
TS01fa365e=01c0c86495f34c692acb1059c2801c094ad7dd603befa8a83ecfba3daeade50babba02095b3abd5560622221bb65695eb874288c2d; path=/; domain=.realizesolucoesfinanceiras.com.br
Transfer-Encoding: chunked
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 28 Sep 2022 00:41:09 GMT
expires: Wed, 28 Sep 2022 02:41:09 GMT
cache-control: public, max-age=7200
age: 6958
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/gtm/js?id=GTM-W9SBWRL&cid=103686931.1660754357
200 OK 42 kB URL HTTP/2 www.google-analytics.com/gtm/js?id=GTM-W9SBWRL&cid=103686931.1660754357
IP
File type ASCII text, with very long lines (2039)
Hash 16bfbbf957f6b24045623faba4dfc5ab
aa5f972c831c6b544dcde0c5f4c2c1262ccd04b8
021bfbd128c284235860792f9fa4b1aaeaaeea9cb286dc234a05f9bde9f0ad79
GET /gtm/js?id=GTM-W9SBWRL&cid=103686931.1660754357 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 02:37:07 GMT
expires: Wed, 28 Sep 2022 02:37:07 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41671
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
revista-2085082.azurewebsites.net/favicon.ico
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/favicon.ico
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /favicon.ico HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=-85$532623471_348h4vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334424765|1664332623481; dtLatC=412; dtSa=-; _pm_id=690201664332624227; _pm_sid=480441664332624228
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:07 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
df.pmweb.com.br/push/?aid=PM-N2FTFQ&cid=690201664332624227&sid=480441664332624228&pvw=81f47163-f6f4-4222-a6aa-df25f1d7f180&v=1.19.0&rs=1280x1024&tt=Cart%C3%B5es%20Renner&ws=1280x1024&os=Linux%20x86_64&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&url=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&add=%7B%22err%22%3A%5B%22unable%20to%20decode%20object%22%5D%7D
200 OK 2 B URL HTTP/1.1 df.pmweb.com.br/push/?aid=PM-N2FTFQ&cid=690201664332624227&sid=480441664332624228&pvw=81f47163-f6f4-4222-a6aa-df25f1d7f180&v=1.19.0&rs=1280x1024&tt=Cart%C3%B5es%20Renner&ws=1280x1024&os=Linux%20x86_64&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&url=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&add=%7B%22err%22%3A%5B%22unable%20to%20decode%20object%22%5D%7D
IP
File type ASCII text, with no line terminators
Hash 50585be4e3159a71c874c590d2ba12ec
fb17882585bbfe9c55733a6e46a265ddaea6957a
54d626e08c1c802b305dad30b7e54a82f102390cc92c7d4db112048935236e9c
GET /push/?aid=PM-N2FTFQ&cid=690201664332624227&sid=480441664332624228&pvw=81f47163-f6f4-4222-a6aa-df25f1d7f180&v=1.19.0&rs=1280x1024&tt=Cart%C3%B5es%20Renner&ws=1280x1024&os=Linux%20x86_64&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&url=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&add=%7B%22err%22%3A%5B%22unable%20to%20decode%20object%22%5D%7D HTTP/1.1
Host: df.pmweb.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://revista-2085082.azurewebsites.net
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://revista-2085082.azurewebsites.net
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/plain
Date: Wed, 28 Sep 2022 02:37:07 GMT
Expires: 0
Pragma: no-cache
Server: nginx
Set-Cookie: _pm_uid=690201664332624227; path=/; domain=pmweb.com.br; secure; Expires=Fri, 27-Sep-2024 02:37:07 GMT
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Content-Length: 2
Connection: keep-alive
googleads.g.doubleclick.net/pagead/html/r20220922/r20190131/zrt_lookup.html
200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220922/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220922/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Tue, 27 Sep 2022 21:21:01 GMT
expires: Tue, 11 Oct 2022 21:21:01 GMT
cache-control: public, max-age=1209600
age: 18967
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash a22907a20661d4f4729ddce23a1f5479
9682e795445a23ef65560eedd3b81c20fc612d5c
