| conselhossabios.com/wp-includes/css/dist/block-library/style.min.css |  104.21.14.244 | 200 OK | 16 kB |
URL GET HTTP/3conselhossabios.com/wp-includes/css/dist/block-library/style.min.css IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeASCII text, with very long lines (59701) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: text/css
last-modified: Wed, 03 Apr 2024 00:58:47 GMT
etag: W/"660ca9c7-1bae5"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dat5NtOv%2FYjgIp3ZwVNUAPuisqlSSPu8RW5okuzbMzCFuRFA1X6%2FRw52MsrZQYLjP30YSx5TCSnqGd1IEHSCLx%2BgTTLnVKVRy7TVki0b0P3mlL8gpc0BWdokrPiT8L9O4eePoJV%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9dc280b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-content/themes/customify/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 | 104.21.14.244 | 200 OK | 77 kB |
URL GET HTTP/3conselhossabios.com/wp-content/themes/customify/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/customify/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/wp-content/themes/customify/assets/fonts/font-awesome/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: application/octet-stream
content-length: 77160
last-modified: Sun, 03 Jul 2022 12:58:04 GMT
etag: "62c1925c-12d68"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3JMw2W2D7cINtJxXLgvrHtVo3TpRIst6HrPNfU2H5dnB0kAF3EVgY9iHWddCvbFTDgvUtMtfxbBWFfbzFg7gIVKubLLoaNuWQh%2BLAosMD%2BcoViDjluOhEpOlfoY%2BNoR2M%2Bf6UwKC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fae09bb0b59-OSL
alt-svc: h3=":443"; ma=86400
|
|
| peninsularesentmentcarla.com/5f909505c3eedd175490c15c2048e0db/invoke.js |  192.243.61.227 | 200 OK | 9.8 kB |
URL GET HTTP/1.1peninsularesentmentcarla.com/5f909505c3eedd175490c15c2048e0db/invoke.js IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectpeninsularesentmentcarla.com FingerprintA4:33:9D:0D:A0:00:86:A8:76:55:05:29:E1:11:65:C0:FD:F1:30:45 ValidityMon, 26 Feb 2024 07:38:06 GMT - Sun, 26 May 2024 07:38:05 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (26595), with no line terminators Hash91b00b829f28d7ba443952faff5355f3 81cd611a4c3366af6de4ae112c322d520bfa43ab fa2a0fa3154f8ec1cbb1f92c05fa38ae03b8e0fca3d30b91e42fb6665bea9bf1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /5f909505c3eedd175490c15c2048e0db/invoke.js HTTP/1.1
Host: peninsularesentmentcarla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 16 Apr 2024 15:57:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a6b16c970dbc6baf386457a9e7e0fd79
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| peninsularesentmentcarla.com/21/bb/2d/21bb2def515232b1ccfc424d7005c89a.js | 192.243.61.227 | 200 OK | 16 kB |
URL GET HTTP/1.1peninsularesentmentcarla.com/21/bb/2d/21bb2def515232b1ccfc424d7005c89a.js IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectpeninsularesentmentcarla.com FingerprintA4:33:9D:0D:A0:00:86:A8:76:55:05:29:E1:11:65:C0:FD:F1:30:45 ValidityMon, 26 Feb 2024 07:38:06 GMT - Sun, 26 May 2024 07:38:05 GMT
File typeJavaScript source, ASCII text, with very long lines (44050), with no line terminators Hashd78cb8e84bf7c74dab3c7cd319a971ee 4a289c307e1f90c4e75e92066850f2ba67c23ad8 514efc00a05271b3ac01783d299e36841695260456a6a53bf1efbf3324c84f99
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /21/bb/2d/21bb2def515232b1ccfc424d7005c89a.js HTTP/1.1
Host: peninsularesentmentcarla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 16 Apr 2024 15:57:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 46944eaafb5f7ffd33c380f2e85be829
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| pixel.wp.com/g.gif?v=ext&blog=208538836&post=121079&tz=3&srv=conselhossabios.com&j=1%3A13.1.1&host=conselhossabios.com&ref=&fcp=1188&rand=0.7460016807749087 | 192.0.76.3 | 200 OK | 50 B |
URL GET HTTP/3pixel.wp.com/g.gif?v=ext&blog=208538836&post=121079&tz=3&srv=conselhossabios.com&j=1%3A13.1.1&host=conselhossabios.com&ref=&fcp=1188&rand=0.7460016807749087 IP192.0.76.3:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerSectigo Limited Subject*.wp.com Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2 ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File typeGIF image data, version 89a, 6 x 5 Hashe4d673a55c5656f19ef81563fb10884c 1f2d8ed221d39329251ad3a6ff1edb20b7219443 f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=208538836&post=121079&tz=3&srv=conselhossabios.com&j=1%3A13.1.1&host=conselhossabios.com&ref=&fcp=1188&rand=0.7460016807749087 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashb02330fe70e031c54a12c30e8436d13c 5983227c1b6fd73a71c0fb01854174aae24bc991 d8d2ee03769735fe68e9b9a89f3c508e8789c127b892dd6856141c874740c2e2
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 16 Apr 2024 15:57:54 GMT
Last-Modified: Tue, 16 Apr 2024 14:57:10 GMT
Server: ECAcc (ska/F73A)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: q49oZW7ENniqEHC5GgNqXU9bq-9uGyGipYWIIfxLmMyx5SdoWtiq-g==
Age: 3645
|
|
| proftrafficcounter.com/stats |  3.123.64.179 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP3.123.64.179:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash266ca12e7cfde1546afafe44c2111898 fc5ab88f1ed61dbba32ed6cbca6dc63ec00c8685 81fa69dba9ff963b9d69f74f65c045c6d54b4a7ba5373f0ba8357334c22a3113
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://conselhossabios.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=e273ab14-05a7-4e4f-9690-312174270a4f:3:1; expires=Fri, 14 Apr 2034 15:57:54 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 3.123.64.179 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP3.123.64.179:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash56b2431f5955c66d6affe18800cf297d 0c5228f509a9ad5aed07e2311b95646ba0aeb0a2 1e24fbc421f6d254036931d23007371f8fc5094b67bc55f9885058d918c063d0
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://conselhossabios.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b:3:1; expires=Fri, 14 Apr 2034 15:57:54 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/embed.js | 142.250.74.174 | 200 OK | 18 kB |
URL GET HTTP/3www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/embed.js IP142.250.74.174:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash7a1773c5c44ac04205d5a182e7cafa0d 0b1bf4828c39f0a224fecc1c7dbb255c743463e5 1dcbcb6b5819b6d5b7f4342bdccc2da6761e76da37694366972385ae6afc2881
GET /s/player/7ebf4817/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/PrsMavMf-_8?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18118
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 03:44:23 GMT
expires: Wed, 16 Apr 2025 03:44:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Apr 2024 04:18:25 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 44011
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/7ebf4817/www-player.css | 142.250.74.174 | 200 OK | 48 kB |
URL GET HTTP/3www.youtube.com/s/player/7ebf4817/www-player.css IP142.250.74.174:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash0ee2a2fead693a415e0fafe77b8eb5b5 9e4071a140b8019e25add69c5ecf3118af26900a a7a5b6803d9439fc3ae01128ac16617eb9df87658b3884b7454353779a729ddf
GET /s/player/7ebf4817/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/PrsMavMf-_8?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 Apr 2024 07:35:44 GMT
expires: Thu, 10 Apr 2025 07:35:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Apr 2024 04:18:25 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 548530
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| conselhossabios.com/wp-content/plugins/table-of-contents-plus/screen.min.css | 104.21.14.244 | | 98 kB |
URL conselhossabios.com/wp-content/plugins/table-of-contents-plus/screen.min.css IP104.21.14.244:0
CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeASCII text, with very long lines (1156), with no line terminators Hashc36a54231034d43c59838cffd223ae0e 2d28ea215858ad20b347db91ba63b877d506f751 2e36bd3bdbb929f427e79a6c84b7922b4375589386981eba29eb0cff57b02b1b
GET /wp-content/plugins/table-of-contents-plus/screen.min.css HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: text/css
last-modified: Wed, 07 Feb 2024 10:13:22 GMT
etag: W/"65c357c2-484"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OvThEEAl6xYM%2BzlRYYydpe2d5fCPwmD3C6rtHLOcNFNjt3PyW9eZNNgIIW7tocegqUeMGe7Gf6TMsMHRWsum3%2BZq8gG%2BE8%2BSVpyyDtoc%2B7ctwC142rJmEIRffEydWSm%2FMMyQa2ty"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9dc320b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/base.js | 142.250.74.174 | 200 OK | 809 kB |
URL GET HTTP/3www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/base.js IP142.250.74.174:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size809 kB (808582 bytes) Hasha313e336bf114bbdd177631dd91bfde0 0ffbaf2e82dd663b99a57ae0f480e9b337fb3b91 2a37bf65d22180399b97261ec096f8cb8e63c9cbb661fee1ff29318df87d0bf6
GET /s/player/7ebf4817/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/PrsMavMf-_8?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 808582
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:37:59 GMT
expires: Wed, 16 Apr 2025 06:37:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Apr 2024 04:18:25 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 33595
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| static.addtoany.com/menu/svg/icons/twitter.js | 104.22.71.197 | 200 OK | 3.5 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/twitter.js IP104.22.71.197:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeASCII text, with very long lines (645), with no line terminators Hashca05cf90bd32d6134c0b92464c343f9a 187feb5cc71d225717838268487a0abc9b8d405c 3003867b66a32c12fdafeefc27cf06d906e5a99ba275550ab757f4bb04834636
GET /menu/svg/icons/twitter.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"af2b829f9b79fabec7c0148a8b7e444b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8Zq5Atmpm%2FI5yeFToRMhlTYBV6vMLLF57WKim5MrVgYarHtQQfqAIxg%2BZcFkJT%2FQfUBgkLml%2FJ%2BXvX2RTQ9U%2FS9VSheYljWHq8P%2FkQOs5w31X7o9i29Fagg60jrXKyXlBxcHFVaD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87555fb09a20be42-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ | 104.21.14.244 | | 16 kB |
URL conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ IP104.21.14.244:0
CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (9462) Hash3887673e05cbbdbb39bbcb9cd28979ef fe9ad894534e0e9f2181533f71f6908bb467f6c6 26c7f281d6b41010515c72a34aed1012f2c8f93fba7a5caa37fcc13db051af28
GET /quando-aluga-um-carro-e-nao-devolve/ HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Cookie
cache-control: max-age=3, must-revalidate
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xwZuCk8MMKDNjq%2BMJOWRfpKnFpVkqxNwrijpJ51nXx1iXAOQj1ViidHJMFP13ndHrgP%2BwSVwq74oviituLF1nbCSOWVqPjLM05EddzzRsHoscUaEdja%2BJIeDLtuUJV5BNq%2Fs%2FrDd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87555fa72d23b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.youtube.com/embed/PrsMavMf-_8?feature=oembed | 142.250.74.174 | 200 OK | 44 kB |
URL GET HTTP/2www.youtube.com/embed/PrsMavMf-_8?feature=oembed IP142.250.74.174:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (58087) Hashccf4fc1398dd5ddd5e7fc1b377f11c4a 38926620b6d4b5dbae022f3481dc6e44b5cae9eb e49c4fe4ab98966dec22d8598aa7b2aaa69a5d05e1828c2459502ed12c761545
GET /embed/PrsMavMf-_8?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 16 Apr 2024 15:57:54 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=LmhpUmdKzsU; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=XX2Lt9WhBGE; Domain=.youtube.com; Expires=Sun, 13-Oct-2024 15:57:54 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMICk%3D; Domain=.youtube.com; Expires=Sun, 13-Oct-2024 15:57:54 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| conselhossabios.com/matomo/matomo.php?action_name=Quando%20aluga%20um%20carro%20e%20nao%20devolve%3F%20%E2%80%93%20ConselhosS%C3%A1bios&idsite=2&rec=1&r=252386&h=15&m=57&s=54&url=https%3A%2F%2Fconselhossabios.com%2Fquando-aluga-um-carro-e-nao-devolve%2F&_id=8774f563a6ded49f&_idn=1&_refts=0&send_image=0&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=faMnV6&pf_net=21&pf_srv=247&pf_tfr=94&pf_dm1=1135 | 104.21.14.244 | 204 No Content | 0 B |
URL POST HTTP/3conselhossabios.com/matomo/matomo.php?action_name=Quando%20aluga%20um%20carro%20e%20nao%20devolve%3F%20%E2%80%93%20ConselhosS%C3%A1bios&idsite=2&rec=1&r=252386&h=15&m=57&s=54&url=https%3A%2F%2Fconselhossabios.com%2Fquando-aluga-um-carro-e-nao-devolve%2F&_id=8774f563a6ded49f&_idn=1&_refts=0&send_image=0&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=faMnV6&pf_net=21&pf_srv=247&pf_tfr=94&pf_dm1=1135 IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /matomo/matomo.php?action_name=Quando%20aluga%20um%20carro%20e%20nao%20devolve%3F%20%E2%80%93%20ConselhosS%C3%A1bios&idsite=2&rec=1&r=252386&h=15&m=57&s=54&url=https%3A%2F%2Fconselhossabios.com%2Fquando-aluga-um-carro-e-nao-devolve%2F&_id=8774f563a6ded49f&_idn=1&_refts=0&send_image=0&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=faMnV6&pf_net=21&pf_srv=247&pf_tfr=94&pf_dm1=1135 HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; _pk_id.2.c22b=8774f563a6ded49f.1713283075.; _pk_ses.2.c22b=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 204 No Content
