Report - www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77

Report Overview

Submitted URL
www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77
IP
192.185.223.116
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-09-26 19:36:27
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
js.adsrvr.org	1664	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	2.4 kB	143.204.45.46
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	4.6 kB	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	64 kB	34.120.237.76
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	16 kB	142.250.74.164
primegestaoempresarial.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	996 B	192.185.223.116
www.primegestaoempresarial.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.2 kB	311 kB	192.185.223.116
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	6.3 kB	142.250.74.3
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
prism.app-us1.com	8479	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	637 B	462 B	104.17.146.91
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.191.222.112
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	617 B	724 B	64.233.162.155
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	21 kB	142.250.74.174
bat.bing.com	387	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	14 kB	204.79.197.200
diffuser-cdn.app-us1.com	8451	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	6.4 kB	104.17.146.91
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	984 B	2.0 kB	216.58.207.194
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.5 kB	23.36.77.32
www.alaskausa.org	258465	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	10 kB	544 kB	107.162.171.161
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	1.5 kB	142.250.74.3
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	90 kB	142.250.74.72
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	905 B	576 B	216.239.32.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-26	medium	www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusafonts.css?20181128	Phishing
2022-09-26	medium	www.primegestaoempresarial.com/trade/alaska/alaskausa/fonts/PTN57F-webfont.woff	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (31)

	URL	Size	First Seen	Last Seen
	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	128 B	2023-03-07	2024-01-05
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2024-01-05 05:27:41 Times Seen4 Hash f07adaf58e962a8636afb754a9a04c2e b021913ba6d249ad7f4c70dd66a33cf8d0b76252 ac9be3e1a371da333602f7b42406e5a5c9a78f1e3dab0a2e9477cd9d6ad8c1ec Loading...

	www.alaskausa.org/js/jquery/slick/slick.181.js	93 kB	2023-03-07	2023-03-26
Pretty URL www.alaskausa.org/js/jquery/slick/slick.181.js IP 107.162.171.161 ASN #55002 DEFENSE-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-26 01:30:26 Times Seen10 Hash c88b659245280b7e064ed3c720aaa368 864106461b00976f8def844e06f0dc00f028737d 03adc4dc515be5d90fd135e9745f7833c80c921a5b054e827067bf6ef0171fb3 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	2.6 kB	2023-03-07	2023-03-17
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash 6fe3e4fb2d9423fa87cf9a0e0f570d96 b96bd7e228457964510c9ec7ddad67dea9d98dcc 948ec3177d0f9d3dc161c66cda556aee42ddac698738d1348154a7f99c3c5904 Loading...

	bat.bing.com/bat.js	39 kB	2023-03-07	2023-08-25
Pretty URL bat.bing.com/bat.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2023-08-25 07:33:07 Times Seen42 Hash 16911c194f6e9313655f07c4eb9d8737 d39ccfa8c6d785af331afafe9e36336031f41b64 30153b15b4cb898c421e657f6de21dc27435cb990e7888367bdee12e06398da7 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	536 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen3 Hash bf6492ad4b44f40b0ed4812ae01a05b6 8f786af39fd683a566e2ca0fdb45447348c19bcf 390938fbb57c9783619ad47e76eaa4a928ce28174b33c7bd30518ec5f61110b9 Loading...

	js.adsrvr.org/up_loader.1.1.0.js	4.6 kB	2023-03-07	2023-11-04
Pretty URL js.adsrvr.org/up_loader.1.1.0.js IP 143.204.45.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:29 Last Seen2023-11-04 15:38:59 Times Seen1096 Hash 98d98b3499058b76d58073cf8ede2f10 2ec5bc839a187c2a4d93499567e8fff091a6bcc4 ee3a7301fe1e0c0f6bf6acff0d7a8d107f5cb3f62a2566740c0416d8e61f00b9 Loading...

	www.googletagmanager.com/gtag/js?id=DC-9253762	108 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=DC-9253762 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:55:37 Last Seen2023-03-08 01:55:37 Times Seen1 Hash f8ecbf28abcc3dad4674a49bd3afd439 8b614f979114368e3f167d4d02042003bf1b694e 7ce81ab46edd2adf84efe350469f86fcf24bb284a47b4b87bdcb632ea70111ff Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	21 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen16 Hash 5486f6bd2145349490f8c1293260cfa0 8b10f7228174f4f2ecf3300b23a450f8926f34ca e7699f5d57673c2c06cecb431d256633befdf0eac4f44315a4ce3ff1b913893a Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	21 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen16 Hash 1ba1ef9c3b171a3703ef0e64f2ffb7a8 548642466bdfadb4b960614c92c043cc7bef2dac 1e591cd403a488c386f34d87f816993f1e515601081767abb1a088500ae37e63 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	21 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen16 Hash 3d73b1cb46543e532addca54e6761e8a 321bfdb72be1fadaaac2f1f4bdaef1c03375f3b6 2195b38e503e53362cb64f64eea69f3732e826168219ce6e6072f6fff774d186 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	1.9 kB	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen13 Hash e2558cbe5c29ec305b5cd4c47f287ef8 8a666fefbd7c01295d1e9a07b13eba3469c38b3b 1779ec38e53e032e19aede583bb1250b7e4d0a921b62d2155a6998ce6ff8b90f Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	369 B	2023-03-07	2024-01-05
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2024-01-05 05:27:40 Times Seen4 Hash d850fa304b04e914feba514c236e913a 79cbb2b9a9ddd76d75be39d73fb6ed261776110d 8937f5aecff9ef1acd3186c7852a35305538447c1a107c54429714bc997b2d96 Loading...

	www.alaskausa.org/js/jquery.accAccordion.js	7.7 kB	2023-03-07	2023-09-07
Pretty URL www.alaskausa.org/js/jquery.accAccordion.js IP 107.162.171.161 ASN #55002 DEFENSE-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen4 Hash ff5441be8da9b57a6c30df693f64a7a6 b9cb6de18497bd3c9b07ab57e933466b67ff420d f7e3eb312cccb6419c3aec05f31125d606b83c1fe8c91b30a13e8ed4f6403aab Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	1.9 kB	2023-03-07	2023-03-17
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash 4597f6e22792d7b33e97809b5d4b2f2c 12886b4bed472a962ff81b82ec76828bd91bd5d6 9b96bae40f4dd9d0de901fc75e3c2c4a88157dbb3ff9120da78a4a2d9b1c14dd Loading...

	www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js	11 kB	2023-03-07	2023-09-07
Pretty URL www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js IP 107.162.171.161 ASN #55002 DEFENSE-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen14 Hash 6d3d6210fd17d11eebdcc9151064e213 757bc1fba335ef0387fb8e05ccf7d67111c67aa7 02ca1096a4032bceab99b6b588b0763f3eac608d12852dc1b0252601ad062bd5 Loading...

	www.alaskausa.org/js/jquery-1.11.3.min.js	96 kB	2023-03-07	2024-04-24
Pretty URL www.alaskausa.org/js/jquery-1.11.3.min.js IP 107.162.171.161 ASN #55002 DEFENSE-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:25 Last Seen2024-04-24 12:05:43 Times Seen10328 Hash 895323ed2f7258af4fae2c738c8aea49 276c87ff3e1e3155679c318938e74e5c1b76d809 ecb916133a9376911f10bc5c659952eb0031e457f5df367cde560edbfba38fb8 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	21 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen16 Hash 2cb38a08323dbd99f3c05c4616bc6b77 c30aedbb04242c9228a33b1e26015b61f410c697 241cbf472bf26a2896d6e8138d7929d29a33d4f7b53b67df13b957d23b130fee Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	2.1 kB	2023-03-07	2023-03-17
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash ddaec52f9dbaad4bdbd816217c8da05c ba8fcc8c51f7a9368e330e2df4de59e0c71cf1e6 63057254646b8a0da4b267966e36a11c675626980d1502fb98d831af85c31f95 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-01-06
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:05:31 Last Seen2024-01-06 17:39:53 Times Seen66 Hash 99ba52a15d2da967b023016d1af58cbd 5c2246049c43834d17113877b4731bd4f9803d55 9e25469f734732205f33dd80ff8ca12080406c18d2fa99a1f368103e51f7999f Loading...