51d5e050faff08d6340c57ff6ea4560e1a32db71d297efe725277f2a2a88befe
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 02:37:08 GMT
Last-Modified: Wed, 28 Sep 2022 02:04:56 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KAE9nXqa_PO8pRqb0p2Csrk34DQp4HNIcluSc0QDIStZileuvraJoQ==
Age: 1932
bf73995led.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH&svrid=-85&flavor=cors&vi=MUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0&modifiedSince=1661969913947&rf=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&bp=3&app=189e25234ffe70ce&crc=786656281&en=ovxxhecl&end=1
200 OK 760 B URL HTTP/2 bf73995led.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH&svrid=-85&flavor=cors&vi=MUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0&modifiedSince=1661969913947&rf=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&bp=3&app=189e25234ffe70ce&crc=786656281&en=ovxxhecl&end=1
IP
File type ASCII text, with very long lines (760), with no line terminators
Hash df1a9d65da14621c22bb384b6daeadee
ce96873dc5933f82db720d0356537ff0e2626834
97dc06360e309843211c4de84c79f0f719b9e8763163b0b4a2b20f56e1e81b87
POST /bf?type=js3&sn=v_4_srv_-2D85_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH&svrid=-85&flavor=cors&vi=MUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0&modifiedSince=1661969913947&rf=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&bp=3&app=189e25234ffe70ce&crc=786656281&en=ovxxhecl&end=1 HTTP/1.1
Host: bf73995led.bf.dynatrace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 603
Origin: https://revista-2085082.azurewebsites.net
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 02:37:08 GMT
content-type: text/plain;charset=utf-8
content-length: 760
set-cookie: dtCookie=v_4_srv_9_sn_2E97F6F3DB3BC555C561A40E5C7BDA9E_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1; Path=/; Domain=.dynatrace.com
x-oneagent-js-injection: true
access-control-allow-origin: https://revista-2085082.azurewebsites.net
cache-control: no-cache
X-Firefox-Spdy: h2
www.realizesolucoesfinanceiras.com.br/cartoes-renner/images/celular-login.png
200 OK 155 kB URL HTTP/1.1 www.realizesolucoesfinanceiras.com.br/cartoes-renner/images/celular-login.png
IP
File type PNG image data, 379 x 485, 8-bit/color RGBA, non-interlaced\012- data
Size 155 kB (155176 bytes)
Hash e624d089f9b2fff768b6b592285a4f12
bef94cbbf3c93e3cc8cc45975065216efc046336
7db4ada57262fbacd47bef4e96e3cedda276b9267e6ca4d20adeeb1c24d870b6
GET /cartoes-renner/images/celular-login.png HTTP/1.1
Host: www.realizesolucoesfinanceiras.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 02:37:07 GMT
Content-Type: image/png
Content-Length: 155176
Last-Modified: Wed, 27 Jul 2022 20:31:47 GMT
Connection: keep-alive
ETag: "62e1a0b3-25e28"
Server-Timing: dtSInfo;desc="0", dtRpid;desc="501509434"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Strict-Transport-Security: max-age=16070400; includeSubDomains
X-Frame-Options: deny
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
Set-Cookie: dtCookie=v_4_srv_8_sn_4ACB99B1F70C3A00DAFFED2D56C9AB54_perc_100000_ol_0_mul_1_app-3A189e25234ffe70ce_1_rcs-3Acss_1; Path=/; Domain=.realizesolucoesfinanceiras.com.br
LBSessionID=!ZMhd6VLsdQlSgyMwvU4xC4Cc5ENYpXUw9gKfYaEmqa4TNsUutB03ODGc/gqkfowFZBMarvkyvNtvig0=; path=/
TS0129a473=01c0c864955dc72e2e701ec8c089eeec991b0408a7f2f66313df173cede032b176f2f1b6e045bdab79522294f49d22ec93ec1fcea0; Path=/
TS01fa365e=01c0c864955dc72e2e701ec8c089eeec991b0408a7f2f66313df173cede032b176f2f1b6e045bdab79522294f49d22ec93ec1fcea0; path=/; domain=.realizesolucoesfinanceiras.com.br
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 553d32dd4cc8e05b91f7bebc94f0ac4a
715ee18c314776a43e4faa33b689356246567e3f
77ffc37d779019267e4ed820be18d8f3ac8247e236de23bd7bb43d8f54ed0c4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ef12641bb4d59312b43f4f06ae2cee73
5450eaf271bf466e6aa58b63d52b49b66c5f4a6f
894fd5dabf39c09179591f3305d88ef71eb467ddeb1fc5c568dc377c3a1317d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=revista-2085082.azurewebsites.net&callback=_gfp_s_&client=ca-pub-7890629395260020