date: Tue, 16 Apr 2024 15:57:55 GMT
content-type: text/html; charset=UTF-8
tk: N
access-control-allow-origin: https://conselhossabios.com
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DyBc7HHxArfsHMt0DIitirYGqa2KfPQZtzMnfjdd3nMQEDBBmId%2FR1ngyOXDbace0rlLKAThoP0fvcu0DrtDEiIY3f4FGy15IH1NqhdAmdKwINRjSo6Z%2FeH%2Fy3SHAybRjQhyNyKM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87555fb14e640b59-OSL
alt-svc: h3=":443"; ma=86400
|
|
| inntentativeflame.com/ntv.json?key=5f909505c3eedd175490c15c2048e0db&vstc=4 | 172.240.108.76 | 200 OK | 18 kB |
URL GET HTTP/1.1inntentativeflame.com/ntv.json?key=5f909505c3eedd175490c15c2048e0db&vstc=4 IP172.240.108.76:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectinntentativeflame.com Fingerprint92:39:1B:53:52:8A:65:18:F3:F9:53:88:26:71:77:F6:E5:C5:39:DB ValidityTue, 16 Apr 2024 09:52:13 GMT - Mon, 15 Jul 2024 09:52:12 GMT
Hash01e3d28a520666d889363942ae0ddcb9 6acc579f613565c1f314ecda02dd0278ca1d89f4 cd6fc33b4fc3815454d7f698b1509e30fcefe5f57778802177fc5c38d6a567a5
GET /ntv.json?key=5f909505c3eedd175490c15c2048e0db&vstc=4 HTTP/1.1
Host: inntentativeflame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 16 Apr 2024 15:57:55 GMT
Content-Type: application/json
Content-Length: 17797
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://conselhossabios.com
Access-Control-Allow-Origin: https://conselhossabios.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17588984; expires=Wed, 17 Apr 2024 15:57:54 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 17 Apr 2024 15:57:55 GMT; secure; SameSite=None
uncs=1; expires=Wed, 17 Apr 2024 15:57:55 GMT; secure; SameSite=None
pdhtkv49=true; expires=Wed, 17 Apr 2024 15:57:55 GMT; secure; SameSite=None
uncs49=1; expires=Wed, 17 Apr 2024 15:57:55 GMT; secure; SameSite=None
nlec5f909505c3eedd175490c15c2048e0db=[4991488,4991489,4991490]; expires=Tue, 16 Apr 2024 15:58:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a1a39525540c83a421c35a16e9f57962
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.131 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.131:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:43:51 GMT
expires: Wed, 16 Apr 2025 06:43:51 GMT
cache-control: public, max-age=31536000
age: 33244
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.131 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.131:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:10:11 GMT
expires: Tue, 15 Apr 2025 22:10:11 GMT
cache-control: public, max-age=31536000
age: 64064
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| inntentativeflame.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skVRd9Nelv8ymCkp0ovdRBOlX9M%2B0sBmPMEGyTcUbRnbx673XnmVf1ivequjotSHBAZuGiF7rQ1cvpZII6DIprB%2BkMiASEqV3ACfg3CIO4UaoNtl6ouufccwvOvbc%2BPsjOSR0ZPVt%2FQ4%2BlUnSlVfOrL7wbBFeqPRlno%2Bpotf1eu3mlaoYvd9s1%2F8XqNcF29UrdD3w%2F8IPqhjSir0crpQiZ3O0Gta5fa9ZrQauJkfkvt5kHSz3w4Tl5BpIXlQfeMiSbIY6%2BWRd2N9XJS69FmaKpNhjy47fj3VjnMaIF7BsP%2Ffj4ohvaPty4Dx0fze1CD%2F9pDGVBvB%2FvI4yPL0wiHB7OfYYKIkbIn0A%2BnEGoGSSdgelbkPwhARjH1jbi6M6WNjnd%2B1ulpVqQyuPfIPOCVB4tI47urSk5qt7UKkulji1GfQc5mkEOZkiyE6TjS5D5CVj6EST%2Fmaw87iGODret0pDczWeXcgbZn0GJCaj1kJWP9JD1PWSJh4ifVVkQBB2fM%2Bqvdhlr8I4I29wPaKcf0MBvryJjpb0J0mQCpiZgZh%2BJ2ceunMBkP8DuOFjuwaYF8d7cx5A75IIgtwQ5JcglQZ4S5EN3xJWtW3eHK5uFwUWuX%2BSGm%2Bp0cECPdDoQMQE1ExjuDpJz8nS5H%2B%2FJ8HfsirNqq9%2F1uy2%2FxRpCcB50Ws2uz4IWq%2FvNVeHzEFY6SHtpPvJYFuS5X%2F5EIgvyv8%2B2ENITWHUCJpdAswA0d6A7DuP4O6ZjK9SOtpaGUtsa0xG4dkjSCtI970Cdk2fnh%2BpdJhDs9Go6%2FvXaveUPwIxDYhzelw8IBur29IbOyeENnVvy7XaSykiOaXnEmylNxdJXr4u9XBu%2BuW4nX77CSqGEd98SNu3RmMt4YMnXa5JzYTa0YYJ8v2nfEeH1zO6sZSbOkt71Vzc2o8QIa6WOZ6CyIJXTPTBZkKcefTj%2FPy9nn0CaGUzmEGWn5CIg9QlYsg%2BbLGpWExi14GHiIc%2Fc1NTDRVFJAiUWnIYO9l88XOCpoeXXVLoDexsDUwFNbyGOHIbGYagcqJrAZv%2Bfpok5vfrT52V8gVBVpqEylcNQGfXpfM0F6dE%2FSuSVr0uw8qzaaTR82u62gk6Hik7YrK%2F22wGntN5s19tt2kBqi%2F7zbukvAAAA%2F%2F8BAAD%2F%2F6D4HIODBAAA | 172.240.108.76 | 200 OK | 7 B |
URL GET HTTP/1.1inntentativeflame.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skVRd9Nelv8ymCkp0ovdRBOlX9M%2B0sBmPMEGyTcUbRnbx673XnmVf1ivequjotSHBAZuGiF7rQ1cvpZII6DIprB%2BkMiASEqV3ACfg3CIO4UaoNtl6ouufccwvOvbc%2BPsjOSR0ZPVt%2FQ4%2BlUnSlVfOrL7wbBFeqPRlno%2Bpotf1eu3mlaoYvd9s1%2F8XqNcF29UrdD3w%2F8IPqhjSir0crpQiZ3O0Gta5fa9ZrQauJkfkvt5kHSz3w4Tl5BpIXlQfeMiSbIY6%2BWRd2N9XJS69FmaKpNhjy47fj3VjnMaIF7BsP%2Ffj4ohvaPty4Dx0fze1CD%2F9pDGVBvB%2FvI4yPL0wiHB7OfYYKIkbIn0A%2BnEGoGSSdgelbkPwhARjH1jbi6M6WNjnd%2B1ulpVqQyuPfIPOCVB4tI47urSk5qt7UKkulji1GfQc5mkEOZkiyE6TjS5D5CVj6EST%2Fmaw87iGODret0pDczWeXcgbZn0GJCaj1kJWP9JD1PWSJh4ifVVkQBB2fM%2Bqvdhlr8I4I29wPaKcf0MBvryJjpb0J0mQCpiZgZh%2BJ2ceunMBkP8DuOFjuwaYF8d7cx5A75IIgtwQ5JcglQZ4S5EN3xJWtW3eHK5uFwUWuX%2BSGm%2Bp0cECPdDoQMQE1ExjuDpJz8nS5H%2B%2FJ8HfsirNqq9%2F1uy2%2FxRpCcB50Ws2uz4IWq%2FvNVeHzEFY6SHtpPvJYFuS5X%2F5EIgvyv8%2B2ENITWHUCJpdAswA0d6A7DuP4O6ZjK9SOtpaGUtsa0xG4dkjSCtI970Cdk2fnh%2BpdJhDs9Go6%2FvXaveUPwIxDYhzelw8IBur29IbOyeENnVvy7XaSykiOaXnEmylNxdJXr4u9XBu%2BuW4nX77CSqGEd98SNu3RmMt4YMnXa5JzYTa0YYJ8v2nfEeH1zO6sZSbOkt71Vzc2o8QIa6WOZ6CyIJXTPTBZkKcefTj%2FPy9nn0CaGUzmEGWn5CIg9QlYsg%2BbLGpWExi14GHiIc%2Fc1NTDRVFJAiUWnIYO9l88XOCpoeXXVLoDexsDUwFNbyGOHIbGYagcqJrAZv%2Bfpok5vfrT52V8gVBVpqEylcNQGfXpfM0F6dE%2FSuSVr0uw8qzaaTR82u62gk6Hik7YrK%2F22wGntN5s19tt2kBqi%2F7zbukvAAAA%2F%2F8BAAD%2F%2F6D4HIODBAAA IP172.240.108.76:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectinntentativeflame.com Fingerprint92:39:1B:53:52:8A:65:18:F3:F9:53:88:26:71:77:F6:E5:C5:39:DB ValidityTue, 16 Apr 2024 09:52:13 GMT - Mon, 15 Jul 2024 09:52:12 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skVRd9Nelv8ymCkp0ovdRBOlX9M%2B0sBmPMEGyTcUbRnbx673XnmVf1ivequjotSHBAZuGiF7rQ1cvpZII6DIprB%2BkMiASEqV3ACfg3CIO4UaoNtl6ouufccwvOvbc%2BPsjOSR0ZPVt%2FQ4%2BlUnSlVfOrL7wbBFeqPRlno%2Bpotf1eu3mlaoYvd9s1%2F8XqNcF29UrdD3w%2F8IPqhjSir0crpQiZ3O0Gta5fa9ZrQauJkfkvt5kHSz3w4Tl5BpIXlQfeMiSbIY6%2BWRd2N9XJS69FmaKpNhjy47fj3VjnMaIF7BsP%2Ffj4ohvaPty4Dx0fze1CD%2F9pDGVBvB%2FvI4yPL0wiHB7OfYYKIkbIn0A%2BnEGoGSSdgelbkPwhARjH1jbi6M6WNjnd%2B1ulpVqQyuPfIPOCVB4tI47urSk5qt7UKkulji1GfQc5mkEOZkiyE6TjS5D5CVj6EST%2Fmaw87iGODret0pDczWeXcgbZn0GJCaj1kJWP9JD1PWSJh4ifVVkQBB2fM%2Bqvdhlr8I4I29wPaKcf0MBvryJjpb0J0mQCpiZgZh%2BJ2ceunMBkP8DuOFjuwaYF8d7cx5A75IIgtwQ5JcglQZ4S5EN3xJWtW3eHK5uFwUWuX%2BSGm%2Bp0cECPdDoQMQE1ExjuDpJz8nS5H%2B%2FJ8HfsirNqq9%2F1uy2%2FxRpCcB50Ws2uz4IWq%2FvNVeHzEFY6SHtpPvJYFuS5X%2F5EIgvyv8%2B2ENITWHUCJpdAswA0d6A7DuP4O6ZjK9SOtpaGUtsa0xG4dkjSCtI970Cdk2fnh%2BpdJhDs9Go6%2FvXaveUPwIxDYhzelw8IBur29IbOyeENnVvy7XaSykiOaXnEmylNxdJXr4u9XBu%2BuW4nX77CSqGEd98SNu3RmMt4YMnXa5JzYTa0YYJ8v2nfEeH1zO6sZSbOkt71Vzc2o8QIa6WOZ6CyIJXTPTBZkKcefTj%2FPy9nn0CaGUzmEGWn5CIg9QlYsg%2BbLGpWExi14GHiIc%2Fc1NTDRVFJAiUWnIYO9l88XOCpoeXXVLoDexsDUwFNbyGOHIbGYagcqJrAZv%2Bfpok5vfrT52V8gVBVpqEylcNQGfXpfM0F6dE%2FSuSVr0uw8qzaaTR82u62gk6Hik7YrK%2F22wGntN5s19tt2kBqi%2F7zbukvAAAA%2F%2F8BAAD%2F%2F6D4HIODBAAA HTTP/1.1
Host: inntentativeflame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588984; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec5f909505c3eedd175490c15c2048e0db=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 16 Apr 2024 15:57:55 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 69f43a364e2dbdd96c2f139030345e2c
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.cloudimagesb.com/si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png | 45.133.44.10 | 200 OK | 120 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced Size120 kB (119965 bytes) Hashc5a83c3079df6439410f74f3e8de6930 66dab231922cc92db7c41f49d7bdb7da1dfde08a ee0745b5678c7e4277047ba8f87d53ee77e60a4985dace65c73b970521dbf1f8
GET /si/62/f3/af/62f3afd73bea7438e3cb091f669622ff/1710839646.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:55 GMT
content-type: image/png
content-length: 119965
server: nginx/1.21.6
last-modified: Tue, 19 Mar 2024 09:14:15 GMT
etag: "65f95767-1d49d"
expires: Thu, 18 Apr 2024 15:57:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/remote.js | 142.250.74.174 | 200 OK | 34 kB |
URL GET HTTP/3www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/remote.js IP142.250.74.174:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Hash9b6e72dbd9b25baba0dfa7854440cf2b 375a828aff5fa9ccd6b0251bec2b78859034d551 e8cb8df6e5392b3882bfcb18192cff63ce605567a5259e1fd876b04075002d8d
GET /s/player/7ebf4817/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/PrsMavMf-_8?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33880
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 14 Apr 2024 07:47:25 GMT
expires: Mon, 14 Apr 2025 07:47:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Apr 2024 04:18:25 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 202230
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.cloudimagesb.com/cti/b1/61/d6/b161d614ec4165ba56f45f0d44b011a5/1708354288.jpg | 45.133.44.10 | 200 OK | 21 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/b1/61/d6/b161d614ec4165ba56f45f0d44b011a5/1708354288.jpg IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3 Hash6d6499bd7e1d752c1156a81bb5f5eb0f d59406ac23dd2fb4fc5a5fabd38f2bbe70db2c10 9f02d8a10d588da0dcc8040e1e4eb9fd32b3ee656808796fdb527b1c44fcbd15
GET /cti/b1/61/d6/b161d614ec4165ba56f45f0d44b011a5/1708354288.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:55 GMT
content-type: image/jpeg
content-length: 20947
server: nginx/1.21.6
last-modified: Mon, 19 Feb 2024 14:51:36 GMT
etag: "65d36af8-51d3"
expires: Thu, 18 Apr 2024 15:57:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| inntentativeflame.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3sx3%2BRRByU2UOeoik%2B75mXEPizFmCY7JuqvoTaqraiZlqruaqu7pyQgSXJC9CHPQg54qzyQb1GVRPLvIZEEkIGzfAm7Av0FYxIvSY3D0he73fet5Cp73eevjg%2Byc1JHRs%2FU39FgqRVdaNb%2F6wrtBcKXak3E2qo5W2%2B%2B1m1eqZvhyt13zX6xeE2xXr9T9wPcDP6huSCP6erRSgpDJ3W5Q6%2Fq1Zr0WtJoYmf%2F2NvNgqQc%2BPCfPQPKi8sBbhmQzxNE368Lupjp56bUoUzTVBkN%2B%2FHa8G%2Bs8RrQo%2B8ZDPz6%2BYEPbhxv3oeOjuVzo4T%2FEUBbE%2B%2FE%2Bwvj4QiTC4eFcZ6ggYoT8CeTDGYSaQdIZmL4FyR8SgHFsbSOO7mxpk9O9v1FaogWpPP4NMi9I5dEy4ujempKj6k2tslTq2GLUd5CjGeRghiQ7QTq%2BBJmfgKUfQfKfycrjHuLocNsqDcndfHYpZ5D9GZSYgFoPWflJD1nfQ5Z4iPhZlQVB0PE5o%2F5ql7EG74iwzf2AdvoBDfz2KjJWypsgTSZgagJm9pGYfezKCUz2A%2ByOg%2BUebFoQ7819DLlDLghyS5BTglwS5ClBPnRHXNm6dXe4slkYXOT6RW64qU4HB%2FRIpwMRE1AzgeHuIDknT5f%2BeE%2BGv2NXnFVb%2Fa7fbfkt1hCC86DTanZ9FrRY3W%2BuCp%2BHsNJB2kvzkceyIM%2F98icSWZD%2FfbaFkJ7AqhMwuQSaBaC5A91xGMffMR1boXa0tTSU2taYjsC1Q5JWkO55B%2BqcPDtfVO%2ByB8FOr6bjX6%2FdW%2F4AzDgkxuF9%2BYBgoG5Pb%2BicHN7QuSXfbiepjOSYlku8mdJULH31utjLteGb63by5SusBMry7lvCpj0acxkPLPl6TXIuzIY2TJDvN%2B07Irye2Z21zMRZ0rv%2B6sZmlBhhrdTxDFQWpHK6ByYL8tSjD%2Bfv83L2CaSZwWQOUXZKLgJSn4Al%2B7DJQr%2FVBEYtOGGyhDxzU1MPF4dKEiix6GnoYP%2FVh4t6amh5m0p3YG9jYCqg6S3EkcPQOAyVA1UT2Oz%2F0zQxp1d%2F%2BryMLxCqyjRUpnIYKqM%2BLW0mBenRP%2BaGl79LsPKs2mk0fNrutoJOh4pO2Kyv9tsBp7TebNfbbdpAaov%2B827pLwAAAP%2F%2FAQAA%2F%2F%2F2cZZpgwQAAA%3D%3D | 172.240.108.76 | 200 OK | 7 B |
URL GET HTTP/1.1inntentativeflame.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3sx3%2BRRByU2UOeoik%2B75mXEPizFmCY7JuqvoTaqraiZlqruaqu7pyQgSXJC9CHPQg54qzyQb1GVRPLvIZEEkIGzfAm7Av0FYxIvSY3D0he73fet5Cp73eevjg%2Byc1JHRs%2FU39FgqRVdaNb%2F6wrtBcKXak3E2qo5W2%2B%2B1m1eqZvhyt13zX6xeE2xXr9T9wPcDP6huSCP6erRSgpDJ3W5Q6%2Fq1Zr0WtJoYmf%2F2NvNgqQc%2BPCfPQPKi8sBbhmQzxNE368Lupjp56bUoUzTVBkN%2B%2FHa8G%2Bs8RrQo%2B8ZDPz6%2BYEPbhxv3oeOjuVzo4T%2FEUBbE%2B%2FE%2Bwvj4QiTC4eFcZ6ggYoT8CeTDGYSaQdIZmL4FyR8SgHFsbSOO7mxpk9O9v1FaogWpPP4NMi9I5dEy4ujempKj6k2tslTq2GLUd5CjGeRghiQ7QTq%2BBJmfgKUfQfKfycrjHuLocNsqDcndfHYpZ5D9GZSYgFoPWflJD1nfQ5Z4iPhZlQVB0PE5o%2F5ql7EG74iwzf2AdvoBDfz2KjJWypsgTSZgagJm9pGYfezKCUz2A%2ByOg%2BUebFoQ7819DLlDLghyS5BTglwS5ClBPnRHXNm6dXe4slkYXOT6RW64qU4HB%2FRIpwMRE1AzgeHuIDknT5f%2BeE%2BGv2NXnFVb%2Fa7fbfkt1hCC86DTanZ9FrRY3W%2BuCp%2BHsNJB2kvzkceyIM%2F98icSWZD%2FfbaFkJ7AqhMwuQSaBaC5A91xGMffMR1boXa0tTSU2taYjsC1Q5JWkO55B%2BqcPDtfVO%2ByB8FOr6bjX6%2FdW%2F4AzDgkxuF9%2BYBgoG5Pb%2BicHN7QuSXfbiepjOSYlku8mdJULH31utjLteGb63by5SusBMry7lvCpj0acxkPLPl6TXIuzIY2TJDvN%2B07Irye2Z21zMRZ0rv%2B6sZmlBhhrdTxDFQWpHK6ByYL8tSjD%2Bfv83L2CaSZwWQOUXZKLgJSn4Al%2B7DJQr%2FVBEYtOGGyhDxzU1MPF4dKEiix6GnoYP%2FVh4t6amh5m0p3YG9jYCqg6S3EkcPQOAyVA1UT2Oz%2F0zQxp1d%2F%2BryMLxCqyjRUpnIYKqM%2BLW0mBenRP%2BaGl79LsPKs2mk0fNrutoJOh4pO2Kyv9tsBp7TebNfbbdpAaov%2B827pLwAAAP%2F%2FAQAA%2F%2F%2F2cZZpgwQAAA%3D%3D IP172.240.108.76:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectinntentativeflame.com Fingerprint92:39:1B:53:52:8A:65:18:F3:F9:53:88:26:71:77:F6:E5:C5:39:DB ValidityTue, 16 Apr 2024 09:52:13 GMT - Mon, 15 Jul 2024 09:52:12 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3sx3%2BRRByU2UOeoik%2B75mXEPizFmCY7JuqvoTaqraiZlqruaqu7pyQgSXJC9CHPQg54qzyQb1GVRPLvIZEEkIGzfAm7Av0FYxIvSY3D0he73fet5Cp73eevjg%2Byc1JHRs%2FU39FgqRVdaNb%2F6wrtBcKXak3E2qo5W2%2B%2B1m1eqZvhyt13zX6xeE2xXr9T9wPcDP6huSCP6erRSgpDJ3W5Q6%2Fq1Zr0WtJoYmf%2F2NvNgqQc%2BPCfPQPKi8sBbhmQzxNE368Lupjp56bUoUzTVBkN%2B%2FHa8G%2Bs8RrQo%2B8ZDPz6%2BYEPbhxv3oeOjuVzo4T%2FEUBbE%2B%2FE%2Bwvj4QiTC4eFcZ6ggYoT8CeTDGYSaQdIZmL4FyR8SgHFsbSOO7mxpk9O9v1FaogWpPP4NMi9I5dEy4ujempKj6k2tslTq2GLUd5CjGeRghiQ7QTq%2BBJmfgKUfQfKfycrjHuLocNsqDcndfHYpZ5D9GZSYgFoPWflJD1nfQ5Z4iPhZlQVB0PE5o%2F5ql7EG74iwzf2AdvoBDfz2KjJWypsgTSZgagJm9pGYfezKCUz2A%2ByOg%2BUebFoQ7819DLlDLghyS5BTglwS5ClBPnRHXNm6dXe4slkYXOT6RW64qU4HB%2FRIpwMRE1AzgeHuIDknT5f%2BeE%2BGv2NXnFVb%2Fa7fbfkt1hCC86DTanZ9FrRY3W%2BuCp%2BHsNJB2kvzkceyIM%2F98icSWZD%2FfbaFkJ7AqhMwuQSaBaC5A91xGMffMR1boXa0tTSU2taYjsC1Q5JWkO55B%2BqcPDtfVO%2ByB8FOr6bjX6%2FdW%2F4AzDgkxuF9%2BYBgoG5Pb%2BicHN7QuSXfbiepjOSYlku8mdJULH31utjLteGb63by5SusBMry7lvCpj0acxkPLPl6TXIuzIY2TJDvN%2B07Irye2Z21zMRZ0rv%2B6sZmlBhhrdTxDFQWpHK6ByYL8tSjD%2Bfv83L2CaSZwWQOUXZKLgJSn4Al%2B7DJQr%2FVBEYtOGGyhDxzU1MPF4dKEiix6GnoYP%2FVh4t6amh5m0p3YG9jYCqg6S3EkcPQOAyVA1UT2Oz%2F0zQxp1d%2F%2BryMLxCqyjRUpnIYKqM%2BLW0mBenRP%2BaGl79LsPKs2mk0fNrutoJOh4pO2Kyv9tsBp7TebNfbbdpAaov%2B827pLwAAAP%2F%2FAQAA%2F%2F%2F2cZZpgwQAAA%3D%3D HTTP/1.1