	diffuser-cdn.app-us1.com/diffuser/diffuser.js	24 kB	2023-03-07	2023-04-05
Pretty URL diffuser-cdn.app-us1.com/diffuser/diffuser.js IP 104.17.146.91 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2023-04-05 02:07:52 Times Seen69 Hash 4d482a43613d3966f353ec9d97452e0c 4acc9cf492267ab6d351fb11246431bd7d6e6387 15eb202865d1d835fae2eff61bb922fa91fb4064a1fb850ebadab1f190782648 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	1.4 kB	2023-03-07	2024-04-23
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:29 Last Seen2024-04-23 17:39:59 Times Seen287 Hash bc9a8eaf3e6b50449dc8f17dce6ceb87 a6ed79412905a29eb6af6ab06ee65c243a8f2fae df143682c1457ed20ef47ab92cd113032a69bbe9e5217688a8e45f952a43fa3f Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	21 B	2023-03-07	2023-09-07
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-09-07 01:19:38 Times Seen16 Hash 7d9beb4228a4a1f0daa00afca638f5e2 230f4efcbc655ff11c63dd971bd221bccff18446 fbb381a648bd49f1af1d726ec051d75c14632c3f1fa39ffbe2b08ab9c2544b6d Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/831978068/?random=1664220977393&cv=9&fst=1664220977393&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&tiba=Alaska%20USA%20services%20for%20you&auid=1731113509.1664220975&hn=www.google.com&async=1&rfmt=3&fmt=4	2.6 kB	2023-03-08	2023-03-08
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/831978068/?random=1664220977393&cv=9&fst=1664220977393&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&tiba=Alaska%20USA%20services%20for%20you&auid=1731113509.1664220975&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:55:37 Last Seen2023-03-08 01:55:37 Times Seen1 Hash 92e94b345d7dfcc52806d06811891a88 c015cc98b40c9576784bda2ffca94a6c3f9a6d9b 5e3512c73f39f73dc4a87635a077e81cf725bd8bb5404fadc7e5f65d9b78d4e7 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-W942G3C	331 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-W942G3C IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:55:37 Last Seen2023-03-08 01:55:37 Times Seen1 Hash f63e95de8a53aa640aab999be9cf89ae 94f2ecd15d5a9edbfafb30c76b0b9e3059eeccaa 15f7108cf33cda1632f5f86be3dc77e32413f72458ead46567db07129605feaa Loading...

	www.googletagmanager.com/gtag/js?id=G-R11FYFZ8HF&l=dataLayer&cx=c	224 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-R11FYFZ8HF&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:55:37 Last Seen2023-03-08 01:55:37 Times Seen1 Hash 6a3bfe94bdb2ea6ca8996131fca640dc 25e692a94571968dac619505f1a6094febc72655 85569ce04453ca6fd618443c3c0b34fcdfe1e5150db572b21ded123e0015aefc Loading...

	prism.app-us1.com/?a=25948200&u=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	0 B	2023-03-07	2024-04-24
Pretty URL prism.app-us1.com/?a=25948200&u=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 104.17.146.91 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 12:24:37 Times Seen37038498 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.google.com/pagead/conversion_async.js	42 kB	2023-03-07	2023-03-17
Pretty URL www.google.com/pagead/conversion_async.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:28:40 Last Seen2023-03-17 12:55:48 Times Seen1 Hash cedb242a337140e0dedb365b50a20508 cf2420a336b9405dfc7d236ec57873fe3ef0f726 5a39699f592d82029c73d15d80e407d51367dd5cf2d49172c9ad4aa8176ce67b Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	341 B	2023-03-07	2024-01-05
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2024-01-05 05:27:40 Times Seen4 Hash 0042a19ac90d66cf42c4fa1396ecbbf6 d883aa293ca29321e8896a7cf39c464da09ed8b8 8ef4331d4b04cbd19d10a754b740b98907c2a38be09588e92efcd9710a6a803b Loading...

	www.alaskausa.org/js/jsSuite-1.9.5.js	62 kB	2023-03-07	2023-03-17
Pretty URL www.alaskausa.org/js/jsSuite-1.9.5.js IP 107.162.171.161 ASN #55002 DEFENSE-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash f83afd46a48a88ab3f867c648f8895cc 8e2e043ef90c8a1d7aae93ee7d6de51def5fb89a bca5da5fbdc9292cedb816e85db8980b5fbacf78e21d460b56aca95750ad5a43 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	4.2 kB	2023-03-07	2023-03-17
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash 5d8832b4db7422e5ac2e20f9062467c0 4d4eecfbb032fff43310e8d4be7a3259347ecde9 883e21d8985860b938fbf3929b44c9db4caf951b163131b25a0d83ec0eaff157 Loading...

	www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77	172 B	2023-03-07	2023-03-17
Pretty URL www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 IP 192.185.223.116 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:12 Last Seen2023-03-17 12:55:47 Times Seen1 Hash 1da4f5fdcdee6acc88ecf93522ccc86d dabbc02df9bb7c1f45b475cff0d692986f3e6fcd c250946ecf2aebf7c0fda8ec3f64635517af2d84704b2ea8a6f958d2ad98410a Loading...

HTTP Transactions (88)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 19:15:19 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: miSsYc7I6aSNoa_oXGtb_FRuJM5mRvdWviEMa124zwBYe1szoZ0LBw==
Age: 1257

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11282
Expires: Mon, 26 Sep 2022 22:44:18 GMT
Date: Mon, 26 Sep 2022 19:36:16 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xal221-PRRN5WD76PWmmpvy2dTS0LzEkGBR6UkjbA7VJYK8ZxA1fKw==
age: 54061
X-Firefox-Spdy: h2

www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77

192.185.223.116

200 OK

18 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (619)
Size
18 kB (17687 bytes)
Hash
cfcddf41689322e51787539a500fbeed
145175540879399149eeacc39cec658ceaf58deb
0c03cf00ca288f06d69d083331eaaf7172a6af51eaebdcf2a5aea921bcb652fa

HTTP Headers

GET /trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:16 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Cache-Control: max-age=7200
Expires: Mon, 26 Sep 2022 21:36:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 19:36:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusafonts.css?20181128

192.185.223.116

200 OK

985 B

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusafonts.css?20181128
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
985 B (985 bytes)
Hash
2832fd8c6093a6482abd5d03dba4b181
78de3c2fa52aa5739e39deb08df1c101b9cd02e5
b95a2d58f8845fcb3dd2d0b8ee143dccda6a657aa595743cc31938a6fb8e8560

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /trade/alaska/alaskausa/css/akusafonts.css?20181128 HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:16 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 19 Aug 2019 19:03:44 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 26 Oct 2022 19:36:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 985
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-base.css

192.185.223.116

200 OK

11 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-base.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
11 kB (11412 bytes)
Hash
80a9abd6868890f89f1d64cc33e0625d
d267a76a9147c8f07d8525413430db60064194c8
871c2c02c19d392816f126fbb02429d20336252ba8c4326e7620789a584d4c20

HTTP Headers

GET /trade/alaska/alaskausa/css/akusa-base.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:16 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:18:48 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 26 Oct 2022 19:36:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 11412
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-desktop.css