200 OK 207 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=revista-2085082.azurewebsites.net&callback=_gfp_s_&client=ca-pub-7890629395260020
IP
File type ASCII text, with no line terminators
Hash 52c863c0825d453d31cbb2c3c10b217b
9ff589c47bc3ddaab9396ad70c84c6a615426bf8
5b010789ff73b1eeec61918405ce55ed52a8869031e85a4955010db1f152a0db
GET /gampad/cookie.js?domain=revista-2085082.azurewebsites.net&callback=_gfp_s_&client=ca-pub-7890629395260020 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 28 Sep 2022 02:37:08 GMT
server: cafe
cache-control: private
content-length: 207
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=revista-2085082.azurewebsites.net
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=revista-2085082.azurewebsites.net
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=revista-2085082.azurewebsites.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 28 Sep 2022 02:37:08 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=revista-2085082.azurewebsites.net
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=revista-2085082.azurewebsites.net
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=revista-2085082.azurewebsites.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 28 Sep 2022 02:37:08 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 553d32dd4cc8e05b91f7bebc94f0ac4a
715ee18c314776a43e4faa33b689356246567e3f
77ffc37d779019267e4ed820be18d8f3ac8247e236de23bd7bb43d8f54ed0c4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ef12641bb4d59312b43f4f06ae2cee73
5450eaf271bf466e6aa58b63d52b49b66c5f4a6f
894fd5dabf39c09179591f3305d88ef71eb467ddeb1fc5c568dc377c3a1317d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 042c38716faa379dfe35bfc0e350d539
f604c07161c10f251501fe5bf3ea534beb6ea865
2038294cc39316a8f13c431224609cd186f9e115b792f0b8f0f22f039c9d9ed8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:37:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 28 Sep 2022 02:37:08 GMT
expires: Wed, 28 Sep 2022 02:37:08 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 13:42:03 GMT
expires: Mon, 25 Sep 2023 13:42:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 219305
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
revista-2085082.azurewebsites.net/cartoes-renner/vectors/bg-login.svg
404 Not Found 114 B URL HTTP/1.1 revista-2085082.azurewebsites.net/cartoes-renner/vectors/bg-login.svg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9841984dca9ab290d79563f36ae6d8d
35a6cc4edf0c92bd155144871968659dafb4d1c3
546c212f587bf539f97ed64bbc3ae6c09bd7ee64976e71f091df859c217a0c14
GET /cartoes-renner/vectors/bg-login.svg HTTP/1.1
Host: revista-2085082.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/renner/inicio/login.php
Cookie: dtCookie=v_4_srv_1_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1_rcs-3Acss_0; rxVisitor=1664332623479USRKETRMJGE6QE6R4EK98AB8ICB9K666; dtPC=1$532623471_348h-vMUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0e0; rxvt=1664334426032|1664332623481; dtLatC=412; dtSa=-; _pm_id=690201664332624227; _pm_sid=480441664332624228; _ga=GA1.3.1607409384.1664332626; _gid=GA1.3.1322581336.1664332626
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 28 Sep 2022 02:37:09 GMT
Server: nginx/1.22.0
Content-Encoding: gzip
Transfer-Encoding: chunked
bf73995led.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_1_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1_rcs-3Acss_0&svrid=1&flavor=cors&vi=MUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0&modifiedSince=1664306954142&rf=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&bp=3&app=189e25234ffe70ce&crc=915765472&en=ovxxhecl&end=1
200 OK 222 B URL HTTP/2 bf73995led.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_1_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1_rcs-3Acss_0&svrid=1&flavor=cors&vi=MUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0&modifiedSince=1664306954142&rf=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&bp=3&app=189e25234ffe70ce&crc=915765472&en=ovxxhecl&end=1