Host: inntentativeflame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588984; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec5f909505c3eedd175490c15c2048e0db=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 16 Apr 2024 15:57:55 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 48824ebad8cfbef91c9f2edd1f3cf610
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.cloudimagesb.com/si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png | 45.133.44.10 | 200 OK | 105 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced Size105 kB (104949 bytes) Hash440d0ebcc9ae01aba77f74d9015ff0b3 9065b873ac93b45da1765682071eaaf6efe12e5c 7834596c29b94d74435163b3875c5042082912c1aff529986b0235cd9b7b27cc
GET /si/86/3f/08/863f08d585223246ad7d12f9b6d24043/1710839668.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:55 GMT
content-type: image/png
content-length: 104949
server: nginx/1.21.6
last-modified: Tue, 19 Mar 2024 09:14:37 GMT
etag: "65f9577d-199f5"
expires: Thu, 18 Apr 2024 15:57:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png | 45.133.44.10 | 200 OK | 184 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced Size184 kB (183812 bytes) Hashadc709f858c8b4ff4ce26a2757b75131 c91b170aba4aafdca5690d29e17f61b6505e15c1 ad475e95022da6d65aec3479ad3b4ff6d36dc85bbc634d750cdd575ea1a985ce
GET /si/df/e4/cd/dfe4cd324c2c05ad9bd4f1bcb4d0a97d/1707940211.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:55 GMT
content-type: image/png
content-length: 183812
server: nginx/1.21.6
last-modified: Wed, 14 Feb 2024 19:50:20 GMT
etag: "65cd197c-2ce04"
expires: Thu, 18 Apr 2024 15:57:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js | 142.250.74.164 | 200 OK | 20 kB |
URL GET HTTP/2www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js IP142.250.74.164:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (52156) Hashe72bebc20c294cb7e62bbccd15c94b1b a83fff70fe780fcbb8738f3d1cf4a7e309879dc6 deaafb8216bbe3662798052922d42a200bb71eb4c80c86835d2dd790f12ae405
GET /js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20514
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 Apr 2024 05:04:22 GMT
expires: Thu, 10 Apr 2025 05:04:22 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 557613
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi_webp/PrsMavMf-_8/maxresdefault.webp | 142.250.74.54 | 200 OK | 83 kB |
URL GET HTTP/2i.ytimg.com/vi_webp/PrsMavMf-_8/maxresdefault.webp IP142.250.74.54:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com Fingerprint78:1A:D9:37:F2:33:3C:A9:0F:4C:4A:E8:40:9E:55:8E:02:75:1E:15 ValidityMon, 04 Mar 2024 06:35:07 GMT - Mon, 27 May 2024 06:35:06 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp Hasha2cc63171984853043084af83e19bc74 4ebf69fdd6b7647f13888e22cb3bcd971072dc90 39a9a45c40c75cb3ee96de8fb57e3f7aff7ff955648e5187ab62590122f14706
GET /vi_webp/PrsMavMf-_8/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 82894
date: Tue, 16 Apr 2024 15:57:55 GMT
expires: Tue, 16 Apr 2024 17:57:55 GMT
cache-control: public, max-age=7200
etag: "1606863281"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| inntentativeflame.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTsaLiqDkJsocdZFJ92QmM%2BMeFmPMEhyTdVfRm9SvnpSp7mqquqcnI0hwQfYkc9CDnjrfJBvUZVE8u8hkQSQg7NwCbsC%2FQVjEi9KzwdEHxftefa%2Fge9%2BrTw%2Byc1JHRs%2FW3zJDpTVdbtb86kvvB8HlalfF2aA6aK9%2BsNq4XLX9VzurNf%2Fl6lXJd81y3Q98P%2FCD6oayMjSD5ZKESu50glrHrzXqtaDZwMD%2Bv3aZB0c9iP45eQ5KTCv3vSUoPkEcfbcu3W5qklfeiDJNU2PRF8fvxruxyWNEcxhaD2F8fNEN4x5s3IOJj2ZyYfr%2FNjI1Jd7P98Di4wuRYP3DmU6mIWMw8RTy%2FgRST6DoBNzchBIPCMAFtrYRR7e3jM3p3mOWluyUVB79AZVPSeXhEuLo7ppWg%2BoNo7NUmdhhEBZQgwlUb4IkO0E6XIDKT8DTT6DEr2T5URdxdLjttIESxWx2pSZQ4QRajkCdh6w8ykMWesgSD5E4q%2FIgCFq%2B4NRvdzhfES3JVoUf0FYY0MBfbSPjpbwR0mQErkfgdh%2BJ3ceuGsFmP8HtFHDCg0unxHt7H31RIJcEuSPIKUGuCPKUIO8XR0K7uituC%2B0yFlzk%2BkVeKcYm7R3QI5P2ZExA7QhWFAfJOXm29Md7mv2JXXlWbYYdv9P0m3xFSiGCVrPR8XnQ5HW%2F0Za%2BYHCqgHILs5GHakpe%2BO1vJGpKnvhiC4yewOkTcLUImgWgeQG6U2AY%2F8BN7KTeMc5RpoyrcRNBmAJJWkG65x3oc%2FL8bFHdSwuQ%2FPRKOvz96t2lj8BtgcQW%2BFDdJ%2BjpW%2BPrJieH103uyPfbSaoiNaTlEm%2BkNJWL37wp93Jjxea6G339Gi%2BJEt55R7q0S2Oh4p4j364pIaTdMJZL8uOme0%2Bya5nbWctsnCXda69vbEaJlc4pE09A1ZRUTvfA1ZQ88%2FDj2f%2B8lH0GZSewWYEoOyUXAWVOwJN9uGSu3xkCq%2Bc9LKkgz4qxrbP5pVYEWs5rygq4%2F9RsjseWlq%2BpKg7cLfRsBTS9iTgq0LcF%2BroA1SO47MlxmtjTK798WcZXYLoyZtpWDpm2%2BvPSZjIlXfpXibzHrjt1Vl3xRYvJULaYbDQboeSCNZvM5yFnK6Ld5kjdNHyxWPwHAAD%2F%2FwEAAP%2F%2FHyRbOYMEAAA%3D | 172.240.108.76 | 200 OK | 7 B |
URL GET HTTP/1.1inntentativeflame.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTsaLiqDkJsocdZFJ92QmM%2BMeFmPMEhyTdVfRm9SvnpSp7mqquqcnI0hwQfYkc9CDnjrfJBvUZVE8u8hkQSQg7NwCbsC%2FQVjEi9KzwdEHxftefa%2Fge9%2BrTw%2Byc1JHRs%2FW3zJDpTVdbtb86kvvB8HlalfF2aA6aK9%2BsNq4XLX9VzurNf%2Fl6lXJd81y3Q98P%2FCD6oayMjSD5ZKESu50glrHrzXqtaDZwMD%2Bv3aZB0c9iP45eQ5KTCv3vSUoPkEcfbcu3W5qklfeiDJNU2PRF8fvxruxyWNEcxhaD2F8fNEN4x5s3IOJj2ZyYfr%2FNjI1Jd7P98Di4wuRYP3DmU6mIWMw8RTy%2FgRST6DoBNzchBIPCMAFtrYRR7e3jM3p3mOWluyUVB79AZVPSeXhEuLo7ppWg%2BoNo7NUmdhhEBZQgwlUb4IkO0E6XIDKT8DTT6DEr2T5URdxdLjttIESxWx2pSZQ4QRajkCdh6w8ykMWesgSD5E4q%2FIgCFq%2B4NRvdzhfES3JVoUf0FYY0MBfbSPjpbwR0mQErkfgdh%2BJ3ceuGsFmP8HtFHDCg0unxHt7H31RIJcEuSPIKUGuCPKUIO8XR0K7uituC%2B0yFlzk%2BkVeKcYm7R3QI5P2ZExA7QhWFAfJOXm29Md7mv2JXXlWbYYdv9P0m3xFSiGCVrPR8XnQ5HW%2F0Za%2BYHCqgHILs5GHakpe%2BO1vJGpKnvhiC4yewOkTcLUImgWgeQG6U2AY%2F8BN7KTeMc5RpoyrcRNBmAJJWkG65x3oc%2FL8bFHdSwuQ%2FPRKOvz96t2lj8BtgcQW%2BFDdJ%2BjpW%2BPrJieH103uyPfbSaoiNaTlEm%2BkNJWL37wp93Jjxea6G339Gi%2BJEt55R7q0S2Oh4p4j364pIaTdMJZL8uOme0%2Bya5nbWctsnCXda69vbEaJlc4pE09A1ZRUTvfA1ZQ88%2FDj2f%2B8lH0GZSewWYEoOyUXAWVOwJN9uGSu3xkCq%2Bc9LKkgz4qxrbP5pVYEWs5rygq4%2F9RsjseWlq%2BpKg7cLfRsBTS9iTgq0LcF%2BroA1SO47MlxmtjTK798WcZXYLoyZtpWDpm2%2BvPSZjIlXfpXibzHrjt1Vl3xRYvJULaYbDQboeSCNZvM5yFnK6Ld5kjdNHyxWPwHAAD%2F%2FwEAAP%2F%2FHyRbOYMEAAA%3D IP172.240.108.76:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectinntentativeflame.com Fingerprint92:39:1B:53:52:8A:65:18:F3:F9:53:88:26:71:77:F6:E5:C5:39:DB ValidityTue, 16 Apr 2024 09:52:13 GMT - Mon, 15 Jul 2024 09:52:12 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTsaLiqDkJsocdZFJ92QmM%2BMeFmPMEhyTdVfRm9SvnpSp7mqquqcnI0hwQfYkc9CDnjrfJBvUZVE8u8hkQSQg7NwCbsC%2FQVjEi9KzwdEHxftefa%2Fge9%2BrTw%2Byc1JHRs%2FW3zJDpTVdbtb86kvvB8HlalfF2aA6aK9%2BsNq4XLX9VzurNf%2Fl6lXJd81y3Q98P%2FCD6oayMjSD5ZKESu50glrHrzXqtaDZwMD%2Bv3aZB0c9iP45eQ5KTCv3vSUoPkEcfbcu3W5qklfeiDJNU2PRF8fvxruxyWNEcxhaD2F8fNEN4x5s3IOJj2ZyYfr%2FNjI1Jd7P98Di4wuRYP3DmU6mIWMw8RTy%2FgRST6DoBNzchBIPCMAFtrYRR7e3jM3p3mOWluyUVB79AZVPSeXhEuLo7ppWg%2BoNo7NUmdhhEBZQgwlUb4IkO0E6XIDKT8DTT6DEr2T5URdxdLjttIESxWx2pSZQ4QRajkCdh6w8ykMWesgSD5E4q%2FIgCFq%2B4NRvdzhfES3JVoUf0FYY0MBfbSPjpbwR0mQErkfgdh%2BJ3ceuGsFmP8HtFHDCg0unxHt7H31RIJcEuSPIKUGuCPKUIO8XR0K7uituC%2B0yFlzk%2BkVeKcYm7R3QI5P2ZExA7QhWFAfJOXm29Md7mv2JXXlWbYYdv9P0m3xFSiGCVrPR8XnQ5HW%2F0Za%2BYHCqgHILs5GHakpe%2BO1vJGpKnvhiC4yewOkTcLUImgWgeQG6U2AY%2F8BN7KTeMc5RpoyrcRNBmAJJWkG65x3oc%2FL8bFHdSwuQ%2FPRKOvz96t2lj8BtgcQW%2BFDdJ%2BjpW%2BPrJieH103uyPfbSaoiNaTlEm%2BkNJWL37wp93Jjxea6G339Gi%2BJEt55R7q0S2Oh4p4j364pIaTdMJZL8uOme0%2Bya5nbWctsnCXda69vbEaJlc4pE09A1ZRUTvfA1ZQ88%2FDj2f%2B8lH0GZSewWYEoOyUXAWVOwJN9uGSu3xkCq%2Bc9LKkgz4qxrbP5pVYEWs5rygq4%2F9RsjseWlq%2BpKg7cLfRsBTS9iTgq0LcF%2BroA1SO47MlxmtjTK798WcZXYLoyZtpWDpm2%2BvPSZjIlXfpXibzHrjt1Vl3xRYvJULaYbDQboeSCNZvM5yFnK6Ld5kjdNHyxWPwHAAD%2F%2FwEAAP%2F%2FHyRbOYMEAAA%3D HTTP/1.1
Host: inntentativeflame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588984; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec5f909505c3eedd175490c15c2048e0db=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 16 Apr 2024 15:57:55 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 93de0cd6374bd57e5ddf310896f40e22
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 216.58.207.234 | 200 OK | 0 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP216.58.207.234:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 16 Apr 2024 15:57:55 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| yt3.ggpht.com/ytc/AIdro_m9KD18KmSjbqdtwWHt_R947p72ZlB8qq4oNhPvN9lEXA=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 3.3 kB |
URL GET HTTP/2yt3.ggpht.com/ytc/AIdro_m9KD18KmSjbqdtwWHt_R947p72ZlB8qq4oNhPvN9lEXA=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com FingerprintE0:0C:38:A4:4D:4F:CB:42:05:30:9A:C4:60:B3:64:3F:EF:43:D1:2F ValidityMon, 04 Mar 2024 07:14:32 GMT - Mon, 27 May 2024 07:14:31 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3 Hash4c5cfda81b3fd4428bba04cb75ab9539 b6e240a22f830719ad9d523d0c0654d7781a3d70 37cbedbae73b974a98f4f37cbbb6de8d31ed2105e3721ce353964c0ddb5f9eb2
GET /ytc/AIdro_m9KD18KmSjbqdtwWHt_R947p72ZlB8qq4oNhPvN9lEXA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 3307
x-xss-protection: 0
date: Tue, 16 Apr 2024 15:57:55 GMT
expires: Wed, 17 Apr 2024 15:57:55 GMT
cache-control: public, max-age=86400, no-transform
etag: "v9e"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 216.58.207.234 | 200 OK | 42 kB |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP216.58.207.234:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash4d9116e94413efcb6cc639214ef709ef e105b5d6c5484c13459c372c5f8edb7bec197eb1 5ab7440e84f32b0b98f59a551694a6b5034415e1c6c291c0ff6c07e5c05ab92e
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 16 Apr 2024 15:57:55 GMT
server: ESF
cache-control: private
content-length: 42290
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| inntentativeflame.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3h0vKoKSmyhz1EUm3fMz4x4WY8wSHJN1V9GbVFfVTMpUdzVV3dOTESS4IHuSOehBT5Vvkg3qsiieXWSyIBIQtm8BN%2BDfICziRenZ4OiD4n2vvlfwve%2FVp%2FvZGakjo6drb%2BmxVIout2p%2B9aX3g%2BBytSfjbFQdrbQ%2FaDcvV83w1W675r9cvSrYjl6u%2B4HvB35QXZdG9PVouSQhkzvdoNb1a816LWg1MTL%2Fr23mwVIPfHhGnoPkReW%2BtwTJZoij79aE3Ul18sobUaZoqg2G%2FOjdeCfWeYxoAfvGQz8%2BOu%2BGtg%2FW70HHh3O50MN%2FG0NZEO%2Fnewjjo3ORCIcHc52hgogR8qeQD2cQagZJZ2D6JiR%2FQADGsbmFOLq9qU1Odx%2BztGQLUnn0B2RekMrDJcTR3VUlR9UbWmWp1LHFqO8gRzPIwQxJdox0fAEyPwZLP4Hkv5LlRz3E0cGWVRqSu%2FnsUs4g%2BzMoMQG1HrLySA9Z30OWeIj4aZUFQdDxOaP%2BSpexBu%2BIsM39gHb6AQ389goyVsqbIE0mYGoCZvaQmD3syAlM9hPstoPlHmxaEO%2FtPQy5Qy4IckuQU4JcEuQpQT50h1zZunW3ubJZGJzn%2BnluuKlOB%2Fv0UKcDERNQM4Hhbj85I8%2BW%2FnhPh39iR5xWW%2F2u3235LdYQgvOg02p2fRa0WN1vrgifh7DSQdoL85HHsiAv%2FPY3ElmQJ77YREiPYdUxmLwImgWguQPddhjHPzAdW6G2tbU0lNrWmI7AtUOSVpDuevvqjDw%2FX1Tv0gUIdnIlHf9%2B9e7SR2DGITEOH8r7BAN1a3pd5%2BTgus4t%2BX4rSWUkx7Rc4o2UpuLiN2%2BK3VwbvrFmJ1%2B%2FxkqihHfeETbt0ZjLeGDJt6uSc2HWtWGC%2FLhh3xPhtcxur2YmzpLetdfXN6LECGuljmegsiCVk10wWZBnHn48%2F5%2BXss8gzQwmc4iyE3IekPoYLNmDTRb6rSYwatETJhXkmZuaeri4VJJAiUVNQwf7nzpc4Kmh5Wsq3b69hYGpgKY3EUcOQ%2BMwVA5UTWCzJ6dpYk6u%2FPJlGV8hVJVpqEzlIFRGfV7aTArSo3%2BVyHvsupWn1U6j4dN2txV0OlR0wmZ9pd8OOKX1ZrvebtMGUlv0X3QX%2FwEAAP%2F%2FAQAA%2F%2F%2Bf8I7RgwQAAA%3D%3D | 192.243.59.12 | 200 OK | 7 B |