192.185.223.116

200 OK

8.1 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-desktop.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (844)
Size
8.1 kB (8059 bytes)
Hash
b8571d507427020217147bdc30da2a2d
acd7df2d1292a7d28f8150b327622f1e7e617f36
90f6bca86ac0fe663729d5709780e90efcf84cf66f9fc6009b0b9f7e1cb2672d

HTTP Headers

GET /trade/alaska/alaskausa/css/akusa-desktop.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:16 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 19 Aug 2019 19:19:48 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 26 Oct 2022 19:36:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 8059
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/slick.css

192.185.223.116

200 OK

1.2 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/slick.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
1.2 kB (1172 bytes)
Hash
edd4f206bae3305768fe1ac66326c628
1c6b6757720e1be115f3b3daa928788f7caf321e
0350d03e29134f29d2dc6cb31008a694df413e5d9f0cf878661163077df283ec

HTTP Headers

GET /trade/alaska/alaskausa/css/slick.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:16 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:22:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 26 Oct 2022 19:36:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1172
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-home.css

192.185.223.116

200 OK

2.5 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-home.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
2.5 kB (2482 bytes)
Hash
a936fd01faf11623fafca380b0544fb4
30a6ae8d9328e3552314d6d808a9f5477502860a
075a2848420902f8ebd3cc514df26cb5a141b9050e600a1ee6e767b4f20feeb9

HTTP Headers

GET /trade/alaska/alaskausa/css/akusa-home.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:16 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 19 Aug 2019 19:23:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 26 Oct 2022 19:36:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2482
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.googletagmanager.com/gtm.js?id=GTM-W942G3C

142.250.74.72

200 OK

90 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-W942G3C
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (58138)
Size
90 kB (89675 bytes)
Hash
e6550df22a956d2818cfecac5eee74da
7afb26ffc341f8c9350ff28abcce02bc32c98789
f089c81fbb84a2273413bfbad9494f787f62007adac55797526e5e6a856bac3c

HTTP Headers

GET /gtm.js?id=GTM-W942G3C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 19:36:16 GMT
expires: Mon, 26 Sep 2022 19:36:16 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89675
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 26 Sep 2022 19:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Mon, 26 Sep 2022 19:26:17 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aCIonx0Y_7eezeXRDHs5DY2V8VlKTnhecSGg4FGBCKBHJKKC7HQwMQ==
Age: 1531

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c939f97c8bcbfea356e92036803714bc
608c795e7c4fb943a4db49a4e4533c41ea717023
b05b38c78c15c259720bfc6783ac65ab60ceb1e6037b45b08113f183554f08cb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.primegestaoempresarial.com/trade/alaska/alaskausa/images/header_bg.png

192.185.223.116

200 OK

8.1 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/images/header_bg.png
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 156 x 165, 8-bit/color RGB, non-interlaced\012- data
Size
8.1 kB (8058 bytes)
Hash
f420d4563192f414fabc27808342a8b2
80d69a4a339f6ddfe991d41d798d9a58fa0a21ea
5cd6b433131a0f7972117a1de73410cd07059f385b4dceb1e99b1c9dd6351fb6

HTTP Headers

GET /trade/alaska/alaskausa/images/header_bg.png HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-desktop.css

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:17 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:50:32 GMT
Accept-Ranges: bytes
Content-Length: 8058
Cache-Control: max-age=31536000
Expires: Tue, 26 Sep 2023 19:36:17 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-print.css

192.185.223.116

200 OK

278 B

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-print.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
278 B (278 bytes)
Hash
524da06f25fdf0fe13f8fba3e34233f9
edd9cb40225a022dd8ce2a04e7df4d34779356ed
cbef40f0c70c41f0686686ef4ad4ab5984cd2837378027745cadaa27f1ed0b66

HTTP Headers

GET /trade/alaska/alaskausa/css/akusa-print.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:17 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:20:04 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 26 Oct 2022 19:36:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 278
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-phone.css

192.185.223.116

200 OK

6.8 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-phone.css
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (676)
Size
6.8 kB (6812 bytes)
Hash
b6210515247573d638fa1a2adc1e3870
78ec7d9617046883a7bacbbe9f0375af340e1070
4631b56d6792e7a2d8b7bf6ae34186bda83355f3efedd9c935079777002ffe43

HTTP Headers

GET /trade/alaska/alaskausa/css/akusa-phone.css HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:17 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 19 Aug 2019 19:19:32 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 26 Oct 2022 19:36:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 6812
Keep-Alive: timeout=5, max=75
Content-Type: text/css

js.adsrvr.org/up_loader.1.1.0.js

143.204.45.46

200 OK

1.9 kB

URL HTTP/1.1
js.adsrvr.org/up_loader.1.1.0.js
IP
143.204.45.46:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (4593), with no line terminators
Size
1.9 kB (1882 bytes)
Hash
8014ea74946aee77ef2f3b9a264be553
fda85fc27ac2f811e543c11436cf5623cbd46bb2
271b1db0f8cff912a931b78cedb32fd59adeb60025dbcbd7cc5add7d03c82f7c

HTTP Headers

GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 26 Sep 2022 18:47:10 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8HwyEQF_djiwPeVOsZPYu8GJqQTuaPUa_wZq6Uvbygbx02pOqv7dmA==
Age: 21805

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5adb7eb1d103eadeeafac36e663ffdd3
23b784388dd634fa736cd60aed71570661e73d02
5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5884
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:17 GMT
Last-Modified: Mon, 26 Sep 2022 17:58:13 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
3d075d393214cb9da8949c2a54980d3b
ef2852f3853e15856356a41a8d9fc6620886a99e
c8292dff5bb741d2b726d7ade0dc0182c7da197e948ff14b140387332a668f6a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1530
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:17 GMT
Last-Modified: Mon, 26 Sep 2022 19:10:48 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279

www.primegestaoempresarial.com/trade/alaska/alaskausa/images/navSprites.png

192.185.223.116

200 OK

14 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/images/navSprites.png
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 240 x 320, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14383 bytes)
Hash
2c34097881e44683ea2c683b9c4c6fba
c3053cdec4d858a66cdaeb71e6612115508513a8
dab4dd2fc46c7aa07526cacce2b4111e56d2c57443449519b04af9dec4cfe019

HTTP Headers

GET /trade/alaska/alaskausa/images/navSprites.png HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-desktop.css

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:17 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:42:50 GMT
Accept-Ranges: bytes
Content-Length: 14383
Cache-Control: max-age=31536000
Expires: Tue, 26 Sep 2023 19:36:17 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png

www.primegestaoempresarial.com/trade/alaska/alaskausa/fonts/PTN57F-webfont.woff

192.185.223.116

200 OK

25 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/fonts/PTN57F-webfont.woff
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 25232, version 1.0\012- data
Size
25 kB (25232 bytes)
Hash
dbe930f71a2d24cc78b2fac1fbcbf7eb
9e86b11f4ebdb2f78668b05c19a30407491437ee
505251f17e21dc99dcd248a697febdab8814c2a0f3a5de7694b6b59f0a26afcf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /trade/alaska/alaskausa/fonts/PTN57F-webfont.woff HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusafonts.css?20181128

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:17 GMT
Server: Apache
Last-Modified: Tue, 20 Aug 2019 00:44:16 GMT
Accept-Ranges: bytes
Content-Length: 25232
Cache-Control: max-age=21600
Expires: Tue, 27 Sep 2022 01:36:17 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: font/woff

www.primegestaoempresarial.com/trade/alaska/alaskausa/fonts/AkusaIcon.woff?j5gpp4

192.185.223.116

200 OK

17 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/fonts/AkusaIcon.woff?j5gpp4
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 17108, version 1.0\012- data
Size
17 kB (17108 bytes)
Hash
b778f3bf70c28c600d8ee7453c1fc0b6
6c058c6a97d77d515d06b3529a11e6a03de002dd
3230f11f87ac7aa3afcde93c95793a2e00651d4bbae8b8fc3d12667daf8052fa