IP
File type ASCII text, with no line terminators
Hash 1baec029b06d0549a4bd91432e667462
0532b2d3b2e8e44d73697d776fb60a7e98af1781
cbee37a51da6b63c92be83721b5f8b6d86dd9caebef86b7b3074a539505bd52d
POST /bf?type=js3&sn=v_4_srv_1_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1_rcs-3Acss_0&svrid=1&flavor=cors&vi=MUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0&modifiedSince=1664306954142&rf=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&bp=3&app=189e25234ffe70ce&crc=915765472&en=ovxxhecl&end=1 HTTP/1.1
Host: bf73995led.bf.dynatrace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2025
Origin: https://revista-2085082.azurewebsites.net
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 02:37:09 GMT
content-type: text/plain;charset=utf-8
content-length: 222
set-cookie: dtCookie=v_4_srv_6_sn_5DFE8B45959808D01B87F4DC0C41AC59_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1; Path=/; Domain=.dynatrace.com
x-oneagent-js-injection: true
access-control-allow-origin: https://revista-2085082.azurewebsites.net
cache-control: no-cache
X-Firefox-Spdy: h2
bf73995led.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_1_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1_rcs-3Acss_0&svrid=1&flavor=cors&vi=MUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0&modifiedSince=1664306954142&rf=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&bp=3&app=189e25234ffe70ce&crc=3154750156&en=ovxxhecl&end=1
200 OK 222 B URL HTTP/2 bf73995led.bf.dynatrace.com/bf?type=js3&sn=v_4_srv_1_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1_rcs-3Acss_0&svrid=1&flavor=cors&vi=MUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0&modifiedSince=1664306954142&rf=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&bp=3&app=189e25234ffe70ce&crc=3154750156&en=ovxxhecl&end=1
IP
File type ASCII text, with no line terminators
Hash 1baec029b06d0549a4bd91432e667462
0532b2d3b2e8e44d73697d776fb60a7e98af1781
cbee37a51da6b63c92be83721b5f8b6d86dd9caebef86b7b3074a539505bd52d
POST /bf?type=js3&sn=v_4_srv_1_sn_GEEC8ILOH24UVQ5EK87PDK3N5VMFIVLH_app-3A189e25234ffe70ce_1_ol_0_perc_100000_mul_1_rcs-3Acss_0&svrid=1&flavor=cors&vi=MUUVAHTMWAVACKPLPGRRAUMPCTPUNEOC-0&modifiedSince=1664306954142&rf=https%3A%2F%2Frevista-2085082.azurewebsites.net%2Frenner%2Finicio%2Flogin.php&bp=3&app=189e25234ffe70ce&crc=3154750156&en=ovxxhecl&end=1 HTTP/1.1
Host: bf73995led.bf.dynatrace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 8993
Origin: https://revista-2085082.azurewebsites.net
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 02:37:11 GMT
content-type: text/plain;charset=utf-8
content-length: 222
set-cookie: dtCookie=v_4_srv_9_sn_B83FAF276BD710FB9E11FDD0559E7CCC_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1; Path=/; Domain=.dynatrace.com
x-oneagent-js-injection: true
access-control-allow-origin: https://revista-2085082.azurewebsites.net
cache-control: no-cache
X-Firefox-Spdy: h2
js-cdn.dynatrace.com/jstag/157944990f8/bf73995led/189e25234ffe70ce_complete.js
200 OK 0 B URL HTTP/2 js-cdn.dynatrace.com/jstag/157944990f8/bf73995led/189e25234ffe70ce_complete.js
IP
GET /jstag/157944990f8/bf73995led/189e25234ffe70ce_complete.js HTTP/1.1
Host: js-cdn.dynatrace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://revista-2085082.azurewebsites.net
Connection: keep-alive
Referer: https://revista-2085082.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
date: Wed, 28 Sep 2022 02:15:57 GMT
x-oneagent-js-injection: true
traffic-source: UNKNOWN
dynatrace-response-source: Cluster
dynatrace-response-id: F1JEY06TN6G9
expires: Wed, 28 Sep 2022 03:15:57 GMT
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zKBXjAMR8j05EmS_l-l98XutjRhDmpN3bwqwvbO3FoPab38jVQC_sw==
age: 1268
X-Firefox-Spdy: h2
20.118.40.5
54.207.135.96
23.36.77.32
93.184.220.29
104.17.25.14