URL GET HTTP/1.1inntentativeflame.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3h0vKoKSmyhz1EUm3fMz4x4WY8wSHJN1V9GbVFfVTMpUdzVV3dOTESS4IHuSOehBT5Vvkg3qsiieXWSyIBIQtm8BN%2BDfICziRenZ4OiD4n2vvlfwve%2FVp%2FvZGakjo6drb%2BmxVIout2p%2B9aX3g%2BBytSfjbFQdrbQ%2FaDcvV83w1W675r9cvSrYjl6u%2B4HvB35QXZdG9PVouSQhkzvdoNb1a816LWg1MTL%2Fr23mwVIPfHhGnoPkReW%2BtwTJZoij79aE3Ul18sobUaZoqg2G%2FOjdeCfWeYxoAfvGQz8%2BOu%2BGtg%2FW70HHh3O50MN%2FG0NZEO%2Fnewjjo3ORCIcHc52hgogR8qeQD2cQagZJZ2D6JiR%2FQADGsbmFOLq9qU1Odx%2BztGQLUnn0B2RekMrDJcTR3VUlR9UbWmWp1LHFqO8gRzPIwQxJdox0fAEyPwZLP4Hkv5LlRz3E0cGWVRqSu%2FnsUs4g%2BzMoMQG1HrLySA9Z30OWeIj4aZUFQdDxOaP%2BSpexBu%2BIsM39gHb6AQ389goyVsqbIE0mYGoCZvaQmD3syAlM9hPstoPlHmxaEO%2FtPQy5Qy4IckuQU4JcEuQpQT50h1zZunW3ubJZGJzn%2BnluuKlOB%2Fv0UKcDERNQM4Hhbj85I8%2BW%2FnhPh39iR5xWW%2F2u3235LdYQgvOg02p2fRa0WN1vrgifh7DSQdoL85HHsiAv%2FPY3ElmQJ77YREiPYdUxmLwImgWguQPddhjHPzAdW6G2tbU0lNrWmI7AtUOSVpDuevvqjDw%2FX1Tv0gUIdnIlHf9%2B9e7SR2DGITEOH8r7BAN1a3pd5%2BTgus4t%2BX4rSWUkx7Rc4o2UpuLiN2%2BK3VwbvrFmJ1%2B%2FxkqihHfeETbt0ZjLeGDJt6uSc2HWtWGC%2FLhh3xPhtcxur2YmzpLetdfXN6LECGuljmegsiCVk10wWZBnHn48%2F5%2BXss8gzQwmc4iyE3IekPoYLNmDTRb6rSYwatETJhXkmZuaeri4VJJAiUVNQwf7nzpc4Kmh5Wsq3b69hYGpgKY3EUcOQ%2BMwVA5UTWCzJ6dpYk6u%2FPJlGV8hVJVpqEzlIFRGfV7aTArSo3%2BVyHvsupWn1U6j4dN2txV0OlR0wmZ9pd8OOKX1ZrvebtMGUlv0X3QX%2FwEAAP%2F%2FAQAA%2F%2F%2Bf8I7RgwQAAA%3D%3D IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectinntentativeflame.com Fingerprint92:39:1B:53:52:8A:65:18:F3:F9:53:88:26:71:77:F6:E5:C5:39:DB ValidityTue, 16 Apr 2024 09:52:13 GMT - Mon, 15 Jul 2024 09:52:12 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3h0vKoKSmyhz1EUm3fMz4x4WY8wSHJN1V9GbVFfVTMpUdzVV3dOTESS4IHuSOehBT5Vvkg3qsiieXWSyIBIQtm8BN%2BDfICziRenZ4OiD4n2vvlfwve%2FVp%2FvZGakjo6drb%2BmxVIout2p%2B9aX3g%2BBytSfjbFQdrbQ%2FaDcvV83w1W675r9cvSrYjl6u%2B4HvB35QXZdG9PVouSQhkzvdoNb1a816LWg1MTL%2Fr23mwVIPfHhGnoPkReW%2BtwTJZoij79aE3Ul18sobUaZoqg2G%2FOjdeCfWeYxoAfvGQz8%2BOu%2BGtg%2FW70HHh3O50MN%2FG0NZEO%2Fnewjjo3ORCIcHc52hgogR8qeQD2cQagZJZ2D6JiR%2FQADGsbmFOLq9qU1Odx%2BztGQLUnn0B2RekMrDJcTR3VUlR9UbWmWp1LHFqO8gRzPIwQxJdox0fAEyPwZLP4Hkv5LlRz3E0cGWVRqSu%2FnsUs4g%2BzMoMQG1HrLySA9Z30OWeIj4aZUFQdDxOaP%2BSpexBu%2BIsM39gHb6AQ389goyVsqbIE0mYGoCZvaQmD3syAlM9hPstoPlHmxaEO%2FtPQy5Qy4IckuQU4JcEuQpQT50h1zZunW3ubJZGJzn%2BnluuKlOB%2Fv0UKcDERNQM4Hhbj85I8%2BW%2FnhPh39iR5xWW%2F2u3235LdYQgvOg02p2fRa0WN1vrgifh7DSQdoL85HHsiAv%2FPY3ElmQJ77YREiPYdUxmLwImgWguQPddhjHPzAdW6G2tbU0lNrWmI7AtUOSVpDuevvqjDw%2FX1Tv0gUIdnIlHf9%2B9e7SR2DGITEOH8r7BAN1a3pd5%2BTgus4t%2BX4rSWUkx7Rc4o2UpuLiN2%2BK3VwbvrFmJ1%2B%2FxkqihHfeETbt0ZjLeGDJt6uSc2HWtWGC%2FLhh3xPhtcxur2YmzpLetdfXN6LECGuljmegsiCVk10wWZBnHn48%2F5%2BXss8gzQwmc4iyE3IekPoYLNmDTRb6rSYwatETJhXkmZuaeri4VJJAiUVNQwf7nzpc4Kmh5Wsq3b69hYGpgKY3EUcOQ%2BMwVA5UTWCzJ6dpYk6u%2FPJlGV8hVJVpqEzlIFRGfV7aTArSo3%2BVyHvsupWn1U6j4dN2txV0OlR0wmZ9pd8OOKX1ZrvebtMGUlv0X3QX%2FwEAAP%2F%2FAQAA%2F%2F%2Bf8I7RgwQAAA%3D%3D HTTP/1.1
Host: inntentativeflame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588984; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec5f909505c3eedd175490c15c2048e0db=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:55 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e76716184cbd6b2b71a07457e4ded4e7
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| inntentativeflame.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTsaLiqDkJsocdZFJ92QmM%2BMeFmPMEhyTdVfRm9SvnpSp7mqquqcnI0hwQfYizEEPeup8k2xQl0Xx7CKTBZGAsHMLuAH%2FBmERL0qPwXEfdL%2F36vsKvve9%2BvQgOyd1ZPRs%2FS0zVFrT5WbNr770fhBcrnZVnA2qg%2FbqB6uNy1Xbf7WzWvNfrl6VfNcs1%2F3A9wM%2FqG4oK0MzWC5BqOROJ6h1%2FFqjXguaDQzs473LPDjqQfTPyXNQYlq57y1B8Qni6Lt16XZTk7zyRpRpmhqLvjh%2BN96NTR4jmpeh9RDGxxdsGPdg4x5MfDSTC9P%2Fj8jUlHg%2F3wOLjy9EgvUPZzqZhozBxFPI%2BxNIPYGiE3BzE0o8IAAX2NpGHN3eMjane%2F%2BitESnpPLoD6h8SioPlxBHd9e0GlRvGJ2lysQOg7CAGkygehMk2QnS4QJUfgKefgIlfiXLj7qIo8Ntpw2UKGazKzWBCifQcgTqPGTlpzxkoYcs8RCJsyoPgqDlC079dofzFdGSbFX4AW2FAQ381TYyXsobIU1G4HoEbveR2H3sqhFs9hPcTgEnPLh0Sry399EXBXJJkDuCnBLkiiBPCfJ%2BcSS0q7vittAuY8FFrl%2FklWJs0t4BPTJpT8YE1I5gRXGQnJNnS3%2B8p9mf2JVn1WbY8TtNv8lXpBQiaDUbHZ8HTV73G23pCwanCii3MBt5qKbkhd%2F%2BRqKm5IkvtsDoCZw%2BAVeLoFkAmhegOwWG8Q%2FcxE7qHeMcZcq4GjcRhCmQpBWke96BPifPzxbVveRB8tMr6fD3q3eXPgK3BRJb4EN1n6Cnb42vm5wcXje5I99vJ6mK1JCWS7yR0lQufvOm3MuNFZvrbvT1a7wEyvLOO9KlXRoLFfcc%2BXZNCSHthrFckh833XuSXcvczlpm4yzpXnt9YzNKrHROmXgCqqakcroHrqbkmYcfz97npewzKDuBzQpE2Sm5CChzAp7swyVz%2Fc4QWD3nsGQReVaMbZ3ND7Ui0HLeU1bA%2Fa9n83psaXmbquLA3ULPVkDTm4ijAn1boK8LUD2Cy54cp4k9vfLLl2V8BaYrY6Zt5ZBpqz8vbSZT0qV%2FzQwvfwtw6qy64osWk6FsMdloNkLJBWs2mc9DzlZEu82Rumn4YrH4DwAAAP%2F%2FAQAA%2F%2F92pUOBgwQAAA%3D%3D | 192.243.59.12 | 200 OK | 7 B |
URL GET HTTP/1.1inntentativeflame.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTsaLiqDkJsocdZFJ92QmM%2BMeFmPMEhyTdVfRm9SvnpSp7mqquqcnI0hwQfYizEEPeup8k2xQl0Xx7CKTBZGAsHMLuAH%2FBmERL0qPwXEfdL%2F36vsKvve9%2BvQgOyd1ZPRs%2FS0zVFrT5WbNr770fhBcrnZVnA2qg%2FbqB6uNy1Xbf7WzWvNfrl6VfNcs1%2F3A9wM%2FqG4oK0MzWC5BqOROJ6h1%2FFqjXguaDQzs473LPDjqQfTPyXNQYlq57y1B8Qni6Lt16XZTk7zyRpRpmhqLvjh%2BN96NTR4jmpeh9RDGxxdsGPdg4x5MfDSTC9P%2Fj8jUlHg%2F3wOLjy9EgvUPZzqZhozBxFPI%2BxNIPYGiE3BzE0o8IAAX2NpGHN3eMjane%2F%2BitESnpPLoD6h8SioPlxBHd9e0GlRvGJ2lysQOg7CAGkygehMk2QnS4QJUfgKefgIlfiXLj7qIo8Ntpw2UKGazKzWBCifQcgTqPGTlpzxkoYcs8RCJsyoPgqDlC079dofzFdGSbFX4AW2FAQ381TYyXsobIU1G4HoEbveR2H3sqhFs9hPcTgEnPLh0Sry399EXBXJJkDuCnBLkiiBPCfJ%2BcSS0q7vittAuY8FFrl%2FklWJs0t4BPTJpT8YE1I5gRXGQnJNnS3%2B8p9mf2JVn1WbY8TtNv8lXpBQiaDUbHZ8HTV73G23pCwanCii3MBt5qKbkhd%2F%2BRqKm5IkvtsDoCZw%2BAVeLoFkAmhegOwWG8Q%2FcxE7qHeMcZcq4GjcRhCmQpBWke96BPifPzxbVveRB8tMr6fD3q3eXPgK3BRJb4EN1n6Cnb42vm5wcXje5I99vJ6mK1JCWS7yR0lQufvOm3MuNFZvrbvT1a7wEyvLOO9KlXRoLFfcc%2BXZNCSHthrFckh833XuSXcvczlpm4yzpXnt9YzNKrHROmXgCqqakcroHrqbkmYcfz97npewzKDuBzQpE2Sm5CChzAp7swyVz%2Fc4QWD3nsGQReVaMbZ3ND7Ui0HLeU1bA%2Fa9n83psaXmbquLA3ULPVkDTm4ijAn1boK8LUD2Cy54cp4k9vfLLl2V8BaYrY6Zt5ZBpqz8vbSZT0qV%2FzQwvfwtw6qy64osWk6FsMdloNkLJBWs2mc9DzlZEu82Rumn4YrH4DwAAAP%2F%2FAQAA%2F%2F92pUOBgwQAAA%3D%3D IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectinntentativeflame.com Fingerprint92:39:1B:53:52:8A:65:18:F3:F9:53:88:26:71:77:F6:E5:C5:39:DB ValidityTue, 16 Apr 2024 09:52:13 GMT - Mon, 15 Jul 2024 09:52:12 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTsaLiqDkJsocdZFJ92QmM%2BMeFmPMEhyTdVfRm9SvnpSp7mqquqcnI0hwQfYizEEPeup8k2xQl0Xx7CKTBZGAsHMLuAH%2FBmERL0qPwXEfdL%2F36vsKvve9%2BvQgOyd1ZPRs%2FS0zVFrT5WbNr770fhBcrnZVnA2qg%2FbqB6uNy1Xbf7WzWvNfrl6VfNcs1%2F3A9wM%2FqG4oK0MzWC5BqOROJ6h1%2FFqjXguaDQzs473LPDjqQfTPyXNQYlq57y1B8Qni6Lt16XZTk7zyRpRpmhqLvjh%2BN96NTR4jmpeh9RDGxxdsGPdg4x5MfDSTC9P%2Fj8jUlHg%2F3wOLjy9EgvUPZzqZhozBxFPI%2BxNIPYGiE3BzE0o8IAAX2NpGHN3eMjane%2F%2BitESnpPLoD6h8SioPlxBHd9e0GlRvGJ2lysQOg7CAGkygehMk2QnS4QJUfgKefgIlfiXLj7qIo8Ntpw2UKGazKzWBCifQcgTqPGTlpzxkoYcs8RCJsyoPgqDlC079dofzFdGSbFX4AW2FAQ381TYyXsobIU1G4HoEbveR2H3sqhFs9hPcTgEnPLh0Sry399EXBXJJkDuCnBLkiiBPCfJ%2BcSS0q7vittAuY8FFrl%2FklWJs0t4BPTJpT8YE1I5gRXGQnJNnS3%2B8p9mf2JVn1WbY8TtNv8lXpBQiaDUbHZ8HTV73G23pCwanCii3MBt5qKbkhd%2F%2BRqKm5IkvtsDoCZw%2BAVeLoFkAmhegOwWG8Q%2FcxE7qHeMcZcq4GjcRhCmQpBWke96BPifPzxbVveRB8tMr6fD3q3eXPgK3BRJb4EN1n6Cnb42vm5wcXje5I99vJ6mK1JCWS7yR0lQufvOm3MuNFZvrbvT1a7wEyvLOO9KlXRoLFfcc%2BXZNCSHthrFckh833XuSXcvczlpm4yzpXnt9YzNKrHROmXgCqqakcroHrqbkmYcfz97npewzKDuBzQpE2Sm5CChzAp7swyVz%2Fc4QWD3nsGQReVaMbZ3ND7Ui0HLeU1bA%2Fa9n83psaXmbquLA3ULPVkDTm4ijAn1boK8LUD2Cy54cp4k9vfLLl2V8BaYrY6Zt5ZBpqz8vbSZT0qV%2FzQwvfwtw6qy64osWk6FsMdloNkLJBWs2mc9DzlZEu82Rumn4YrH4DwAAAP%2F%2FAQAA%2F%2F92pUOBgwQAAA%3D%3D HTTP/1.1
Host: inntentativeflame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588984; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec5f909505c3eedd175490c15c2048e0db=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: abac22b3e394eab5f8212e4615e276b6
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| inntentativeflame.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST2gkxReuzs7vd1ARlL2JMkddlkn3ZCYz4x7EdY0Ex2TdVfQm9a8nZaq7mqru6UlOwQXZ4wh60FPlm2SDuoji2UUmCyILQuYW0Zy9C8viRekxOPqg%2B33f%2B17D997rD%2FeLM9JEQU%2BvvWF2ldZ0ud0I68%2B%2FG0VX6n2VFqP6qLv63mrrSt0OX%2BytNsIX6q9Jvm2Wm2EUhlEY1deUlbEZLVciVHa3FzV6YaPVbETtFkb2v9wVARwNIIZn5GkoMavdDy5C8SnS5Otr0m3nJrv8alJomhuLoTh6O91OTZkiWcDYBojTo%2FNuGHeydg8mPZzbhRn%2B08jUjAQ%2F3ANLj85Ngg0P5j6ZhkzBxOMoh1NIPYWiU3BzC0qcEIALbGwiTe5sGFvSnb9VWqkzUnv4O1Q5I7VfLyJNvrqq1ah%2B0%2BgiVyZ1GMUeajSFGkyRFcfId5egymPw%2FAMo8RNZfthHmhxsOm2ghJ%2FPrtQUKp5CyzGoC1BUjwpQxAGKLEAiTus8iqJOKDgNuz3OV0RHslURRrQTRzQKV7soeGVvjDwbg%2BsxuN1DZvewrcawxfdwWx5OBHD5jARv7mEoPEpJUDqCkhKUiqDMCcqhPxTaNZ2%2FI7QrWHSem%2Bd5xU9MPtinhyYfyJSA2jGs8PvZGXmq2k%2FwBHuEbXlab8e9sNcO23xFSiGiTrvVC3nU5s2w1ZWhYHDKQ7ml%2Bci7akae%2FeVPZGpG%2FvfJBhg9htPH4OoCaBGBlh50y2M3%2FZab1Em9ZZyjTBnX4CaBMB5ZXkO%2BE%2BzrM%2FLM%2FFB9%2Bgckf0DOA9x6ZNbjfXWfYKBvT26YkhzcMKUj32xmuUrULq2OeDOnufz%2FF6%2FLndJYsX7NjT9%2FmVdCBe%2B%2BJV3ep6lQ6cCRL68qIaRdM5ZL8t26e0ey64XbulrYtMj6119ZW08yK51TJp2CqpPNR%2BBqRp78%2BfL877z00W9QdgpbeCTFwqkyU%2FBsDy5b1JwhsHrBWbaEsvAT22SLolYEWi44ZR7uX5wt8MTS6muq%2FL67jYGtgea3kCYeQ%2Bsx1B5Uj%2BGKxyZ5Zh%2B89OOnVXwGpmsTpm3tgGmrP56R%2FiUy33SFguq1BKdO6yuh6DAZyw6TrXYrllywdpuFPOZsRXS7HLmbxc%2F5C38BAAD%2F%2FwEAAP%2F%2F2kBtP4EEAAA%3D | 192.243.59.12 | 200 OK | 7 B |
URL GET HTTP/1.1inntentativeflame.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST2gkxReuzs7vd1ARlL2JMkddlkn3ZCYz4x7EdY0Ex2TdVfQm9a8nZaq7mqru6UlOwQXZ4wh60FPlm2SDuoji2UUmCyILQuYW0Zy9C8viRekxOPqg%2B33f%2B17D997rD%2FeLM9JEQU%2BvvWF2ldZ0ud0I68%2B%2FG0VX6n2VFqP6qLv63mrrSt0OX%2BytNsIX6q9Jvm2Wm2EUhlEY1deUlbEZLVciVHa3FzV6YaPVbETtFkb2v9wVARwNIIZn5GkoMavdDy5C8SnS5Otr0m3nJrv8alJomhuLoTh6O91OTZkiWcDYBojTo%2FNuGHeydg8mPZzbhRn%2B08jUjAQ%2F3ANLj85Ngg0P5j6ZhkzBxOMoh1NIPYWiU3BzC0qcEIALbGwiTe5sGFvSnb9VWqkzUnv4O1Q5I7VfLyJNvrqq1ah%2B0%2BgiVyZ1GMUeajSFGkyRFcfId5egymPw%2FAMo8RNZfthHmhxsOm2ghJ%2FPrtQUKp5CyzGoC1BUjwpQxAGKLEAiTus8iqJOKDgNuz3OV0RHslURRrQTRzQKV7soeGVvjDwbg%2BsxuN1DZvewrcawxfdwWx5OBHD5jARv7mEoPEpJUDqCkhKUiqDMCcqhPxTaNZ2%2FI7QrWHSem%2Bd5xU9MPtinhyYfyJSA2jGs8PvZGXmq2k%2FwBHuEbXlab8e9sNcO23xFSiGiTrvVC3nU5s2w1ZWhYHDKQ7ml%2Bci7akae%2FeVPZGpG%2FvfJBhg9htPH4OoCaBGBlh50y2M3%2FZab1Em9ZZyjTBnX4CaBMB5ZXkO%2BE%2BzrM%2FLM%2FFB9%2Bgckf0DOA9x6ZNbjfXWfYKBvT26YkhzcMKUj32xmuUrULq2OeDOnufz%2FF6%2FLndJYsX7NjT9%2FmVdCBe%2B%2BJV3ep6lQ6cCRL68qIaRdM5ZL8t26e0ey64XbulrYtMj6119ZW08yK51TJp2CqpPNR%2BBqRp78%2BfL877z00W9QdgpbeCTFwqkyU%2FBsDy5b1JwhsHrBWbaEsvAT22SLolYEWi44ZR7uX5wt8MTS6muq%2FL67jYGtgea3kCYeQ%2Bsx1B5Uj%2BGKxyZ5Zh%2B89OOnVXwGpmsTpm3tgGmrP56R%2FiUy33SFguq1BKdO6yuh6DAZyw6TrXYrllywdpuFPOZsRXS7HLmbxc%2F5C38BAAD%2F%2FwEAAP%2F%2F2kBtP4EEAAA%3D IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectinntentativeflame.com Fingerprint92:39:1B:53:52:8A:65:18:F3:F9:53:88:26:71:77:F6:E5:C5:39:DB ValidityTue, 16 Apr 2024 09:52:13 GMT - Mon, 15 Jul 2024 09:52:12 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST2gkxReuzs7vd1ARlL2JMkddlkn3ZCYz4x7EdY0Ex2TdVfQm9a8nZaq7mqru6UlOwQXZ4wh60FPlm2SDuoji2UUmCyILQuYW0Zy9C8viRekxOPqg%2B33f%2B17D997rD%2FeLM9JEQU%2BvvWF2ldZ0ud0I68%2B%2FG0VX6n2VFqP6qLv63mrrSt0OX%2BytNsIX6q9Jvm2Wm2EUhlEY1deUlbEZLVciVHa3FzV6YaPVbETtFkb2v9wVARwNIIZn5GkoMavdDy5C8SnS5Otr0m3nJrv8alJomhuLoTh6O91OTZkiWcDYBojTo%2FNuGHeydg8mPZzbhRn%2B08jUjAQ%2F3ANLj85Ngg0P5j6ZhkzBxOMoh1NIPYWiU3BzC0qcEIALbGwiTe5sGFvSnb9VWqkzUnv4O1Q5I7VfLyJNvrqq1ah%2B0%2BgiVyZ1GMUeajSFGkyRFcfId5egymPw%2FAMo8RNZfthHmhxsOm2ghJ%2FPrtQUKp5CyzGoC1BUjwpQxAGKLEAiTus8iqJOKDgNuz3OV0RHslURRrQTRzQKV7soeGVvjDwbg%2BsxuN1DZvewrcawxfdwWx5OBHD5jARv7mEoPEpJUDqCkhKUiqDMCcqhPxTaNZ2%2FI7QrWHSem%2Bd5xU9MPtinhyYfyJSA2jGs8PvZGXmq2k%2FwBHuEbXlab8e9sNcO23xFSiGiTrvVC3nU5s2w1ZWhYHDKQ7ml%2Bci7akae%2FeVPZGpG%2FvfJBhg9htPH4OoCaBGBlh50y2M3%2FZab1Em9ZZyjTBnX4CaBMB5ZXkO%2BE%2BzrM%2FLM%2FFB9%2Bgckf0DOA9x6ZNbjfXWfYKBvT26YkhzcMKUj32xmuUrULq2OeDOnufz%2FF6%2FLndJYsX7NjT9%2FmVdCBe%2B%2BJV3ep6lQ6cCRL68qIaRdM5ZL8t26e0ey64XbulrYtMj6119ZW08yK51TJp2CqpPNR%2BBqRp78%2BfL877z00W9QdgpbeCTFwqkyU%2FBsDy5b1JwhsHrBWbaEsvAT22SLolYEWi44ZR7uX5wt8MTS6muq%2FL67jYGtgea3kCYeQ%2Bsx1B5Uj%2BGKxyZ5Zh%2B89OOnVXwGpmsTpm3tgGmrP56R%2FiUy33SFguq1BKdO6yuh6DAZyw6TrXYrllywdpuFPOZsRXS7HLmbxc%2F5C38BAAD%2F%2FwEAAP%2F%2F2kBtP4EEAAA%3D HTTP/1.1
Host: inntentativeflame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588984; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec5f909505c3eedd175490c15c2048e0db=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 930d82c6abf5f212494b1f05c8262688
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| inntentativeflame.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2gkxReuzs7vd1ARlL2JMkddlkn3%2FM24BzHGSHBM1l1Fb1JdVTMpU93VVHVNT3IKLsgeR9CDnirfJBvURRTPLjJZEFkQMreI5uxdWBYvSo%2FB0Qfd7%2Fve9xq%2B915%2FeODOSR2Onq29ofekUnS5VQurz78bRdeqPZm6UXW00n6v3bxWNcMXu%2B1a%2BEL1NcF29HI9jMIwCqPqujSir0fLpQiZ3e1GtW5Ya9ZrUauJkfkvty6ApQH48Jw8DclnlfvBZUg2RZp8vSbsTq6zq68mTtFcGwz58dvpTqqLFMkC9k2Afnp80Q1tT9fvQadHc7vQw38aYzkjwQ%2F3EKfHFyYRDw%2FnPmMFkSLmj6MYTiHUFJJOwfQtSH5KAMaxuYU0ubOpTUF3%2F1Zpqc5I5eHvkMWMVH69jDT5alXJUfWmVi6XOrUY9T3kaAo5mCJzJ8j3liCLE7D8A0j%2BE1l%2B2EOaHG5ZpSG5n88u5RSyP4USY1AbwJWPDOD6AVwWIOFnVRZFUSfkjIYrXcYavCPiNg8j2ulHNArbK3CstDdGno3B1BjM7CMz%2B9iRYxj3Pey2h%2BUBbD4jwZv7GHKPQhAUlqCgBIUkKHKCYuiPuLJ16%2B9wZV0cXeT6RW74ic4HB%2FRI5wORElAzhuH%2BIDsnT5X7CZ6IH2FHnFVb%2FW7YbYUt1hCC86jTanZDFrVYPWyuiJDHsNJD2qX5yHtyRp795U9kckb%2B98kmYnoCq07A5CVQF4EWHnTbYy%2F9lunUCrWtraWx1LbGdAKuPbK8gnw3OFDn5Jn5oXr0Dwj2gFwEmPHIjMf78j7BQN2e3NAFObyhC0u%2B2cpymcg9Wh7xZk5z8f8vXhe7hTZ8Y82OP3%2BZlUIJ774lbN6jKZfpwJIvVyXnwqxrwwT5bsO%2BI%2BLrzm6vOpO6rHf9lfWNJDPCWqnTKag83XoEJmfkyZ%2Bvzv%2FOKx%2F9BmmmMM4jcQunUk%2FBsn3YbFGzmsCoBY%2BzJRTOT0w9XhSVJFBiwWnsYf%2FF4wWeGFp%2BTaU%2FsLcxMBXQ%2FBbSxGNoPIbKg6oxrHtskmfmwUs%2FflrGZ4hVZRIrUzmMlVEfz0jvCplvukRB%2BVqClWfVTqMR0na3FXU6VHTiZn2l3444pfVmu95u0wZyO%2Bs%2F5y%2F9BQAA%2F%2F8BAAD%2F%2F1qUuNeBBAAA | 192.243.59.12 | 200 OK | 7 B |