HTTP Headers

GET /trade/alaska/alaskausa/fonts/AkusaIcon.woff?j5gpp4 HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusafonts.css?20181128

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:17 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 20 Aug 2019 00:45:52 GMT
Accept-Ranges: bytes
Content-Length: 17108
Cache-Control: max-age=21600
Expires: Tue, 27 Sep 2022 01:36:17 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=75
Content-Type: font/woff

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a010f67bcd83c03f9d2e0e0f45c9be47
9a34027b398aa334c3cc8d9a39a5d96a575921cf
e0f16047dbeb8c33c841489624e77ab1df8f74082f5a41a23fa2db00458ccd1b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6359
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:17 GMT
Last-Modified: Mon, 26 Sep 2022 17:50:18 GMT
Server: ECS (amb/6BB9)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a010f67bcd83c03f9d2e0e0f45c9be47
9a34027b398aa334c3cc8d9a39a5d96a575921cf
e0f16047dbeb8c33c841489624e77ab1df8f74082f5a41a23fa2db00458ccd1b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:17 GMT
Server: ECS (amb/6BC1)
Content-Length: 471

www.primegestaoempresarial.com/trade/alaska/alaskausa/images/homeSprites.png

192.185.223.116

200 OK

190 kB

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/images/homeSprites.png
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 272 x 550, 8-bit/color RGBA, non-interlaced\012- data
Size
190 kB (190407 bytes)
Hash
c6dfc43f4439d97b3796d7141fefd850
d86a787e16816d02f05b18210bf5649ed403f10d
beb161501df73ad297e1a7679cc63010d22d479ea146e56ef2b3f7a7e9b06c9c

HTTP Headers

GET /trade/alaska/alaskausa/images/homeSprites.png HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/akusa-desktop.css

HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 19:36:17 GMT
Server: Apache
Last-Modified: Mon, 19 Aug 2019 19:53:52 GMT
Accept-Ranges: bytes
Content-Length: 190407
Cache-Control: max-age=31536000
Expires: Tue, 26 Sep 2023 19:36:17 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png

prism.app-us1.com/?a=25948200&u=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77

104.17.146.91

200 OK

0 B

URL HTTP/2
prism.app-us1.com/?a=25948200&u=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77
IP
104.17.146.91:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?a=25948200&u=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77 HTTP/1.1
Host: prism.app-us1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Sep 2022 19:36:17 GMT
content-type: application/javascript
content-length: 0
cache-control: no-cache, private
set-cookie: prism_25948200=bf0cd5fd-8087-4303-8c16-513c7f1625af; expires=Wed, 26-Oct-2022 19:36:17 GMT; Max-Age=2592000; path=/; secure; httponly; samesite=none
x-envoy-upstream-service-time: 52
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750e7294782f1bfa-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a010f67bcd83c03f9d2e0e0f45c9be47
9a34027b398aa334c3cc8d9a39a5d96a575921cf
e0f16047dbeb8c33c841489624e77ab1df8f74082f5a41a23fa2db00458ccd1b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:17 GMT
Server: ECS (amb/6B9B)
Content-Length: 471

push.services.mozilla.com/

54.191.222.112

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.191.222.112:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gVjc0BAlsjyjra7KyvEyJA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ui+LJQ7nvkYM5b75iTLXexqyxp4=

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a010f67bcd83c03f9d2e0e0f45c9be47
9a34027b398aa334c3cc8d9a39a5d96a575921cf
e0f16047dbeb8c33c841489624e77ab1df8f74082f5a41a23fa2db00458ccd1b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:17 GMT
Server: ECS (amb/6BBC)
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a010f67bcd83c03f9d2e0e0f45c9be47
9a34027b398aa334c3cc8d9a39a5d96a575921cf
e0f16047dbeb8c33c841489624e77ab1df8f74082f5a41a23fa2db00458ccd1b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:17 GMT
Server: ECS (amb/6BC3)
Content-Length: 471

www.alaskausa.org/js/jquery.accAccordion.js

107.162.171.161

200 OK

3.1 kB

URL HTTP/1.1
www.alaskausa.org/js/jquery.accAccordion.js
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
3.1 kB (3084 bytes)
Hash
06e42aebb3858cd8f493e85045fb5673
c7400b593de87ebeb5ce10c3d29591ea9d063a12
11b7c0addf38af5f83482d3b82ee16953903313e73ba82b1d09e3782fd074a06

HTTP Headers

GET /js/jquery.accAccordion.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Sun, 25 Sep 2022 21:40:05 GMT
Accept-Ranges: bytes
ETag: "e18d626027d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:16 GMT
Content-Length: 3084
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive

www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js

107.162.171.161

200 OK

5.0 kB

URL HTTP/1.1
www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
5.0 kB (5013 bytes)
Hash
351f3a0ccd1ce923d84feae6e7312463
a42acdb266e0871bd9a3b971a6a2b6be3219600f
c91d036452fe324dba730ff05188b0e56b2af892bfa340c09c6a96af0f56d2a9

HTTP Headers

GET /js/jquery.leanModal.AKUSA.2.1.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Sun, 25 Sep 2022 21:39:52 GMT
Accept-Ranges: bytes
ETag: "c733715827d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:16 GMT
Content-Length: 5013
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive

region1.google-analytics.com/g/collect?v=2&tid=G-R11FYFZ8HF&gtm=2oe9l0&_p=881396122&cid=936870332.1664220976&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664220975&sct=1&seg=0&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&dt=Alaska%20USA%20services%20for%20you&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-R11FYFZ8HF&gtm=2oe9l0&_p=881396122&cid=936870332.1664220976&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664220975&sct=1&seg=0&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&dt=Alaska%20USA%20services%20for%20you&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-R11FYFZ8HF&gtm=2oe9l0&_p=881396122&cid=936870332.1664220976&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664220975&sct=1&seg=0&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&dt=Alaska%20USA%20services%20for%20you&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.primegestaoempresarial.com
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: http://www.primegestaoempresarial.com
date: Mon, 26 Sep 2022 19:36:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.alaskausa.org/images/nav/EHL.png

107.162.171.161

200 OK

3.3 kB

URL HTTP/1.1
www.alaskausa.org/images/nav/EHL.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 55 x 59, 8-bit colormap, non-interlaced\012- data
Size
3.3 kB (3317 bytes)
Hash
859cf2ed8319f4931c1e2371bee8b46d
ff866fe6e3071999e6c057dae5aed927aefd047f
1c7cd686a01f2dcffc1f55119624e9166300721172b4e7ad284ff734bc8db0a1

HTTP Headers

GET /images/nav/EHL.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:39:56 GMT
Accept-Ranges: bytes
ETag: "9e52ff5a27d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:16 GMT
Content-Length: 3317
Via: 1.1 dca1-bit13014

www.alaskausa.org/images/nav/ncua.png

107.162.171.161

200 OK

4.3 kB

URL HTTP/1.1
www.alaskausa.org/images/nav/ncua.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 146 x 65, 8-bit colormap, non-interlaced\012- data
Size
4.3 kB (4280 bytes)
Hash
38b7240d957be9f71b5271246fb01f67
9007e7baf8e357ac11c8541c871e48960c8d9f30
d6641292ca4109173a6ca88b1353f0a6edeaad1c5f90e4c69c6999943109a878

HTTP Headers

GET /images/nav/ncua.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:40:53 GMT
Accept-Ranges: bytes
ETag: "1786b47c27d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:20 GMT
Content-Length: 4280
Via: 1.1 dca1-bit13014

www.alaskausa.org/images/nav/akusafcu_logo.png

107.162.171.161

200 OK

16 kB

URL HTTP/1.1
www.alaskausa.org/images/nav/akusafcu_logo.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 220 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16228 bytes)
Hash
dc43cc5c96d54639189781edf322cac9
26c53d9c975f997481520a336ac5f6a22f115c74
6ceabe544edbb8513733f30b14c1d17a2fa51e461f972c31d17e5450d4718603

HTTP Headers

GET /images/nav/akusafcu_logo.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:39:48 GMT
Accept-Ranges: bytes
ETag: "2ae42b5627d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:17 GMT
Content-Length: 16228
Via: 1.1 dca1-bit13014

www.alaskausa.org/js/jquery/slick/slick.181.js

107.162.171.161

200 OK

24 kB

URL HTTP/1.1
www.alaskausa.org/js/jquery/slick/slick.181.js
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
24 kB (23677 bytes)
Hash
6534a62e16e877b353989a88d6181513
c93dd1499549d15cf73d76d6d207910d77848f74
91409a4a5020bcac1a0ca5d187bc28edd0e4e3820f0d4ab5ddd7ef8ec139639e

HTTP Headers

GET /js/jquery/slick/slick.181.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Sun, 25 Sep 2022 21:40:55 GMT
Accept-Ranges: bytes
ETag: "efe82d7e27d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:20 GMT
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked

www.alaskausa.org/current/promo/data/images/secondary/Great_Rates.png

107.162.171.161

200 OK

3.0 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/Great_Rates.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (3033 bytes)
Hash
da47d67ee48590d1d3490581a4eb6fd8
43a004ad73b946c772a62bfbddb2ed0f6a0b8565
9bbcdf829b5aa64649daf841121e4f202aca979b883869cb9162b19ee16c45d6

HTTP Headers

GET /current/promo/data/images/secondary/Great_Rates.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:39:32 GMT
Accept-Ranges: bytes
ETag: "9dba514c27d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:17 GMT
Content-Length: 3033
Via: 1.1 dca1-bit13014

www.alaskausa.org/js/jsSuite-1.9.5.js

107.162.171.161

200 OK

26 kB

URL HTTP/1.1
www.alaskausa.org/js/jsSuite-1.9.5.js
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
ASCII text, with very long lines (1664), with CRLF line terminators
Size
26 kB (25907 bytes)
Hash
1944286c5d9045bed03628acc73abaaa
77558a881d16646a0111cddc3b8aade9e097d763
720c1ead84265c920a00af4d5303a22d071a88ed9e408a046950fdeaee3a50a1

HTTP Headers

GET /js/jsSuite-1.9.5.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Sun, 25 Sep 2022 21:40:56 GMT
Accept-Ranges: bytes
ETag: "73d927e27d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:20 GMT
Content-Length: 25907
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive

www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Blue.jpg

107.162.171.161

200 OK

66 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Blue.jpg
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size
66 kB (65873 bytes)
Hash
998829620cec9eaa11e86e00786c4981
75ba120c255c97d369542b70c621fe75dda73bfc
5bf9db11eaad113f8b70430b03bc111ebd7d13e87a150899afcb72e7885b7151

HTTP Headers

GET /current/promo/data/images/primary/Q3-Background-Photos-Blue.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sun, 25 Sep 2022 21:39:39 GMT
Accept-Ranges: bytes
ETag: "d3ccaf5027d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:16 GMT
Content-Length: 65873
Via: 1.1 dca1-bit13014

www.alaskausa.org/current/promo/data/images/secondary/24_7.png

107.162.171.161

200 OK

3.5 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/24_7.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
3.5 kB (3463 bytes)
Hash
0db67a66d466835deeac0db174f4403d
439086975df74b74840f85473040fceaf7bee429
42a60c275762c54d2609fc3f4c3e92b890438a13544acedb78acc1429a6f75e8

HTTP Headers

GET /current/promo/data/images/secondary/24_7.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:40:08 GMT
Accept-Ranges: bytes
ETag: "a26df36127d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:20 GMT
Content-Length: 3463
Via: 1.1 dca1-bit13014

www.alaskausa.org/js/jquery-1.11.3.min.js

107.162.171.161

200 OK

46 kB

URL HTTP/1.1
www.alaskausa.org/js/jquery-1.11.3.min.js
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
ASCII text, with very long lines (32038)
Size
46 kB (45711 bytes)
Hash
cf54b56dbd2adb27eb44fe6defb747e6
78e81335c5c317f9d56877d2f011a74a50910dd8
9256346dc8067ab6665a68fe1590b676d13f8ecd353fa2676ec372a2f3338a94

HTTP Headers

GET /js/jquery-1.11.3.min.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Sun, 25 Sep 2022 21:39:51 GMT
Accept-Ranges: bytes
ETag: "c1aea5827d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:17 GMT
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked

www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-Blue.png

107.162.171.161

200 OK

39 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-Blue.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 441 x 223, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (39075 bytes)
Hash
3ccc45fb8f4d4d0b8323d03ded67f365
368dd2ae2bbaa0de8ee88abca84b8cfe2124e422
45334c39a6ca18a5fde4f0b28fc2c917f0fe3689dd0973edb6a395a1087d3f12

HTTP Headers

GET /current/promo/data/images/primary/Q3-Floating-Banner-Blue.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:40:09 GMT
Accept-Ranges: bytes
ETag: "3d81b96227d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:20 GMT
Content-Length: 39075
Via: 1.1 dca1-bit13014

www.alaskausa.org/current/promo/data/images/secondary/Safeguard.png

107.162.171.161

200 OK

2.9 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/Safeguard.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2918 bytes)
Hash
4436dcbfaeef45033c2bcd8e992c80e9
bdefa9b95661e46969f1691e7805f19f96e8089a
bced0264cfd64147a011c2df12645beb5728e815bdcb5ee5b87965c005ede9de

HTTP Headers

GET /current/promo/data/images/secondary/Safeguard.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:39:32 GMT
Accept-Ranges: bytes
ETag: "f12f674c27d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:17 GMT
Content-Length: 2918
Via: 1.1 dca1-bit13014

www.alaskausa.org/current/promo/data/images/secondary/House.png

107.162.171.161

200 OK

2.1 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/House.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2115 bytes)
Hash
ed1a5366dc3530d3aa004d69cc5ada2b
7d820d2739041784171d2feecc13eaa6bc1e7d9d
840b945fdae9b827d3eeec3047c593b98fdcd6d4b08845fb25ba4c00ed5e4d60

HTTP Headers

GET /current/promo/data/images/secondary/House.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:40:08 GMT
Accept-Ranges: bytes
ETag: "376c126227d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:20 GMT
Content-Length: 2115
Via: 1.1 dca1-bit13014

www.alaskausa.org/current/promo/data/images/secondary/Credit_Card.png

107.162.171.161

200 OK

1.8 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/Credit_Card.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
0fab6e6b3f1a5035f9bacc6fb7a6fec6
41fa99b1ab405dbab5637583fae5481c0c15295a
0f8a809653dccad6b1246b84439448d9b4be08ebdabf504b6b7d2dcc43b1fe6d

HTTP Headers

GET /current/promo/data/images/secondary/Credit_Card.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:39:40 GMT
Accept-Ranges: bytes
ETag: "4112785127d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:17 GMT
Content-Length: 1842
Via: 1.1 dca1-bit13014

www.alaskausa.org/current/promo/data/images/secondary/ClickSWITCH.png

107.162.171.161

200 OK

3.8 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/ClickSWITCH.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3750 bytes)
Hash
1d936e6db476e5dfe54aa816df8fb394
514d91db0846cd35da9c64fa72720f03d62e9987
70e0c0741152cb9d4ac39ca288aae9fa555a215e752681ddba397861cf4e9f57