URL GET HTTP/1.1inntentativeflame.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2gkxReuzs7vd1ARlL2JMkddlkn3%2FM24BzHGSHBM1l1Fb1JdVTMpU93VVHVNT3IKLsgeR9CDnirfJBvURRTPLjJZEFkQMreI5uxdWBYvSo%2FB0Qfd7%2Fve9xq%2B915%2FeODOSR2Onq29ofekUnS5VQurz78bRdeqPZm6UXW00n6v3bxWNcMXu%2B1a%2BEL1NcF29HI9jMIwCqPqujSir0fLpQiZ3e1GtW5Ya9ZrUauJkfkvty6ApQH48Jw8DclnlfvBZUg2RZp8vSbsTq6zq68mTtFcGwz58dvpTqqLFMkC9k2Afnp80Q1tT9fvQadHc7vQw38aYzkjwQ%2F3EKfHFyYRDw%2FnPmMFkSLmj6MYTiHUFJJOwfQtSH5KAMaxuYU0ubOpTUF3%2F1Zpqc5I5eHvkMWMVH69jDT5alXJUfWmVi6XOrUY9T3kaAo5mCJzJ8j3liCLE7D8A0j%2BE1l%2B2EOaHG5ZpSG5n88u5RSyP4USY1AbwJWPDOD6AVwWIOFnVRZFUSfkjIYrXcYavCPiNg8j2ulHNArbK3CstDdGno3B1BjM7CMz%2B9iRYxj3Pey2h%2BUBbD4jwZv7GHKPQhAUlqCgBIUkKHKCYuiPuLJ16%2B9wZV0cXeT6RW74ic4HB%2FRI5wORElAzhuH%2BIDsnT5X7CZ6IH2FHnFVb%2FW7YbYUt1hCC86jTanZDFrVYPWyuiJDHsNJD2qX5yHtyRp795U9kckb%2B98kmYnoCq07A5CVQF4EWHnTbYy%2F9lunUCrWtraWx1LbGdAKuPbK8gnw3OFDn5Jn5oXr0Dwj2gFwEmPHIjMf78j7BQN2e3NAFObyhC0u%2B2cpymcg9Wh7xZk5z8f8vXhe7hTZ8Y82OP3%2BZlUIJ774lbN6jKZfpwJIvVyXnwqxrwwT5bsO%2BI%2BLrzm6vOpO6rHf9lfWNJDPCWqnTKag83XoEJmfkyZ%2Bvzv%2FOKx%2F9BmmmMM4jcQunUk%2FBsn3YbFGzmsCoBY%2BzJRTOT0w9XhSVJFBiwWnsYf%2FF4wWeGFp%2BTaU%2FsLcxMBXQ%2FBbSxGNoPIbKg6oxrHtskmfmwUs%2FflrGZ4hVZRIrUzmMlVEfz0jvCplvukRB%2BVqClWfVTqMR0na3FXU6VHTiZn2l3444pfVmu95u0wZyO%2Bs%2F5y%2F9BQAA%2F%2F8BAAD%2F%2F1qUuNeBBAAA IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectinntentativeflame.com Fingerprint92:39:1B:53:52:8A:65:18:F3:F9:53:88:26:71:77:F6:E5:C5:39:DB ValidityTue, 16 Apr 2024 09:52:13 GMT - Mon, 15 Jul 2024 09:52:12 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST2gkxReuzs7vd1ARlL2JMkddlkn3%2FM24BzHGSHBM1l1Fb1JdVTMpU93VVHVNT3IKLsgeR9CDnirfJBvURRTPLjJZEFkQMreI5uxdWBYvSo%2FB0Qfd7%2Fve9xq%2B915%2FeODOSR2Onq29ofekUnS5VQurz78bRdeqPZm6UXW00n6v3bxWNcMXu%2B1a%2BEL1NcF29HI9jMIwCqPqujSir0fLpQiZ3e1GtW5Ya9ZrUauJkfkvty6ApQH48Jw8DclnlfvBZUg2RZp8vSbsTq6zq68mTtFcGwz58dvpTqqLFMkC9k2Afnp80Q1tT9fvQadHc7vQw38aYzkjwQ%2F3EKfHFyYRDw%2FnPmMFkSLmj6MYTiHUFJJOwfQtSH5KAMaxuYU0ubOpTUF3%2F1Zpqc5I5eHvkMWMVH69jDT5alXJUfWmVi6XOrUY9T3kaAo5mCJzJ8j3liCLE7D8A0j%2BE1l%2B2EOaHG5ZpSG5n88u5RSyP4USY1AbwJWPDOD6AVwWIOFnVRZFUSfkjIYrXcYavCPiNg8j2ulHNArbK3CstDdGno3B1BjM7CMz%2B9iRYxj3Pey2h%2BUBbD4jwZv7GHKPQhAUlqCgBIUkKHKCYuiPuLJ16%2B9wZV0cXeT6RW74ic4HB%2FRI5wORElAzhuH%2BIDsnT5X7CZ6IH2FHnFVb%2FW7YbYUt1hCC86jTanZDFrVYPWyuiJDHsNJD2qX5yHtyRp795U9kckb%2B98kmYnoCq07A5CVQF4EWHnTbYy%2F9lunUCrWtraWx1LbGdAKuPbK8gnw3OFDn5Jn5oXr0Dwj2gFwEmPHIjMf78j7BQN2e3NAFObyhC0u%2B2cpymcg9Wh7xZk5z8f8vXhe7hTZ8Y82OP3%2BZlUIJ774lbN6jKZfpwJIvVyXnwqxrwwT5bsO%2BI%2BLrzm6vOpO6rHf9lfWNJDPCWqnTKag83XoEJmfkyZ%2Bvzv%2FOKx%2F9BmmmMM4jcQunUk%2FBsn3YbFGzmsCoBY%2BzJRTOT0w9XhSVJFBiwWnsYf%2FF4wWeGFp%2BTaU%2FsLcxMBXQ%2FBbSxGNoPIbKg6oxrHtskmfmwUs%2FflrGZ4hVZRIrUzmMlVEfz0jvCplvukRB%2BVqClWfVTqMR0na3FXU6VHTiZn2l3444pfVmu95u0wZyO%2Bs%2F5y%2F9BQAA%2F%2F8BAAD%2F%2F1qUuNeBBAAA HTTP/1.1
Host: inntentativeflame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588984; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec5f909505c3eedd175490c15c2048e0db=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d9101017597c04462dfc676106c270c8
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| inntentativeflame.com/impr.gif?sid=H4sIAAAAAAAC%2F1RS32sjVRS%2B08YXFUHpmyh51EXSmTRpEvdhsdYuxdiuu4q%2Byf016bV35g73zmTSCFJckH3wIQ%2F6oE%2FTL%2B0WdVkUn10kXRApCJu3glvwbxAW8UWZWIx7YOZ83%2FnOwHfOmU8PsnNSR0bP1t8yQ6U1XW7W%2FOpL7wfB5WpXxdmgOmivfrDauFy1%2FVc7qzX%2F5epVyXfNct0PfD%2Fwg%2BqGsjI0g%2BVShErudIJax6816rWg2cDAPs5d5sFRD6J%2FTp6DEtPKfW8Jik8QR9%2BtS7ebmuSVN6JM09RY9MXxu%2FFubPIY0RyG1kMYH190w7gHG%2Fdg4qOZXZj%2Bf41MTYn38z2w%2BPjCJFj%2FcOaTacgYTDyFvD%2BB1BMoOgE3N6HEAwJwga1txNHtLWNzuvevSkt1SiqP%2FoDKp6TycAlxdHdNq0H1htFZqkzsMAgLqMEEqjdBkp0gHS5A5Sfg6SdQ4ley%2FKiLODrcdtpAiWI2u1ITqHACLUegzkNWPspDFnrIEg%2BROKvyIAhavuDUb3c4XxEtyVaFH9BWGNDAX20j46W9EdJkBK5H4HYfid3HrhrBZj%2FB7RRwwoNLp8R7ex99USCXBLkjyClBrgjylCDvF0dCu7orbgvtMhZc5PpFXinGJu0d0COT9mRMQO0IVhQHyTl5ttyP9zT7E7vyrNoMO36n6Tf5ipRCBK1mo%2BPzoMnrfqMtfcHgVAHlFmYjD9WUvPDb30jUlDzxxRYYPYHTJ%2BBqETQLQPMCdKfAMP6Bm9hJvWOco0wZV%2BMmgjAFkrSCdM870Ofk%2BdmhupcIJD%2B9kg5%2Fv3p36SNwWyCxBT5U9wl6%2Btb4usnJ4XWTO%2FL9dpKqSA1pecQbKU3l4jdvyr3cWLG57kZfv8ZLoYR33pEu7dJYqLjnyLdrSghpN4zlkvy46d6T7FrmdtYyG2dJ99rrG5tRYqVzysQTUDUlldM9cDUlzzz8ePZ%2FXso%2Bg7IT2KxAlJ2Si4AyJ%2BDJPlwyrzlDYPWcs8RDnhVjW2fzolYEWs45ZQXc%2Fzib47Gl5ddUFQfuFnq2ApreRBwV6NsCfV2A6hFc9uQ4TezplV%2B%2BLOMrMF0ZM20rh0xb%2FflszVPSpX%2BVyCtfC3DqrLriixaToWwx2Wg2QskFazaZz0POVkS7zZG6afhisfgPAAAA%2F%2F8BAAD%2F%2FyAsyWuDBAAA | 192.243.59.12 | 200 OK | 7 B |
URL GET HTTP/1.1inntentativeflame.com/impr.gif?sid=H4sIAAAAAAAC%2F1RS32sjVRS%2B08YXFUHpmyh51EXSmTRpEvdhsdYuxdiuu4q%2Byf016bV35g73zmTSCFJckH3wIQ%2F6oE%2FTL%2B0WdVkUn10kXRApCJu3glvwbxAW8UWZWIx7YOZ83%2FnOwHfOmU8PsnNSR0bP1t8yQ6U1XW7W%2FOpL7wfB5WpXxdmgOmivfrDauFy1%2FVc7qzX%2F5epVyXfNct0PfD%2Fwg%2BqGsjI0g%2BVShErudIJax6816rWg2cDAPs5d5sFRD6J%2FTp6DEtPKfW8Jik8QR9%2BtS7ebmuSVN6JM09RY9MXxu%2FFubPIY0RyG1kMYH190w7gHG%2Fdg4qOZXZj%2Bf41MTYn38z2w%2BPjCJFj%2FcOaTacgYTDyFvD%2BB1BMoOgE3N6HEAwJwga1txNHtLWNzuvevSkt1SiqP%2FoDKp6TycAlxdHdNq0H1htFZqkzsMAgLqMEEqjdBkp0gHS5A5Sfg6SdQ4ley%2FKiLODrcdtpAiWI2u1ITqHACLUegzkNWPspDFnrIEg%2BROKvyIAhavuDUb3c4XxEtyVaFH9BWGNDAX20j46W9EdJkBK5H4HYfid3HrhrBZj%2FB7RRwwoNLp8R7ex99USCXBLkjyClBrgjylCDvF0dCu7orbgvtMhZc5PpFXinGJu0d0COT9mRMQO0IVhQHyTl5ttyP9zT7E7vyrNoMO36n6Tf5ipRCBK1mo%2BPzoMnrfqMtfcHgVAHlFmYjD9WUvPDb30jUlDzxxRYYPYHTJ%2BBqETQLQPMCdKfAMP6Bm9hJvWOco0wZV%2BMmgjAFkrSCdM870Ofk%2BdmhupcIJD%2B9kg5%2Fv3p36SNwWyCxBT5U9wl6%2Btb4usnJ4XWTO%2FL9dpKqSA1pecQbKU3l4jdvyr3cWLG57kZfv8ZLoYR33pEu7dJYqLjnyLdrSghpN4zlkvy46d6T7FrmdtYyG2dJ99rrG5tRYqVzysQTUDUlldM9cDUlzzz8ePZ%2FXso%2Bg7IT2KxAlJ2Si4AyJ%2BDJPlwyrzlDYPWcs8RDnhVjW2fzolYEWs45ZQXc%2Fzib47Gl5ddUFQfuFnq2ApreRBwV6NsCfV2A6hFc9uQ4TezplV%2B%2BLOMrMF0ZM20rh0xb%2FflszVPSpX%2BVyCtfC3DqrLriixaToWwx2Wg2QskFazaZz0POVkS7zZG6afhisfgPAAAA%2F%2F8BAAD%2F%2FyAsyWuDBAAA IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectinntentativeflame.com Fingerprint92:39:1B:53:52:8A:65:18:F3:F9:53:88:26:71:77:F6:E5:C5:39:DB ValidityTue, 16 Apr 2024 09:52:13 GMT - Mon, 15 Jul 2024 09:52:12 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RS32sjVRS%2B08YXFUHpmyh51EXSmTRpEvdhsdYuxdiuu4q%2Byf016bV35g73zmTSCFJckH3wIQ%2F6oE%2FTL%2B0WdVkUn10kXRApCJu3glvwbxAW8UWZWIx7YOZ83%2FnOwHfOmU8PsnNSR0bP1t8yQ6U1XW7W%2FOpL7wfB5WpXxdmgOmivfrDauFy1%2FVc7qzX%2F5epVyXfNct0PfD%2Fwg%2BqGsjI0g%2BVShErudIJax6816rWg2cDAPs5d5sFRD6J%2FTp6DEtPKfW8Jik8QR9%2BtS7ebmuSVN6JM09RY9MXxu%2FFubPIY0RyG1kMYH190w7gHG%2Fdg4qOZXZj%2Bf41MTYn38z2w%2BPjCJFj%2FcOaTacgYTDyFvD%2BB1BMoOgE3N6HEAwJwga1txNHtLWNzuvevSkt1SiqP%2FoDKp6TycAlxdHdNq0H1htFZqkzsMAgLqMEEqjdBkp0gHS5A5Sfg6SdQ4ley%2FKiLODrcdtpAiWI2u1ITqHACLUegzkNWPspDFnrIEg%2BROKvyIAhavuDUb3c4XxEtyVaFH9BWGNDAX20j46W9EdJkBK5H4HYfid3HrhrBZj%2FB7RRwwoNLp8R7ex99USCXBLkjyClBrgjylCDvF0dCu7orbgvtMhZc5PpFXinGJu0d0COT9mRMQO0IVhQHyTl5ttyP9zT7E7vyrNoMO36n6Tf5ipRCBK1mo%2BPzoMnrfqMtfcHgVAHlFmYjD9WUvPDb30jUlDzxxRYYPYHTJ%2BBqETQLQPMCdKfAMP6Bm9hJvWOco0wZV%2BMmgjAFkrSCdM870Ofk%2BdmhupcIJD%2B9kg5%2Fv3p36SNwWyCxBT5U9wl6%2Btb4usnJ4XWTO%2FL9dpKqSA1pecQbKU3l4jdvyr3cWLG57kZfv8ZLoYR33pEu7dJYqLjnyLdrSghpN4zlkvy46d6T7FrmdtYyG2dJ99rrG5tRYqVzysQTUDUlldM9cDUlzzz8ePZ%2FXso%2Bg7IT2KxAlJ2Si4AyJ%2BDJPlwyrzlDYPWcs8RDnhVjW2fzolYEWs45ZQXc%2Fzib47Gl5ddUFQfuFnq2ApreRBwV6NsCfV2A6hFc9uQ4TezplV%2B%2BLOMrMF0ZM20rh0xb%2FflszVPSpX%2BVyCtfC3DqrLriixaToWwx2Wg2QskFazaZz0POVkS7zZG6afhisfgPAAAA%2F%2F8BAAD%2F%2FyAsyWuDBAAA HTTP/1.1
Host: inntentativeflame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588984; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec5f909505c3eedd175490c15c2048e0db=[4991488,4991489,4991490]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7514ab9781b6201f6c2c3790f67bfaa5
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| domesticsomebody.com/sbar.json?key=21bb2def515232b1ccfc424d7005c89a&uuid=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b%3A3%3A1 | 192.243.59.13 | 200 OK | 8.1 kB |
URL GET HTTP/1.1domesticsomebody.com/sbar.json?key=21bb2def515232b1ccfc424d7005c89a&uuid=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b%3A3%3A1 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectdomesticsomebody.com FingerprintE3:47:1B:C4:87:61:83:51:2D:E0:A2:0A:DE:A8:8B:D0:88:81:A9:9A ValidityTue, 16 Apr 2024 10:14:06 GMT - Mon, 15 Jul 2024 10:14:05 GMT
Hashcd79d96d68dd7c9eb487454503bd7847 9462fbd2ad720be7a19b751d019b0acbc156d3c2 32a5deb6c7cda5c51ec38012f1ee14981d4ea556724593d9d66c1ea73ece2a1f
GET /sbar.json?key=21bb2def515232b1ccfc424d7005c89a&uuid=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b%3A3%3A1 HTTP/1.1
Host: domesticsomebody.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:56 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://conselhossabios.com
Access-Control-Allow-Origin: https://conselhossabios.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17588886; expires=Wed, 17 Apr 2024 15:57:55 GMT; secure; SameSite=None
uid_id2=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b:3:1; expires=Tue, 23 Apr 2024 15:57:55 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 17 Apr 2024 15:57:56 GMT; secure; SameSite=None
uncs=1; expires=Wed, 17 Apr 2024 15:57:56 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 17 Apr 2024 15:57:56 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 17 Apr 2024 15:57:56 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8eae1c43e69f3540e0c5d692911a5bf7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| www.youtube.com/generate_204?3LpxHg | 142.250.74.174 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube.com/generate_204?3LpxHg IP142.250.74.174:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?3LpxHg HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/PrsMavMf-_8?feature=oembed
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Tue, 16 Apr 2024 15:57:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| domesticsomebody.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuuTvKdPhGUvS0rc%2FCwgpl098z0ZNzDYoyRYEyW3RW9Sf3qSZnqrqaqe3qSU3BB9jgIeu48k2xQF9nFm%2BAikwUPAWHHU0Bz8T9Q2Ksy4%2BDoe6j3fet5Cp563vfTo%2BKShCjoxfp75kBpTVdadb92%2FcMguFHbUmnRr%2FVXo4%2Bi5o2a7b3Rier%2Ba7V3JN8zK6Ef%2BH7gB7UNZWVs%2BisTECp72AnqHb%2FeDOtBq4m%2B%2FW%2FvCg%2BOehC9S%2FIylBgvPfWuQPER0uTRunR7uclefzspNM2NRU%2Bcvp%2FupaZMkczL2HqI09MZG8Y923gCk55M5cL0%2FiEyNSbej0%2FA0tOZSLDe8VQn05ApmPg%2Fyt4IUo%2Bg6Ajc3IMSzwjABbZ3kCYPto0t6f7fKJ2gY7L0%2FA%2BockyWfr2CNPlmTat%2B7Y7RRa5M6tCPK6j%2BCKo7QlacIT9YgCrPwPNPoMRPZOX5FtLkeMdpAyUuXu3EXPh%2Bgy5z3pTLzRajy7QVR8uiLaJOHHdYo8WmBik1gopH0HIA6hZROA%2BF8lDEHorMQyIuajwIgrYvOPVXO5w3RFuySPgBbccBDfxoFQWf%2FGGAPBuA6wG4PURmD7GnBrDFD3C7FZzw4HKCnqhQSoLSEZSUoFQEZU5Q9qoToV3oqgdCu4IFsxzOcqMamrx7RE9M3pUpAbUDWFEdZZfkpYmB3gvsC%2BzJi1oYMBYKGbeCVtgIWcB5zJthU7R9v8VXOxROVVBuAdR5OFBjcu2XP5GpMfnf59tg9AxOn4GrRdDiGmhZge5WOEi%2F5SZ1Uu8a5yhTxtW5SSBMhSxfQr7vHelLcnU6yc2dR5D8%2FOZvjWmA2wqZrfCxekrQ1feHt01Jjm%2Bb0pHHO1muEnVAJ1O%2Bk9NcLn71rtwvjRWb627w5Zt8AkzKh3ely7doKlTadeTrNSWEtBvGckm%2B33QfSHarcLtrhU2LbOvWWxubSWalc8qkI9DJwv5uwdWYvHj17nSBr3%2B3A2VHsEWFpDgns4AyI%2FDsEC6b63eGwOo5h2UeyqIa2pDNL7Ui0HLeU1bB%2Fatn83po6eQ1VdWRu4%2BuXQDN7yFNKvRshZ6uQPUArlgc5pk9v%2FnzTAbTC0Om7cIx01Z%2FNrV5cjyGUxe1dqPh06jTCtptKtusGa7GUSAoDZtRGEW0gdyN41eqpb8AAAD%2F%2FwEAAP%2F%2FXR8FApoEAAA%3D | 192.243.59.13 | 200 OK | 7 B |
URL GET HTTP/1.1domesticsomebody.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuuTvKdPhGUvS0rc%2FCwgpl098z0ZNzDYoyRYEyW3RW9Sf3qSZnqrqaqe3qSU3BB9jgIeu48k2xQF9nFm%2BAikwUPAWHHU0Bz8T9Q2Ksy4%2BDoe6j3fet5Cp563vfTo%2BKShCjoxfp75kBpTVdadb92%2FcMguFHbUmnRr%2FVXo4%2Bi5o2a7b3Rier%2Ba7V3JN8zK6Ef%2BH7gB7UNZWVs%2BisTECp72AnqHb%2FeDOtBq4m%2B%2FW%2FvCg%2BOehC9S%2FIylBgvPfWuQPER0uTRunR7uclefzspNM2NRU%2Bcvp%2FupaZMkczL2HqI09MZG8Y923gCk55M5cL0%2FiEyNSbej0%2FA0tOZSLDe8VQn05ApmPg%2Fyt4IUo%2Bg6Ajc3IMSzwjABbZ3kCYPto0t6f7fKJ2gY7L0%2FA%2BockyWfr2CNPlmTat%2B7Y7RRa5M6tCPK6j%2BCKo7QlacIT9YgCrPwPNPoMRPZOX5FtLkeMdpAyUuXu3EXPh%2Bgy5z3pTLzRajy7QVR8uiLaJOHHdYo8WmBik1gopH0HIA6hZROA%2BF8lDEHorMQyIuajwIgrYvOPVXO5w3RFuySPgBbccBDfxoFQWf%2FGGAPBuA6wG4PURmD7GnBrDFD3C7FZzw4HKCnqhQSoLSEZSUoFQEZU5Q9qoToV3oqgdCu4IFsxzOcqMamrx7RE9M3pUpAbUDWFEdZZfkpYmB3gvsC%2BzJi1oYMBYKGbeCVtgIWcB5zJthU7R9v8VXOxROVVBuAdR5OFBjcu2XP5GpMfnf59tg9AxOn4GrRdDiGmhZge5WOEi%2F5SZ1Uu8a5yhTxtW5SSBMhSxfQr7vHelLcnU6yc2dR5D8%2FOZvjWmA2wqZrfCxekrQ1feHt01Jjm%2Bb0pHHO1muEnVAJ1O%2Bk9NcLn71rtwvjRWb627w5Zt8AkzKh3ely7doKlTadeTrNSWEtBvGckm%2B33QfSHarcLtrhU2LbOvWWxubSWalc8qkI9DJwv5uwdWYvHj17nSBr3%2B3A2VHsEWFpDgns4AyI%2FDsEC6b63eGwOo5h2UeyqIa2pDNL7Ui0HLeU1bB%2Fatn83po6eQ1VdWRu4%2BuXQDN7yFNKvRshZ6uQPUArlgc5pk9v%2FnzTAbTC0Om7cIx01Z%2FNrV5cjyGUxe1dqPh06jTCtptKtusGa7GUSAoDZtRGEW0gdyN41eqpb8AAAD%2F%2FwEAAP%2F%2FXR8FApoEAAA%3D IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectdomesticsomebody.com FingerprintE3:47:1B:C4:87:61:83:51:2D:E0:A2:0A:DE:A8:8B:D0:88:81:A9:9A ValidityTue, 16 Apr 2024 10:14:06 GMT - Mon, 15 Jul 2024 10:14:05 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuuTvKdPhGUvS0rc%2FCwgpl098z0ZNzDYoyRYEyW3RW9Sf3qSZnqrqaqe3qSU3BB9jgIeu48k2xQF9nFm%2BAikwUPAWHHU0Bz8T9Q2Ksy4%2BDoe6j3fet5Cp563vfTo%2BKShCjoxfp75kBpTVdadb92%2FcMguFHbUmnRr%2FVXo4%2Bi5o2a7b3Rier%2Ba7V3JN8zK6Ef%2BH7gB7UNZWVs%2BisTECp72AnqHb%2FeDOtBq4m%2B%2FW%2FvCg%2BOehC9S%2FIylBgvPfWuQPER0uTRunR7uclefzspNM2NRU%2Bcvp%2FupaZMkczL2HqI09MZG8Y923gCk55M5cL0%2FiEyNSbej0%2FA0tOZSLDe8VQn05ApmPg%2Fyt4IUo%2Bg6Ajc3IMSzwjABbZ3kCYPto0t6f7fKJ2gY7L0%2FA%2BockyWfr2CNPlmTat%2B7Y7RRa5M6tCPK6j%2BCKo7QlacIT9YgCrPwPNPoMRPZOX5FtLkeMdpAyUuXu3EXPh%2Bgy5z3pTLzRajy7QVR8uiLaJOHHdYo8WmBik1gopH0HIA6hZROA%2BF8lDEHorMQyIuajwIgrYvOPVXO5w3RFuySPgBbccBDfxoFQWf%2FGGAPBuA6wG4PURmD7GnBrDFD3C7FZzw4HKCnqhQSoLSEZSUoFQEZU5Q9qoToV3oqgdCu4IFsxzOcqMamrx7RE9M3pUpAbUDWFEdZZfkpYmB3gvsC%2BzJi1oYMBYKGbeCVtgIWcB5zJthU7R9v8VXOxROVVBuAdR5OFBjcu2XP5GpMfnf59tg9AxOn4GrRdDiGmhZge5WOEi%2F5SZ1Uu8a5yhTxtW5SSBMhSxfQr7vHelLcnU6yc2dR5D8%2FOZvjWmA2wqZrfCxekrQ1feHt01Jjm%2Bb0pHHO1muEnVAJ1O%2Bk9NcLn71rtwvjRWb627w5Zt8AkzKh3ely7doKlTadeTrNSWEtBvGckm%2B33QfSHarcLtrhU2LbOvWWxubSWalc8qkI9DJwv5uwdWYvHj17nSBr3%2B3A2VHsEWFpDgns4AyI%2FDsEC6b63eGwOo5h2UeyqIa2pDNL7Ui0HLeU1bB%2Fatn83po6eQ1VdWRu4%2BuXQDN7yFNKvRshZ6uQPUArlgc5pk9v%2FnzTAbTC0Om7cIx01Z%2FNrV5cjyGUxe1dqPh06jTCtptKtusGa7GUSAoDZtRGEW0gdyN41eqpb8AAAD%2F%2FwEAAP%2F%2FXR8FApoEAAA%3D HTTP/1.1