HTTP Headers

GET /current/promo/data/images/secondary/ClickSWITCH.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:40:08 GMT
Accept-Ranges: bytes
ETag: "8fe386227d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:21 GMT
Content-Length: 3750
Via: 1.1 dca1-bit13014

www.alaskausa.org/current/promo/data/images/secondary/learn.png

107.162.171.161

200 OK

3.0 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/secondary/learn.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (3001 bytes)
Hash
1a975fdc9ce6a5635d54c3d0de8133ff
9c92457d758510546625c105aca786366ef96243
23f614c53e35afae28a843e1ff6bde539f5c74b5725c62b3f6e2c8f439e4bc3c

HTTP Headers

GET /current/promo/data/images/secondary/learn.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:39:32 GMT
Accept-Ranges: bytes
ETag: "98cd644c27d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:17 GMT
Content-Length: 3001
Via: 1.1 dca1-bit13014

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14100
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 19:36:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14100
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 19:36:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14100
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 19:36:18 GMT
Connection: keep-alive

www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-green.png

107.162.171.161

200 OK

39 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-green.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 441 x 223, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (38758 bytes)
Hash
30a245fe4f83baa580a7182546bb3793
fa106ee448b7e43a64c22c86161bae8461dc0610
b7a47fb3710a0501d0833991bc2875a807f4705699d1ff3368b0b3ade6456a5b

HTTP Headers

GET /current/promo/data/images/primary/Q3-Floating-Banner-green.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:39:31 GMT
Accept-Ranges: bytes
ETag: "c080bb4b27d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:17 GMT
Content-Length: 38758
Via: 1.1 dca1-bit13014

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8637 bytes)
Hash
d02ede0c964f3346fd53ae2950bf2a62
e49306a3713cb724be024a4ddb5e90645718a718
c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HCJ483GPdpPhC7oYm1GrA02BqqST9sfqfCBSA93rZqaQYl-jezgP5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:20:40 GMT
age: 76538
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10318 bytes)
Hash
a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:02:10 GMT
age: 77648
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9070 bytes)
Hash
988b0c94c41a21c736b330c3256d0a3c
c16a6f018bd80c6390b7a07f4e6698db7bfd28b0
3034912f83810b3999ffa90f5eeaf0f45773c592cfd3cf2bfb794ea1b150158c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9070
x-amzn-requestid: 2aceb075-d4bc-45b8-8330-5e719c565f77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKEEdPoAMFsNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca40-3f120e0774b1d58a08898c39;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: feNiTFDhUx-BfoiybnKj83hCq6CCoiMeOSEHyFs8b7cLIgKvnO1Cdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:04:42 GMT
age: 77496
etag: "c16a6f018bd80c6390b7a07f4e6698db7bfd28b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5157 bytes)
Hash
2fe8c4f0c70fb6c1f4259eabedc7015e
85e378d0fff856832a8dd01743516b9476fed8c6
508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 77162
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size
13 kB (12826 bytes)
Hash
b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:35 GMT
age: 79123
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11728 bytes)
Hash
968b9c138702fb5994d1d9eab1a697fa
9660bb2d38079182efbd11d7a687bfc7f9d30751
5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H4KXhBaRw3SvzBrbl30mV6R_vJ8bXBkyicb8fQiTp6YSBHjE8iFkNQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:49:56 GMT
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
content-type: image/jpeg
age: 74782
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-yellow.png

107.162.171.161

200 OK

39 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-yellow.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 441 x 223, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (39081 bytes)
Hash
8b38eca8a44df22bab2fb3a90bc52b1c
934fd86ecc751828eb00a89253d5ab7ecd459350
2adbd54978e8c18e98f509b9c99d935c676faaa994f89aa3de66770a0f890206

HTTP Headers

GET /current/promo/data/images/primary/Q3-Floating-Banner-yellow.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:39:39 GMT
Accept-Ranges: bytes
ETag: "272fb25027d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:17 GMT
Content-Length: 39081
Via: 1.1 dca1-bit13014

www.alaskausa.org/current/promo/data/images/primary/billpay_float.png

107.162.171.161

200 OK

7.0 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/billpay_float.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 368 x 230, 8-bit/color RGBA, non-interlaced\012- data
Size
7.0 kB (6985 bytes)
Hash
36a692b72789608d44c9f0ff670bf25e
10e1ed53047c9564ec86ced96cb69c7427f1d079
1d27b37574d2d3dcad6a7dd41079ebe2fbe5faf71c63c5805fea3b7cd72ad754

HTTP Headers

GET /current/promo/data/images/primary/billpay_float.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:39:28 GMT
Accept-Ranges: bytes
ETag: "87fc624a27d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:17 GMT
Content-Length: 6985
Via: 1.1 dca1-bit13014

www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Green.jpg

107.162.171.161

200 OK

50 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Green.jpg
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size
50 kB (49975 bytes)
Hash
90e2ed690e97b87a06985175a48237bd
cacad41f48c823280bed1f6d352a96f255956cf3
718e0970b2242e2b2ba6a58d0a1a3f0abb41b32e08fbd2e6c9c3029759ee2abe

HTTP Headers

GET /current/promo/data/images/primary/Q3-Background-Photos-Green.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sun, 25 Sep 2022 21:40:09 GMT
Accept-Ranges: bytes
ETag: "9fe29c6227d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:20 GMT
Content-Length: 49975
Via: 1.1 dca1-bit13014

www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Yellow.jpg

107.162.171.161

200 OK

59 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Yellow.jpg
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size
59 kB (58909 bytes)
Hash
f60b6cfc0c6dafca63644df1e13dc165
efe2abd8f2b3c0f2e72a088d4ad68780574b6f42
a010faad9f252201c7c5096a6e781f7a70add7237814ed08365a09f087270483

HTTP Headers

GET /current/promo/data/images/primary/Q3-Background-Photos-Yellow.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sun, 25 Sep 2022 21:40:07 GMT
Accept-Ranges: bytes
ETag: "8216186127d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:21 GMT
Content-Length: 58909
Via: 1.1 dca1-bit13014

www.alaskausa.org/current/promo/data/images/primary/billpay.jpg

107.162.171.161

200 OK

67 kB

URL HTTP/1.1
www.alaskausa.org/current/promo/data/images/primary/billpay.jpg
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size
67 kB (67249 bytes)
Hash
ad06dd998083e9b34012253af0e0cc9f
fb6e1f53ac9f3d74a76856651c7308b1355938b7
e366fcc3c86290a396c5997317c157dc86ed3a64481972d2381b0a5f97c94668

HTTP Headers

GET /current/promo/data/images/primary/billpay.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sun, 25 Sep 2022 21:39:56 GMT
Accept-Ranges: bytes
ETag: "e6c3905a27d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:21 GMT
Content-Length: 67249
Via: 1.1 dca1-bit13014

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (19826 bytes)
Hash
cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 18:41:09 GMT
expires: Mon, 26 Sep 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 3310
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bc7883d0a03d9c3559288a600fecc70a
b0e538996510ec8c861264cba4bf79fa73f6f7d6
c3bdc9bb12c7c951ca2d861c95156de2c724acc82386e882864c464132e07ac3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bat.bing.com/bat.js

204.79.197.200

200 OK

11 kB

URL HTTP/2
bat.bing.com/bat.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Size
11 kB (11367 bytes)
Hash
293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=08E698943CC8631E06EB8ABF3D3D62F0; domain=.bing.com; expires=Sat, 21-Oct-2023 19:36:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C2317F21F1F9487EAD4D1E305250DBAE Ref B: OSL30EDGE0105 Ref C: 2022-09-26T19:36:19Z
date: Mon, 26 Sep 2022 19:36:18 GMT
X-Firefox-Spdy: h2

www.google.com/pagead/conversion_async.js

142.250.74.164

200 OK

16 kB

URL HTTP/2
www.google.com/pagead/conversion_async.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1654)
Size
16 kB (15693 bytes)
Hash
890f716858b5f72587e47c5eca121cb5
91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a

HTTP Headers

GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 26 Sep 2022 19:36:19 GMT
expires: Mon, 26 Sep 2022 19:36:19 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j97&a=881396122&t=pageview&_s=1&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&ul=en-us&de=UTF-8&dt=Alaska%20USA%20services%20for%20you&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAAC~&jid=770924684&gjid=926153633&cid=936870332.1664220976&tid=UA-105087488-1&_gid=562515689.1664220977&_r=1&gtm=2wg9l0W942G3C&z=1997468316

142.250.74.174

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j97&a=881396122&t=pageview&_s=1&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&ul=en-us&de=UTF-8&dt=Alaska%20USA%20services%20for%20you&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAAC~&jid=770924684&gjid=926153633&cid=936870332.1664220976&tid=UA-105087488-1&_gid=562515689.1664220977&_r=1&gtm=2wg9l0W942G3C&z=1997468316
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af

HTTP Headers

POST /j/collect?v=1&_v=j97&a=881396122&t=pageview&_s=1&dl=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&ul=en-us&de=UTF-8&dt=Alaska%20USA%20services%20for%20you&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAAC~&jid=770924684&gjid=926153633&cid=936870332.1664220976&tid=UA-105087488-1&_gid=562515689.1664220977&_r=1&gtm=2wg9l0W942G3C&z=1997468316 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.primegestaoempresarial.com
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: http://www.primegestaoempresarial.com
date: Mon, 26 Sep 2022 19:36:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4474bfba80fa3257384d1c908e1353bf
9a2869a3888743d575e6f87d2a7479d5d97fa123
63378e949c0ea9564e7660ea0522ce7a59727a0a5232b81b77f8525899f67a2b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.alaskausa.org/favicon.ico

107.162.171.161

200 OK

1.2 kB

URL HTTP/1.1
www.alaskausa.org/favicon.ico
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
a640140069c78a92f718c9fb63614d72
1418d5de4993b63c2b11a64df62a03ae8ebb8f95
5b8545b9cf60e23bd9c7eacef43e9b85e2843b1d90328b5b6fca9ef851347808

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Sun, 25 Sep 2022 21:39:54 GMT
Accept-Ranges: bytes
ETag: "9ac1ea5927d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:17 GMT
Content-Length: 1150
Via: 1.1 dca1-bit13014

www.alaskausa.org/images/icon-76@2x.png

107.162.171.161

200 OK

22 kB

URL HTTP/1.1
www.alaskausa.org/images/icon-76@2x.png
IP
107.162.171.161:0
ASN
#55002 DEFENSE-NET

File type
PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced\012- data
Size
22 kB (21833 bytes)
Hash
aa361a75d2fd36154747173a3a6cd422
8c14f2c0a0f3b2e1a265313239d6b9f7383808f9
31079b4bcec10fbd6e7530a766c97d05b5bc5e143af55a7599633fe3fd1c955e

HTTP Headers

GET /images/icon-76@2x.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 25 Sep 2022 21:40:47 GMT
Accept-Ranges: bytes
ETag: "84fc4e7927d1d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Mon, 26 Sep 2022 19:36:21 GMT
Content-Length: 21833
Via: 1.1 dca1-bit13014

www.primegestaoempresarial.com/trade/alaska/alaskausa/css/ajax-loader.gif

192.185.223.116

301 Moved Permanently

0 B

URL HTTP/1.1
www.primegestaoempresarial.com/trade/alaska/alaskausa/css/ajax-loader.gif
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /trade/alaska/alaskausa/css/ajax-loader.gif HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/css/slick.css
Cookie: _gcl_au=1.1.1731113509.1664220975; _ga_R11FYFZ8HF=GS1.1.1664220975.1.0.1664220975.0.0.0; _ga=GA1.1.936870332.1664220976; agft=74122dd32c8db8d54f418604dff41ce4.5361060; agfs=74122dd32c8db8d54f418604dff41ce4.5361060&1664220977&1664220977&direct&(none)&&&&&

HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Sep 2022 19:36:18 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: http://primegestaoempresarial.com/trade/alaska/alaskausa/css/ajax-loader.gif
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.primegestaoempresarial.com/agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=cmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=5361060&vs=53610601664220977&_=674860&v=040

192.185.223.116

301 Moved Permanently

0 B

URL HTTP/1.1
www.primegestaoempresarial.com/agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=cmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=5361060&vs=53610601664220977&_=674860&v=040
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=cmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=5361060&vs=53610601664220977&_=674860&v=040 HTTP/1.1
Host: www.primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/trade/alaska/alaskausa/login.php?cmd=login_submit&id=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&session=cf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77
Cookie: _gcl_au=1.1.1731113509.1664220975; _ga_R11FYFZ8HF=GS1.1.1664220975.1.0.1664220975.0.0.0; _ga=GA1.1.936870332.1664220976; agft=74122dd32c8db8d54f418604dff41ce4.5361060; agfs=74122dd32c8db8d54f418604dff41ce4.5361060&1664220977&1664220977&direct&(none)&&&&&

HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Sep 2022 19:36:18 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: http://primegestaoempresarial.com/agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=cmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=5361060&vs=53610601664220977&_=674860&v=040
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

bat.bing.com/action/0?ti=134612163&tm=gtm002&Ver=2&mid=56cf0ff5-3654-48f0-ba9d-15bf1d23ddaf&sid=7d591de03dd211ed9408e9ef20b2d517&vid=7d5951303dd211ed9df8bd2898665469&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alaska%20USA%20services%20for%20you&kw=AlaskaUSA,%20Alaska,%20Arizona,%20Washington,%20USA,%20San%20Bernardino%20California,%20Victor%20Valley,%20High%20Desert,%20Anchorage,%20Credit%20Union,%20Bank,%20Financial,%20Finance,%20Loan,%20Credit,%20Lending,%20Insurance,%20Mortgage,%20Refinance,%20home,%20Online%20banking,%20by%20phone,%20UltraBranch,%20Saving,%20Checking,%20Account,%20Money,%20Service,%20Relocate,%20Moving,%20Real%20Estate,%20business,%20AKUSA&p=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&r=&lt=2555&evt=pageLoad&sv=1&rn=526080

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=134612163&tm=gtm002&Ver=2&mid=56cf0ff5-3654-48f0-ba9d-15bf1d23ddaf&sid=7d591de03dd211ed9408e9ef20b2d517&vid=7d5951303dd211ed9df8bd2898665469&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alaska%20USA%20services%20for%20you&kw=AlaskaUSA,%20Alaska,%20Arizona,%20Washington,%20USA,%20San%20Bernardino%20California,%20Victor%20Valley,%20High%20Desert,%20Anchorage,%20Credit%20Union,%20Bank,%20Financial,%20Finance,%20Loan,%20Credit,%20Lending,%20Insurance,%20Mortgage,%20Refinance,%20home,%20Online%20banking,%20by%20phone,%20UltraBranch,%20Saving,%20Checking,%20Account,%20Money,%20Service,%20Relocate,%20Moving,%20Real%20Estate,%20business,%20AKUSA&p=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&r=&lt=2555&evt=pageLoad&sv=1&rn=526080
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=134612163&tm=gtm002&Ver=2&mid=56cf0ff5-3654-48f0-ba9d-15bf1d23ddaf&sid=7d591de03dd211ed9408e9ef20b2d517&vid=7d5951303dd211ed9df8bd2898665469&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alaska%20USA%20services%20for%20you&kw=AlaskaUSA,%20Alaska,%20Arizona,%20Washington,%20USA,%20San%20Bernardino%20California,%20Victor%20Valley,%20High%20Desert,%20Anchorage,%20Credit%20Union,%20Bank,%20Financial,%20Finance,%20Loan,%20Credit,%20Lending,%20Insurance,%20Mortgage,%20Refinance,%20home,%20Online%20banking,%20by%20phone,%20UltraBranch,%20Saving,%20Checking,%20Account,%20Money,%20Service,%20Relocate,%20Moving,%20Real%20Estate,%20business,%20AKUSA&p=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&r=&lt=2555&evt=pageLoad&sv=1&rn=526080 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=277062D0057A63223A9C70FB048F6228; domain=.bing.com; expires=Sat, 21-Oct-2023 19:36:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F77F2031FA524B568C9B458A667DEB81 Ref B: OSL30EDGE0105 Ref C: 2022-09-26T19:36:19Z
date: Mon, 26 Sep 2022 19:36:19 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