Host: domesticsomebody.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588886; uid_id2=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a26feca6ef82b29d0e3e7ffe5b269741
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 216.58.207.234 | 200 OK | 0 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP216.58.207.234:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 16 Apr 2024 15:57:56 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html | 45.133.44.3 | 200 OK | 661 B |
URL GET HTTP/2cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html IP45.133.44.3:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectcdn.barscreative1.com FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3 ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT
File typeHTML document, ASCII text Hash027fddd0d322239ada2f2b8b93934fda 6f99560bca5c6d8d747c802f26058344eb179cec a5b2073d8f57ef0469b777f73d6c3f4a85cc17b4c2ed2a53aa3f1acb2273dbd5
GET /sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:56 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:42 GMT
etag: W/"6242c2fe-ba1"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Tue, 16 Apr 2024 16:57:56 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png | 104.21.70.253 | 200 OK | 6.0 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png IP104.21.70.253:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typePNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced Hashc489ce2c491a22ee37a55e26a92dfd73 2fa588ab09e94dd902e5bd24b48f98ad1949c9d6 1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/chat/mob/ssp/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:56 GMT
content-type: image/png
content-length: 5982
last-modified: Mon, 21 Feb 2022 08:25:06 GMT
etag: "62134c62-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 5363080
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YE7fbrDKcp8hOjSbTfizK8SEUp8S2bvYP%2BpPvpUKW4FqlAvdYRyOkaiE10clTTmLdJYG6gnCR7IWUExQgA9hdhrjp61I16rCxHEqJg8aAUBovgoXHeaTGuu5nyFUVaBD9p3aGHOvpJYh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fbb3f4956b4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 216.58.207.234 | 200 OK | 114 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP216.58.207.234:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash50fb677e69b7874837f69309107c31fe 16eee1d2c2c06822c6613691513083b654e3dd76 90f46799703280a450c3a56460cee627b8102c672830efb5fa4518a72e7fc1d7
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1026
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 16 Apr 2024 15:57:56 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png | 45.133.44.10 | 200 OK | 14 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash962ac416cce3fad636d4904386c8d3d4 811166fceb971353dc6a9ea3a153367f20b47592 ec6c8e1c030499a846897265d0c1f66dedc6ece17c1ea6006b700faf37e73555
GET /si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:56 GMT
content-type: image/png
content-length: 14496
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:05:10 GMT
etag: "656d25c6-38a0"
expires: Thu, 18 Apr 2024 15:57:56 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| domesticsomebody.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=340 | 192.243.59.13 | 200 OK | 0 B |
URL GET HTTP/1.1domesticsomebody.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=340 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectdomesticsomebody.com FingerprintE3:47:1B:C4:87:61:83:51:2D:E0:A2:0A:DE:A8:8B:D0:88:81:A9:9A ValidityTue, 16 Apr 2024 10:14:06 GMT - Mon, 15 Jul 2024 10:14:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=340 HTTP/1.1
Host: domesticsomebody.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588886; uid_id2=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:56 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| domesticsomebody.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=346 | 192.243.61.225 | 200 OK | 0 B |
URL GET HTTP/1.1domesticsomebody.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=346 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectdomesticsomebody.com FingerprintE3:47:1B:C4:87:61:83:51:2D:E0:A2:0A:DE:A8:8B:D0:88:81:A9:9A ValidityTue, 16 Apr 2024 10:14:06 GMT - Mon, 15 Jul 2024 10:14:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=346 HTTP/1.1
Host: domesticsomebody.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588886; uid_id2=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 16 Apr 2024 15:57:56 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| domesticsomebody.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=317 | 192.243.59.13 | 200 OK | 0 B |
URL GET HTTP/1.1domesticsomebody.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=317 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectdomesticsomebody.com FingerprintE3:47:1B:C4:87:61:83:51:2D:E0:A2:0A:DE:A8:8B:D0:88:81:A9:9A ValidityTue, 16 Apr 2024 10:14:06 GMT - Mon, 15 Jul 2024 10:14:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=317 HTTP/1.1
Host: domesticsomebody.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588886; uid_id2=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:56 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| unseenreport.com/pxf.gif?uuid=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=21bb2def515232b1ccfc424d7005c89a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=15 | 192.243.59.12 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=21bb2def515232b1ccfc424d7005c89a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=15 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=21bb2def515232b1ccfc424d7005c89a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=15 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:57 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: de47d0a301bf930f029a74d47df67d14
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.131 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.131:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:37:01 GMT
expires: Fri, 11 Apr 2025 02:37:01 GMT
cache-control: public, max-age=31536000
age: 480056
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.131 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.131:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 10:46:32 GMT
expires: Wed, 16 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 18685
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| domesticsomebody.com/pixel/sbs?c=1 | 192.243.61.225 | 200 OK | 0 B |
URL GET HTTP/1.1domesticsomebody.com/pixel/sbs?c=1 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectdomesticsomebody.com FingerprintE3:47:1B:C4:87:61:83:51:2D:E0:A2:0A:DE:A8:8B:D0:88:81:A9:9A ValidityTue, 16 Apr 2024 10:14:06 GMT - Mon, 15 Jul 2024 10:14:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbs?c=1 HTTP/1.1
Host: domesticsomebody.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588886; uid_id2=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 16 Apr 2024 15:57:57 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| domesticsomebody.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWtkxRetl%2BS3%2BomgzG4Y6YWLEUznvf5uZzE4jpFgTIaZEd1Jfb1OmXqvHlWv%2BnWyCg7ILBtB1y%2BnkwnqIDO4ExykM%2BAiIEy7Cmg2%2FgcKs1W6bWy9i7r31jkFp869nx76C1KDp%2Bc33zP7Smu61qyGlasfRtG1yqZK%2FaAy6LQ%2BajWuVWz%2FjW6rGr5WeUfyXbNWC6MwjMKosq6sjM1gbQpCZQ%2B7UbUbVhu1atRsYGD%2F2zsfwNEAon9BXoYSk5WnwSUoPkaaPLop3W5ustffTrymubHoi5P3093UFCmSRRnbAHF6MmfDuGfrT2DS45lcmP4%2FRKYmJPjxCVh6MhcJ1j%2Ba6WQaMgUT%2F0fRH0PqMRQdg5t7UOIZAbjA1jbS5MGWsQXd%2BxulU3RCVp7%2FAVVMyMqvl5Am39zQalC5Y7TPlUkdBnEJNRhD9cbI%2FCny%2FSWo4hQ8%2FwRK%2FETWnm8iTY62nTZQ4vzVbsxFGNbpKucNudpoMrpKm3FrVbRFqxvHXVZvsplBSo2h4jG0HIK6ZXgXwKsAPg7gswCJOK%2FwKIraoeA07HQ5r4u2ZC0RRrQdRzQKWx14Pv3DEHk2BNdDcHuAzB5gVw1h%2FQ9wOyWcCOBygr4oUUiCwhEUlKBQBEVOUPTLY6FdzZUPhHaeRfNcm%2Bd6OTJ575Aem7wnUwJqh7CiPMwuyEtTA4MX2BfYleeVWsRYTci4GTVr9RqLOI95o9YQ7TBs8k6XwqkSyi2BugD7akKu%2FPInMjUh%2F%2Ft8C4yewulTcLUM6q%2BAFiXoTon99FtuUif1jnGOMmVclZsEwpTI8hXke8GhviCXZ5Pc2H4Eyc%2Bu%2F1afBbgtkdkSH6unBD19f3TbFOTotikcebyd5SpR%2B3Q65Ts5zeXyV%2B%2FKvcJYsXHTDb98k0%2BBafnwrnT5Jk2FSnuOfH1DCSHturFcku833AeS3fJu54a3qc82b721vpFkVjqnTDoGnS7s7xZcTciLl%2B%2FOFvjqd9tQdgzrSyT%2BjMwDyozBswO4bKHfGQKrFxyWBSh8ObI1trjUikDLRU9ZCfevni3qkaXT11SVh%2B4%2BenYJNL%2BHNCnRtyX6ugTVQzi%2FPMoze3b957kMppdGTNulI6at%2Fmxm8%2FR4DKfOK%2FVQtJmMZZvJRrMRSy5Ys8lCHnNWF50OR%2B4m8Svlyl8AAAD%2F%2FwEAAP%2F%2F3cvQ6poEAAA%3D | 192.243.59.13 | 200 OK | 7 B |
URL GET HTTP/1.1domesticsomebody.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWtkxRetl%2BS3%2BomgzG4Y6YWLEUznvf5uZzE4jpFgTIaZEd1Jfb1OmXqvHlWv%2BnWyCg7ILBtB1y%2BnkwnqIDO4ExykM%2BAiIEy7Cmg2%2FgcKs1W6bWy9i7r31jkFp869nx76C1KDp%2Bc33zP7Smu61qyGlasfRtG1yqZK%2FaAy6LQ%2BajWuVWz%2FjW6rGr5WeUfyXbNWC6MwjMKosq6sjM1gbQpCZQ%2B7UbUbVhu1atRsYGD%2F2zsfwNEAon9BXoYSk5WnwSUoPkaaPLop3W5ustffTrymubHoi5P3093UFCmSRRnbAHF6MmfDuGfrT2DS45lcmP4%2FRKYmJPjxCVh6MhcJ1j%2Ba6WQaMgUT%2F0fRH0PqMRQdg5t7UOIZAbjA1jbS5MGWsQXd%2BxulU3RCVp7%2FAVVMyMqvl5Am39zQalC5Y7TPlUkdBnEJNRhD9cbI%2FCny%2FSWo4hQ8%2FwRK%2FETWnm8iTY62nTZQ4vzVbsxFGNbpKucNudpoMrpKm3FrVbRFqxvHXVZvsplBSo2h4jG0HIK6ZXgXwKsAPg7gswCJOK%2FwKIraoeA07HQ5r4u2ZC0RRrQdRzQKWx14Pv3DEHk2BNdDcHuAzB5gVw1h%2FQ9wOyWcCOBygr4oUUiCwhEUlKBQBEVOUPTLY6FdzZUPhHaeRfNcm%2Bd6OTJ575Aem7wnUwJqh7CiPMwuyEtTA4MX2BfYleeVWsRYTci4GTVr9RqLOI95o9YQ7TBs8k6XwqkSyi2BugD7akKu%2FPInMjUh%2F%2Ft8C4yewulTcLUM6q%2BAFiXoTon99FtuUif1jnGOMmVclZsEwpTI8hXke8GhviCXZ5Pc2H4Eyc%2Bu%2F1afBbgtkdkSH6unBD19f3TbFOTotikcebyd5SpR%2B3Q65Ts5zeXyV%2B%2FKvcJYsXHTDb98k0%2BBafnwrnT5Jk2FSnuOfH1DCSHturFcku833AeS3fJu54a3qc82b721vpFkVjqnTDoGnS7s7xZcTciLl%2B%2FOFvjqd9tQdgzrSyT%2BjMwDyozBswO4bKHfGQKrFxyWBSh8ObI1trjUikDLRU9ZCfevni3qkaXT11SVh%2B4%2BenYJNL%2BHNCnRtyX6ugTVQzi%2FPMoze3b957kMppdGTNulI6at%2Fmxm8%2FR4DKfOK%2FVQtJmMZZvJRrMRSy5Ys8lCHnNWF50OR%2B4m8Svlyl8AAAD%2F%2FwEAAP%2F%2F3cvQ6poEAAA%3D IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectdomesticsomebody.com FingerprintE3:47:1B:C4:87:61:83:51:2D:E0:A2:0A:DE:A8:8B:D0:88:81:A9:9A ValidityTue, 16 Apr 2024 10:14:06 GMT - Mon, 15 Jul 2024 10:14:05 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzWtkxRetl%2BS3%2BomgzG4Y6YWLEUznvf5uZzE4jpFgTIaZEd1Jfb1OmXqvHlWv%2BnWyCg7ILBtB1y%2BnkwnqIDO4ExykM%2BAiIEy7Cmg2%2FgcKs1W6bWy9i7r31jkFp869nx76C1KDp%2Bc33zP7Smu61qyGlasfRtG1yqZK%2FaAy6LQ%2BajWuVWz%2FjW6rGr5WeUfyXbNWC6MwjMKosq6sjM1gbQpCZQ%2B7UbUbVhu1atRsYGD%2F2zsfwNEAon9BXoYSk5WnwSUoPkaaPLop3W5ustffTrymubHoi5P3093UFCmSRRnbAHF6MmfDuGfrT2DS45lcmP4%2FRKYmJPjxCVh6MhcJ1j%2Ba6WQaMgUT%2F0fRH0PqMRQdg5t7UOIZAbjA1jbS5MGWsQXd%2BxulU3RCVp7%2FAVVMyMqvl5Am39zQalC5Y7TPlUkdBnEJNRhD9cbI%2FCny%2FSWo4hQ8%2FwRK%2FETWnm8iTY62nTZQ4vzVbsxFGNbpKucNudpoMrpKm3FrVbRFqxvHXVZvsplBSo2h4jG0HIK6ZXgXwKsAPg7gswCJOK%2FwKIraoeA07HQ5r4u2ZC0RRrQdRzQKWx14Pv3DEHk2BNdDcHuAzB5gVw1h%2FQ9wOyWcCOBygr4oUUiCwhEUlKBQBEVOUPTLY6FdzZUPhHaeRfNcm%2Bd6OTJ575Aem7wnUwJqh7CiPMwuyEtTA4MX2BfYleeVWsRYTci4GTVr9RqLOI95o9YQ7TBs8k6XwqkSyi2BugD7akKu%2FPInMjUh%2F%2Ft8C4yewulTcLUM6q%2BAFiXoTon99FtuUif1jnGOMmVclZsEwpTI8hXke8GhviCXZ5Pc2H4Eyc%2Bu%2F1afBbgtkdkSH6unBD19f3TbFOTotikcebyd5SpR%2B3Q65Ts5zeXyV%2B%2FKvcJYsXHTDb98k0%2BBafnwrnT5Jk2FSnuOfH1DCSHturFcku833AeS3fJu54a3qc82b721vpFkVjqnTDoGnS7s7xZcTciLl%2B%2FOFvjqd9tQdgzrSyT%2BjMwDyozBswO4bKHfGQKrFxyWBSh8ObI1trjUikDLRU9ZCfevni3qkaXT11SVh%2B4%2BenYJNL%2BHNCnRtyX6ugTVQzi%2FPMoze3b957kMppdGTNulI6at%2Fmxm8%2FR4DKfOK%2FVQtJmMZZvJRrMRSy5Ys8lCHnNWF50OR%2B4m8Svlyl8AAAD%2F%2FwEAAP%2F%2F3cvQ6poEAAA%3D HTTP/1.1
Host: domesticsomebody.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588886; uid_id2=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:57 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ad87eb810eddc48934cfd232be5e0672
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.174 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.174:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713283078317
Content-Type: application/json
X-Goog-Visitor-Id: CgtYWDJMdDlXaEJHRSiCwPqwBjIOCgJOTxIIEgQSAgsMICk%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240409.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713283074895&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C843%2C474&vis=1&wgl=true&ca_type=image
Content-Length: 11215
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/PrsMavMf-_8?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 16 Apr 2024 15:57:58 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.174 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.174:443
Requested byhttps://www.youtube.com/embed/PrsMavMf-_8?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713283099906
Content-Type: application/json
X-Goog-Visitor-Id: CgtYWDJMdDlXaEJHRSiCwPqwBjIOCgJOTxIIEgQSAgsMICk%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240409.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713283074895&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C843%2C474&vis=1&wgl=true&ca_type=image
Content-Length: 932
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/PrsMavMf-_8?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 16 Apr 2024 15:58:20 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css | 104.21.70.253 | 200 OK | 4.6 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css IP104.21.70.253:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (4886), with no line terminators Hash1230b98f01a549572edcd2bf3bdcb4ad ac87a2a752ffb8b5167566183fddd531d7971be9 9a2954fc66ebbb9adf18c2ea4403d2a0a5dedf2928f9905e1fc656f5dc1b208d
GET /sb/chat/mob/ssp/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:56 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-1209"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ty5N3xTgD2y8491PKXbj4vrKzqHOOIQ9vBPH7HQkhGxU1hwmm6BjmpWq4HoZwQ5cRKEJl1m82pURApkY80NiXKvGqb82AjbAHlE%2FcKsviTMoe3x4mTn9%2B5J9FpQEaVK2heu56EZQlfiv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fbaae6956b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| conselhossabios.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css | 104.21.14.244 | 200 OK | 11 kB |
URL GET HTTP/3conselhossabios.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeASCII text, with very long lines (11256), with no line terminators Hash2b0dd7eecea03b4bdedb94ba622fdb03 703becba85161118dd6fc66af465428ef43f561c b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: text/css
last-modified: Sun, 03 Jul 2022 11:52:34 GMT
etag: W/"62c18302-2bf8"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lBbY7HjXWGulVLGx8GTjxfezoh1QWnblasZcuBIpzV%2BFE%2FbTVij1SYApJ%2FjeWEgQ4zMUK5RECtURt%2B%2BSHTWn%2FQw1IXSO5Rmtwh6Wi5yVTnEefoVny7HySj%2FGP12QOxQI3ceJl1Kr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9dc2b0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-content/themes/customify/assets/fonts/font-awesome/css/font-awesome.min.css | 104.21.14.244 | 200 OK | 31 kB |
URL GET HTTP/3conselhossabios.com/wp-content/themes/customify/assets/fonts/font-awesome/css/font-awesome.min.css IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /wp-content/themes/customify/assets/fonts/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: text/css
last-modified: Sun, 03 Jul 2022 12:58:04 GMT
etag: W/"62c1925c-7918"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ej5jtzfj4UJ%2F6rGRCt2IMI9I0T4LvRGAxSYMp4hDEjGUPaN9T%2B4Ga%2FU5dxKH%2BSb5P%2FYnAZOYPXsGCBpz630zEcQk9iapT9r26TG%2B71G7%2FvAvPGjkHi5DJ4spPQFaqPm9YPJhqTNz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9dc360b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-content/themes/customify/style.min.css | 104.21.14.244 | 200 OK | 158 kB |
URL GET HTTP/3conselhossabios.com/wp-content/themes/customify/style.min.css IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeASCII text, with very long lines (63436) Size158 kB (157560 bytes) Hash57f578a56a2b74070582846494507151 4294a8b1a2ecc950754192fa81eb893074fc7a43 61814d390cd144de96d86b8c68bc273f298ef115cfb19e671fb65145d3b2e087
GET /wp-content/themes/customify/style.min.css HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: text/css
last-modified: Sun, 03 Jul 2022 12:58:04 GMT
etag: W/"62c1925c-26778"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cIFQnkaLBb%2Frzy6yZ1koKsThqBQmra29uGANtK60g3Arsu5zKoKnbNP8FdN4yUTwNNvsgMr9%2BbXu1N1ol%2B2W3GKTGTw6XNWqBjCgVc%2BzYR%2F8WHLTbQ69HMdFmUwqB7VWR6gbaXDV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9dc3b0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.addtoany.com/menu/svg/icons/facebook.js | 104.22.71.197 | 200 OK | 429 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/facebook.js IP104.22.71.197:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeASCII text, with very long lines (439), with no line terminators Hash874e1638740e061f9fa55eda3180724c 108a7e30fa0f7d50b961845ec970a2745f3c821f d1bf990d09417220fcb615079a569e0a403c75beef0eac536e5976b7751c0370
GET /menu/svg/icons/facebook.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"68925fa8e347041c6006837e73c518bc"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D5%2FelDOA1X6lJxd4hoKc1SstI%2BUk6H7aLhYI3JgKyPAYrARXzVcjmGI5iOzxv5g69mqe%2FWyaJ2yw1sZ55OAYguG0h25a2%2BasmVO9rCMljFTHIkuKSnyJeGKOxxrAiHPF2TT7b7FV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87555fb09a1fbe42-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| domesticsomebody.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=95 | 192.243.59.13 | 200 OK | 0 B |
URL GET HTTP/1.1domesticsomebody.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=95 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectdomesticsomebody.com FingerprintE3:47:1B:C4:87:61:83:51:2D:E0:A2:0A:DE:A8:8B:D0:88:81:A9:9A ValidityTue, 16 Apr 2024 10:14:06 GMT - Mon, 15 Jul 2024 10:14:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=95 HTTP/1.1
Host: domesticsomebody.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Cookie: u_pl=17588886; uid_id2=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 15:57:56 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| conselhossabios.com/wp-content/plugins/add-to-any/addtoany.min.css | 104.21.14.244 | 200 OK | 1.6 kB |
URL GET HTTP/3conselhossabios.com/wp-content/plugins/add-to-any/addtoany.min.css IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeASCII text, with very long lines (1606), with no line terminators Hash882914044de1c4ae5ea33132d58753b3 09af0e5de5e347cb58b63cd48ddbcf497e893c10 e100ead8fb6bd34ef773e4906d8d6e4b03ae101bdf1045f5e565593b12e3d146
GET /wp-content/plugins/add-to-any/addtoany.min.css HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: text/css
last-modified: Wed, 07 Feb 2024 10:12:59 GMT
etag: W/"65c357ab-644"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OH9%2FuwhA57MVjTFqI%2B%2BWEatkdFnLnRjSD9tiNbhO49aKi3YCsNStZA8LbkCTglbTWNCllIpBhGn9UvzBjgBDqQWAF6pgSzyd8ZZYMRF35nqLhhPIRnMv2scTTOayCU89JjRAwmHh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9dc330b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css | 104.21.14.244 | 200 OK | 6.1 kB |
URL GET HTTP/3conselhossabios.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeASCII text, with very long lines (6260), with no line terminators Hashcfc379b470bf26dbcda1be077321e161 58dc4b03039015ea760b38cfcf4d4dbf9e073804 ea9dad8f5aee2d781f65fa5ac686123b12af9505a4c49f860a58e85b50912fa1
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: text/css
last-modified: Wed, 07 Feb 2024 10:13:04 GMT
etag: W/"65c357b0-17e1"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mzbkDD16vFI7MV1YkMBio8kj7MOc4y3sZ30jAsYD%2Bny3VF0kBEySmRa%2F2qqhFEn0evlyB2WbvTyQ%2BvRoAXCcuXn3QGi8jkkgVwvfsCJwQStl5ov%2Bjyt1pQ3AcV595Jq49BLCw%2FCi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9ec500b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.addtoany.com/menu/svg/icons/a2a.js | 104.22.71.197 | 200 OK | 182 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/a2a.js IP104.22.71.197:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeASCII text, with no line terminators Hash4db08a52ad8927bb87884526a96beb94 da541aec9c65b613f83ecfc56cd3c80a3221932a 4172078aeb1306c9c9f454cb78cee31e0d09c25742197e59fa6718c3bb2b4abc
GET /menu/svg/icons/a2a.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"0aca4ea1e5f8f250126a8e0c597dd969"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SAj917MYTV6kxjwHxsgoApolRqvfDOcP6whzJjZPH0jEDHJhv4EW8aw3lGMkkSeK4x8yhbdyH0yqHz124T4LJR7Wimq9IHP1%2FpmHlYZU4fpXUahxnYgWdlbA9zJQuCPnYp%2Bpkt%2FR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87555fb0aa56be42-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css | 104.21.14.244 | 200 OK | 23 kB |
URL GET HTTP/3conselhossabios.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeASCII text, with very long lines (22849), with no line terminators Hash6301c349d3553cc99ff95da23f40e4e6 cc6eed924b680333ad70f0e05458a7d532da3201 2d0ee8b9f5976ae2dc3eefb7aace301d8540ad3d5f01c88f5049b3b7257a1d2f
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=27249
etag: W/"65c357b0-6a71"
last-modified: Wed, 07 Feb 2024 10:13:04 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N00viK6AX4MPWbEy%2BjIwMpvr2YIFqjsPp132%2BsufkS%2FwTeztFJ3DQofUATnAramCgrm48S%2Fzw1vhKAefTfQLUJFDaGSofh5%2BwBttoAXBxUIRSSWRu6S09CS5ye6gaH3Z8JUfI1T7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9dc300b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-content/plugins/add-to-any/addtoany.min.js | 104.21.14.244 | 200 OK | 129 B |
URL GET HTTP/3conselhossabios.com/wp-content/plugins/add-to-any/addtoany.min.js IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash04da7b386f4a75ef928a5f9f2fd3c315 df45beff471215ae26bdcb525d02efe71b3f55a5 dc7786546f12a0ee81f56254469c74213f45547a78e8de0ceec17893e6d55afd
GET /wp-content/plugins/add-to-any/addtoany.min.js HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: application/javascript
last-modified: Wed, 07 Feb 2024 10:12:59 GMT
etag: W/"65c357ab-81"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LU2U%2FtljCPXUUozqw7x%2FDur%2F%2FHIMsl%2Fr3sXX40M8XfGKY1UDBSdvvRdNqV96sbc9sEnaFIuQELk26b5eFovqZRjmlpM83a7VL0kQnUogTtuPCUl1I5hpbmdh8l848k3uMNnCZ2N%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9ec450b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.addtoany.com/menu/modules/core.BRQnzO8v.js | 104.22.71.197 | 200 OK | 72 kB |
URL GET HTTP/3static.addtoany.com/menu/modules/core.BRQnzO8v.js IP104.22.71.197:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash629401c31553d2f42a6ca46e58c2a97b 0ab6084caa72f90913c7e4119f491838726ec5c2 91b9b24f0aa59668e4d0a770ee7a294b9baa361a76a20ade8128cd0482a5d805
GET /menu/modules/core.BRQnzO8v.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
etag: W/"25da5432b1057724b8210f17e9b9db05"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NM7cjJbLQcAj67aFGVmtBEy0jlKZvmza15BbHklSaeDUHEzEKbqcUJLib03PwSzXt2jPZNNHosAPf29g3YtKKF7ZbvMpULpGPUBSU558XA03qvF%2BcLxHw9O7LWmb15c122Xl%2B7GP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87555fae5e3cbe42-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-includes/js/mediaelement/wp-mediaelement.min.css | 104.21.14.244 | 200 OK | 4.2 kB |
URL GET HTTP/3conselhossabios.com/wp-includes/js/mediaelement/wp-mediaelement.min.css IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeASCII text, with very long lines (4186), with no line terminators Hashea958276b7de454bd3c2873f0dc47e5f b143f6e8e8f79d8f104c26b0057ef5514d763219 2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: text/css
last-modified: Sun, 03 Jul 2022 11:52:34 GMT
etag: W/"62c18302-105a"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VNRyryqoz6qzRar71FCGKg7FLvSR9hB7A3%2B%2F4h9Ky3eyv0%2BS9nVQIcwlB50NwPIBOsoqLhcwi5eFQvouQraI9osXGIzmjS%2Fgbztm%2FkgioBe5nZpWcN3aDYSS2bRFM94rHFgwi3CA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9dc2d0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| stats.wp.com/e-202416.js | 192.0.76.3 | 200 OK | 7.3 kB |
IP192.0.76.3:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerSectigo Limited Subject*.wp.com Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2 ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7504), with no line terminators Hash43bf680c0caba9b62f1c46e128d40360 e8950271ef6af3759a7429b45a7e583e6e24e305 21ef883e41d9b0fc02bd11801d9823daf93a2b294a6f05b6080bad1b689facab
GET /e-202416.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/14377-1704402356563.6672
content-encoding: br
expires: Mon, 14 Apr 2025 16:23:38 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/page.js | 104.22.71.197 | 200 OK | 3.0 kB |
URL GET HTTP/2static.addtoany.com/menu/page.js IP104.22.71.197:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeJavaScript source, ASCII text, with very long lines (3132), with no line terminators Hash40486591ae8ea6d1423aeb13f1fd509b f847af56588642de93c6fe0d2ce182303f312455 16a6753a1de5c5602b0ca4afe3d17b95e2cb18d6b79bf7cdccedba3a733c1138
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"e346c2841e4abbb66ee259e9540abb61"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K9SlRo17%2FEYYEY7TY5VUBa2G0luclF%2Fi9mKP9JIoxaGyg9HDTkx2QKGyXUgtsqVrmCpVypdr9QFZX1ju19YZtHnDUhdiuj6G3zHqk6iKvpR1qlQKK8BqoVYJrA9%2B5qfHIQrYZfty"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2648
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87555faa885fbe51-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/reddit.js | 104.22.71.197 | 200 OK | 893 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/reddit.js IP104.22.71.197:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeASCII text, with very long lines (903), with no line terminators Hash1f5dd30051ff637ea1d19ce73aced89c bfdd1d1c07492ba397bdcf13e262edcfd8692a5e c1bf0dd12b2f71de1e7e154b309caa18d2f1c2a8dc077beba23b89432ad72a81
GET /menu/svg/icons/reddit.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"1fe5b5008de689ce6464d7bcb07e742c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CgSmfp%2B7kFYzAyAb41oq3JlwgC4xPj4o6SqfvneLlRLBjmqzrLf%2BjTAPbE6%2BCCg9Muw%2BOhqJoTu3XGQvU4utM8osl2neDYeJwu9gL4Sd7X2qrbg%2FSHvRhb%2FBhn1%2FpZLiFMfMS631"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87555fb0aa42be42-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-content/uploads/2022/06/cropped-unnamed-file-32x32.jpg | 104.21.14.244 | 200 OK | 653 B |
URL GET HTTP/3conselhossabios.com/wp-content/uploads/2022/06/cropped-unnamed-file-32x32.jpg IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 32x32, components 3 Hashda82f05ab15fe8f8592498428e0f1cf0 a912bd6d5f6c11c65b9823f54b33deebf217e1c3 66c47b21eaced71bcf8fbe37ce76ad3835110c19029318a6bb105c5507072271
GET /wp-content/uploads/2022/06/cropped-unnamed-file-32x32.jpg HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; _pk_id.2.c22b=8774f563a6ded49f.1713283075.; _pk_ses.2.c22b=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:55 GMT
content-type: image/jpeg
content-length: 653
last-modified: Sun, 03 Jul 2022 12:58:04 GMT
etag: "62c1925c-28d"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0VmUGCKpIov8gFLfQfXL4i%2BQjtajSiC2R%2FN1Aw4kpBYwypEmOJ84NWrS7%2BcOaMs%2FjRo42kHHB6yV%2FsdOk9QognDubOHf9hs84nCk4gbeJIjveIU3ZZ1cb%2F7Mk1s6%2BMPke8yHCmRk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fb278130b59-OSL
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/matomo/matomo.js | 104.21.14.244 | 200 OK | 64 kB |
URL GET HTTP/3conselhossabios.com/matomo/matomo.js IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeJavaScript source, ASCII text, with very long lines (1601) Hash6c8a6050183822af4752b2889d9afb30 ccb7393a57b419c52caa18e5a482c32f852a8ef3 5951438dd533bfc072aa250205ad3d618ac9add4b8f609a68d4608c7d3282434
GET /matomo/matomo.js HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 01:28:26 GMT
etag: W/"628d863a-faed"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qAwsaF2D0B3qwlBXHWCcA8vdij8PpQ5GtIgadds050Dea4FS9SEURST2iMTU77U8R2DKQGE2uE8qT8hEo1m5HvuDmiXGO2QBwew1JxQ7dNu73%2BeC5SKPZyTgPE4hbzEnPgcQ7PLa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fade9990b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.addtoany.com/menu/svg/icons/facebook_messenger.js | 104.22.71.197 | 200 OK | 377 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/facebook_messenger.js IP104.22.71.197:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeASCII text, with very long lines (387), with no line terminators Hash23cc0ea96073427e734d2fe8e0c48a5f 6c1ee7a7b5f39c2d8d61e59ed7b79aed345744dc 93e335f821f34868160fc8fce7f50f4959188b80d9842619580c17883498a5d6
GET /menu/svg/icons/facebook_messenger.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"f483bc9dc6e969b7039e6a0cc1b8a62c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AdjDyRvc4AEI7L9xATsggAF0EXcV%2BWbOuqJKtULokcI5PCpnm%2FDjk0inrrIFZcexoAtBvJmJzczGheHSaus0dwHFOYihU623vjt4AZTGNo7E3lYa6xj5aLSZiJtMvKC1IzYg8HD6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87555fb0aa4bbe42-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-content/themes/customify/assets/js/theme.min.js | 104.21.14.244 | 200 OK | 14 kB |
URL GET HTTP/3conselhossabios.com/wp-content/themes/customify/assets/js/theme.min.js IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeJavaScript source, ASCII text, with very long lines (13552), with no line terminators Hashcc19eb4de42f8963ec53dbf0a2f840ff 6140c3d80da3d6ae2b960a1e269a71ef4399fe18 89da8a67bf7be35c63ed91847bc0f7021bde1a309570230c0549cd8fe1e4413e
GET /wp-content/themes/customify/assets/js/theme.min.js HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: application/javascript
last-modified: Sun, 03 Jul 2022 12:58:04 GMT
etag: W/"62c1925c-34f0"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mzWzkSMk1hPvWb6D%2BtJ6BTqX5DNb8q64BiUOCmpQBAle6vezDemqB2JzfC5nbcHxOIUBeym%2BDuKND2wLaic67VR82nWsr3jW%2B8PPC7Ji%2F89L4%2F85FBinmwmjxpnpdXDLx6ren10K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9ec540b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-content/uploads/2022/06/cropped-unnamed-file-192x192.jpg | 104.21.14.244 | 200 OK | 6.0 kB |
URL GET HTTP/3conselhossabios.com/wp-content/uploads/2022/06/cropped-unnamed-file-192x192.jpg IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 192x192, components 3 Hash1f4fd08d99b22cd0a7ac3c43227dd090 e416e10030bfa7d94e2cfb6256490034ea53dfd0 d6f0ff36f4e1150356cecb70215d6f7dec50a4b9dbad41bd317adb2d07e0fedc
GET /wp-content/uploads/2022/06/cropped-unnamed-file-192x192.jpg HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; _pk_id.2.c22b=8774f563a6ded49f.1713283075.; _pk_ses.2.c22b=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=9fcd003a-cc4e-45ba-a5f6-d7d69ff9b35b%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:55 GMT
content-type: image/jpeg
content-length: 6023
last-modified: Sun, 03 Jul 2022 12:58:04 GMT
etag: "62c1925c-1787"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FIxlqPVzc8wspcEILWwrozFnlofTk7EveIKwdLkcruZuTtBHHo0tsJ9poGpztfuxe51h9Ucm23cqF0Au4Wkq4FMJP09D5b5PZGkdmsp6uyqAHjlC%2BrAmp%2Bjem3C3VeNfXxn9Ijgr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fb2780f0b59-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css | 104.21.70.253 | 200 OK | 79 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css IP104.21.70.253:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hashfc638645a938f69e69360c75335ffd1a 143132fb8361c3ad0acf88cb70bf0b07c0ecc2d4 7ef76aab275d0221c68602d18f81b4285b280756f0f71d535ed8b5b889bc2f90
GET /sb/chat/mob/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:56 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k3DXDR9uE4Ey7DASQWubl6IZMsg%2BZR9v9dGcBbUBrBdENoPVfh6aJUhTJUhjthLBmmMOX2kSgB99k1dG3G%2BkOE6jCebqRoFa1QmIKxMUg8knnkX3W0fYQ3xPqfIw7%2Fn8FfJEOwjQ04hN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fbaae7156b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/whatsapp.js | 104.22.71.197 | 200 OK | 1.1 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/whatsapp.js IP104.22.71.197:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeASCII text, with very long lines (1122), with no line terminators Hashd822c46f36a55fdbfcc5029e62e19937 c575da68fa99eeb33863f281395755cbf20004d4 062ec1f7c3acea435122961b771eb2e4d136a3e870b17d3e811413f5aa78ed3e
GET /menu/svg/icons/whatsapp.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"83af4df8173e43227812296bb8542dcf"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0wCDbIgDy%2BEBKetvs6KKFK7G9f%2F0hRoevFLe4RxV29AuplwNdJD4f7ykyEs4dxp%2FRtOiPx2vA6vKySLbJDxsPcjFozZMJcvKJd7O2nm3X4qvciAlwDsJot3NZSwCJWLZOZwVLFA6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87555fb0aa4fbe42-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js | 104.21.70.253 | 200 OK | 382 B |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js IP104.21.70.253:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (411), with no line terminators Hash9ffae600059bf4e6adb35ebb274ae385 6130e466c04551baa2a5d650e6bd5a87daba73a7 a7d15e051fb3d3c31494683306bb7752478354894825b110d26d333cbeaaeb39
GET /sb/chat/mob/ssp/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://conselhossabios.com
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:56 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:08 GMT
etag: W/"62134c64-17e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kq7hHZl1I8K%2BlNR52kSe9yCYPDHkHYMbhvBBLgIycA6z5qG9RYYEiiaF73JCGXb7QulhPuZtN2ZAIQBeiP8ietG40t%2FecY%2Fyy1siKeCjHUyDE0Cbbwu3yY5C0EvPHmdaP7LGj%2FoHYOgg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fbbc81656b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| conselhossabios.com/wp-includes/js/jquery/jquery-migrate.min.js | 104.21.14.244 | 200 OK | 14 kB |
URL GET HTTP/3conselhossabios.com/wp-includes/js/jquery/jquery-migrate.min.js IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: application/javascript
last-modified: Wed, 09 Aug 2023 00:58:44 GMT
etag: W/"64d2e4c4-3509"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RJcBO39TtJpznY7q3zpZBHRUPHtY0qAR3y%2Bt4m94ClQH%2FEEDPNA13zHRd7HBCfAW6ih2FF002T7n7poRzCCmBqcrcNg%2B8YT0LtKJpCfyF7pX7HJgqPKCBuC0EjByXFTIfod8tf2b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9ec430b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js | 104.21.70.253 | 200 OK | 90 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js IP104.21.70.253:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc
GET /sb/chat/mob/ssp/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 15:57:56 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:09 GMT
etag: W/"62134c65-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 4093732
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b%2FIq6J6jbEOd2Zw1vHe%2FSDKEeBTq86QFQjBNbLcmu1QYmRI0ruYedHt7qXGlhmlx%2FsdLbSJRwpGrwjA9zEHXVGWNczu3bdi3ux8UUL1LOAj%2FHQ4Yl5LdudKbrRDadA7PISrKssDeXUUx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fbb4f4c56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/sm.25.html | 104.22.71.197 | 200 OK | 716 B |
URL GET HTTP/3static.addtoany.com/menu/sm.25.html IP104.22.71.197:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint25:DC:52:06:E9:84:6F:BC:CB:DD:82:F7:D3:4C:8F:F5:9F:49:7E:DD ValiditySat, 24 Feb 2024 06:33:02 GMT - Fri, 24 May 2024 06:33:01 GMT
File typeHTML document, ASCII text, with very long lines (744), with no line terminators Hashc3c97893ca5c74e7504aa4ec474ea41b cdccb12d7e73682e0e807107243ede7d5e14c962 b79f65e9ffe3bad9bd9cdcffed0758430f7eb1a630c368dc173eecdeb2821f00
GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zug0GuV8TT18l%2FvMZH%2FJnDeJHp7wf%2B1Y662Hj9%2BLzz2bUcCdNCoPp%2Fh0DEFIQdCRWhP4K%2BoKw%2FRmNo3FmNPd%2Fwhjcq0lNYxvJsnDWqwQO4JO8fVs77yEaENmOQytJ1Ua8d%2FapSMn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 15
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87555fae4e32be42-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css | 104.21.14.244 | 200 OK | 2.6 kB |
URL GET HTTP/3conselhossabios.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeASCII text, with very long lines (2593), with no line terminators Hashe66edcec9bad7f9cda2eb94ee608753c 8b8133c9915dacc312bb42596b697dae6e183169 b1f4247657f994f6c9520c982ab95f953ee1c052706594d74f521cae670cf8be
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:53 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3106
etag: W/"65c357b0-c22"
last-modified: Wed, 07 Feb 2024 10:13:04 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x%2FIqRp%2Fj3I2kycy9mv4Pa56Qq6MZY%2Fa%2FAv4u4ZzIcmGvw%2FtpXs61Tv%2BlDhXZt8J1ULpv%2F0S%2B%2BYdK%2FZi1ChL6bJ2jtLKmKrD541tu%2BPU0acg4PHJLxDd9a8pA%2FFioHA8xvU4LhPbU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9dc2e0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| conselhossabios.com/wp-includes/js/jquery/jquery.min.js | 104.21.14.244 | 200 OK | 88 kB |
URL GET HTTP/3conselhossabios.com/wp-includes/js/jquery/jquery.min.js IP104.21.14.244:443
Requested byhttps://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/ CertificateIssuerGoogle Trust Services LLC Subjectconselhossabios.com Fingerprint2C:2B:02:99:50:99:3D:41:77:B3:14:03:1B:11:21:BA:3D:DF:C3:85 ValiditySat, 23 Mar 2024 17:31:14 GMT - Fri, 21 Jun 2024 17:31:13 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: conselhossabios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://conselhossabios.com/quando-aluga-um-carro-e-nao-devolve/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 15:57:54 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 00:58:42 GMT
etag: W/"654add42-15601"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uCm0SEpSPOGNdselR2BMaS0wj7ub7eAP%2BaB4iZk722KXgT%2FtIdsPTeVVEuVSmJMuqho49OU%2B8H%2BKyO%2BEfe0ru6pbdB%2BiNPyj0VpuO1JO%2FcSmiQZa8bNvxatIeNkcme338ZyZv%2FnN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87555fa9ec400b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
0.0.0.0