diffuser-cdn.app-us1.com/diffuser/diffuser.js

104.17.146.91

200 OK

5.8 kB

URL HTTP/2
diffuser-cdn.app-us1.com/diffuser/diffuser.js
IP
104.17.146.91:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
5.8 kB (5848 bytes)
Hash
392446e6f91f360c81ec92f5ed6d3ed3
c11a8cdb23cf8d6fc0cb1d8eea3448dffe811bb1
e4c760deec965f3e99be88b31b745d7708d71b89a2d0bb00e7eacb268a652e7f

HTTP Headers

GET /diffuser/diffuser.js HTTP/1.1
Host: diffuser-cdn.app-us1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 26 Sep 2022 19:36:17 GMT
content-type: application/javascript
last-modified: Thu, 21 Oct 2021 17:42:06 GMT
etag: W/"4d482a43613d3966f353ec9d97452e0c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 059f85e5e664bc876c915622803d9e28.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: LYgb7O-05A19YisedsHdW7Gqa3Bw46pjlPKvIkZSVBpaULKohYEzzQ==
cf-cache-status: HIT
age: 132
server: cloudflare
cf-ray: 750e72942fca1bfa-OSL
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/831978068/?random=1664220977393&cv=9&fst=1664220977393&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&tiba=Alaska%20USA%20services%20for%20you&auid=1731113509.1664220975&hn=www.google.com&async=1&rfmt=3&fmt=4

216.58.207.194

200 OK

1.1 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/831978068/?random=1664220977393&cv=9&fst=1664220977393&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&tiba=Alaska%20USA%20services%20for%20you&auid=1731113509.1664220975&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2646), with no line terminators
Size
1.1 kB (1107 bytes)
Hash
694ab09f46e8b83e701916c964312491
b50b3b13f0a9cc178ae942e9cd23369e7a0bb6e3
2765d66546b0342bc3b7105f053831222d3200e3ceb0f598d19a7ba7015798b2

HTTP Headers

GET /pagead/viewthroughconversion/831978068/?random=1664220977393&cv=9&fst=1664220977393&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&tiba=Alaska%20USA%20services%20for%20you&auid=1731113509.1664220975&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 19:36:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1107
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 26-Sep-2022 19:51:19 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-105087488-1&cid=936870332.1664220976&jid=770924684&gjid=926153633&_gid=562515689.1664220977&_u=YADAAEAAAAAAAC~&z=1302455244

64.233.162.155

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-105087488-1&cid=936870332.1664220976&jid=770924684&gjid=926153633&_gid=562515689.1664220977&_u=YADAAEAAAAAAAC~&z=1302455244
IP
64.233.162.155:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-105087488-1&cid=936870332.1664220976&jid=770924684&gjid=926153633&_gid=562515689.1664220977&_u=YADAAEAAAAAAAC~&z=1302455244 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.primegestaoempresarial.com
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: http://www.primegestaoempresarial.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 26 Sep 2022 19:36:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bat.bing.com/p/action/134612163.js

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/134612163.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/134612163.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=2F5334F1901561C036D426DA91E06081; domain=.bing.com; expires=Sat, 21-Oct-2023 19:36:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 682A7BB930A34D43B11A9564D8F47224 Ref B: OSL30EDGE0105 Ref C: 2022-09-26T19:36:19Z
date: Mon, 26 Sep 2022 19:36:19 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
95f95fee6e94fb192e7c06459e3e3f8e
025638b85afcc833cd592c98cc941dd011d2526f
dbc8654990b37741f8e393d069054ae68d584c2496421892e814e7a8c45467fd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-105087488-1&cid=936870332.1664220976&jid=770924684&_u=YADAAEAAAAAAAC~&z=1744988511

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-105087488-1&cid=936870332.1664220976&jid=770924684&_u=YADAAEAAAAAAAC~&z=1744988511
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-105087488-1&cid=936870332.1664220976&jid=770924684&_u=YADAAEAAAAAAAC~&z=1744988511 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 19:36:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/pagead/1p-user-list/831978068/?random=1664220977393&cv=9&fst=1664218800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&tiba=Alaska%20USA%20services%20for%20you&async=1&fmt=3&is_vtc=1&random=161439693&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/831978068/?random=1664220977393&cv=9&fst=1664218800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&tiba=Alaska%20USA%20services%20for%20you&async=1&fmt=3&is_vtc=1&random=161439693&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/831978068/?random=1664220977393&cv=9&fst=1664218800000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&frm=0&url=http%3A%2F%2Fwww.primegestaoempresarial.com%2Ftrade%2Falaska%2Falaskausa%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&tiba=Alaska%20USA%20services%20for%20you&async=1&fmt=3&is_vtc=1&random=161439693&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.primegestaoempresarial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 19:36:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
95f95fee6e94fb192e7c06459e3e3f8e
025638b85afcc833cd592c98cc941dd011d2526f
dbc8654990b37741f8e393d069054ae68d584c2496421892e814e7a8c45467fd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 19:36:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

primegestaoempresarial.com/trade/alaska/alaskausa/css/ajax-loader.gif

192.185.223.116

404 Not Found

0 B

URL HTTP/1.1
primegestaoempresarial.com/trade/alaska/alaskausa/css/ajax-loader.gif
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /trade/alaska/alaskausa/css/ajax-loader.gif HTTP/1.1
Host: primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.primegestaoempresarial.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.1731113509.1664220975; _ga_R11FYFZ8HF=GS1.1.1664220975.1.0.1664220975.0.0.0; _ga=GA1.2.936870332.1664220976; _gid=GA1.2.562515689.1664220977; _gat_UA-105087488-1=1; _uetsid=7d591de03dd211ed9408e9ef20b2d517; _uetvid=7d5951303dd211ed9df8bd2898665469

HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 19:36:19 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://primegestaoempresarial.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

primegestaoempresarial.com/agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=cmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=5361060&vs=53610601664220977&_=674860&v=040

192.185.223.116

404 Not Found

0 B

URL HTTP/1.1
primegestaoempresarial.com/agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=cmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=5361060&vs=53610601664220977&_=674860&v=040
IP
192.185.223.116:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /agf.gif?t=pv&pv=%2Ftrade%2Falaska%2Falaskausa%2Flogin.php&tt=Alaska+USA+services+for+you&qr=cmd%3Dlogin_submit%26id%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77%26session%3Dcf0e30fac74c92ad6ff448de1e58ec77cf0e30fac74c92ad6ff448de1e58ec77&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=www.primegestaoempresarial.com&vi=5361060&vs=53610601664220977&_=674860&v=040 HTTP/1.1
Host: primegestaoempresarial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.primegestaoempresarial.com
Referer: http://www.primegestaoempresarial.com/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Mon, 26 Sep 2022 19:36:19 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://primegestaoempresarial.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations