Edit tour

Windows Analysis Report
https://www.fsist.com.br

Overview

General Information

Sample URL:	https://www.fsist.com.br
Analysis ID:	1530112
Infos:

Detection

Score:	52
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

AI detected landing page (webpage, office document or email)

HTML page contains suspicious onload / onerror event

Phishing site detected (based on logo match)

HTML body contains low number of good links

HTML page contains hidden javascript code

Submit button contains javascript call

Classification

Process Tree

System is w10x64

chrome.exe (PID: 5904 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 3300 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2240 --field-trial-handle=2188,i,15235355289027217109,10389378411862367938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6992 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6732 --field-trial-handle=2188,i,15235355289027217109,10389378411862367938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 340 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6788 --field-trial-handle=2188,i,15235355289027217109,10389378411862367938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6336 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.fsist.com.br" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

HTML page contains suspicious onload / onerror event

Source: https://www.fsist.com.br/#certificadonecessarios

HTTP Parser: (function(img) { window.ftclick = "https://adclick.g.doubleclick.net/aclk?sa=

Phishing site detected (based on logo match)

Source: https://www.fsist.com.br/	Matcher: Template: excel matched
Source: https://www.fsist.com.br/	Matcher: Template: excel matched
Source: https://www.fsist.com.br/	Matcher: Template: excel matched
Source: https://www.fsist.com.br/	Matcher: Template: excel matched

Source: https://www.fsist.com.br/contato

HTTP Parser: Number of links: 0

Source: https://www.fsist.com.br/

HTTP Parser: Base64 decoded: gularRegularicomoonicomoonFont generated by IcoMoon.Font generated by IcoMoon.

Source: https://www.fsist.com.br/contato	HTTP Parser: On click: Enviar();
Source: https://www.fsist.com.br/contato	HTTP Parser: On click: Enviar();

Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/	HTTP Parser: No favicon
Source: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/	HTTP Parser: No favicon
Source: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1	HTTP Parser: No favicon
Source: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1	HTTP Parser: No favicon
Source: https://www.fsist.com.br/#certificadonecessarios	HTTP Parser: No favicon
Source: https://www.fsist.com.br/#certificadonecessarios	HTTP Parser: No favicon
Source: https://www.fsist.com.br/#certificadonecessarios	HTTP Parser: No favicon
Source: https://www.fsist.com.br/#certificadonecessarios	HTTP Parser: No favicon
Source: https://www.fsist.com.br/#certificadonecessarios	HTTP Parser: No favicon
Source: https://www.fsist.com.br/#certificadonecessarios	HTTP Parser: No favicon
Source: https://www.fsist.com.br/imgs/autxmlnfe.png	HTTP Parser: No favicon
Source: https://www.fsist.com.br/contato	HTTP Parser: No favicon
Source: https://www.fsist.com.br/contato	HTTP Parser: No favicon
Source: https://www.fsist.com.br/monitor-de-notas	HTTP Parser: No favicon
Source: https://www.fsist.com.br/monitor-de-notas	HTTP Parser: No favicon

Source: https://www.fsist.com.br/contato	HTTP Parser: No <meta name="author".. found
Source: https://www.fsist.com.br/contato	HTTP Parser: No <meta name="author".. found

Source: https://www.fsist.com.br/contato	HTTP Parser: No <meta name="copyright".. found
Source: https://www.fsist.com.br/contato	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49750 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.4:50355 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/css/min.css?CAF25CD5 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?render=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/js/min.js?CAF25CD5 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH
Source: global traffic	HTTP traffic detected: GET /imgs/site%203.0/pdf.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH
Source: global traffic	HTTP traffic detected: GET /imgs/site%203.0/certificate.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/css/min.css?CAF25CD5 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: sslteste2.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?render=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/js/min.js?CAF25CD5 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5
Source: global traffic	HTTP traffic detected: GET /imgs/site%203.0/certificate.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5
Source: global traffic	HTTP traffic detected: GET /imgs/site%203.0/pdf.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=615292075 HTTP/1.1Host: server4.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=456401537 HTTP/1.1Host: server3.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=928007208 HTTP/1.1Host: server2.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=946028603 HTTP/1.1Host: server5.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=w23a324qou9v HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx?ssllocal=OK&sslexterno=OK&iduser=319771858 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=946028603 HTTP/1.1Host: server5.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx?ssllocal=OK&sslexterno=OK&iduser=319771858 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: sslteste2.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=456401537 HTTP/1.1Host: server3.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=615292075 HTTP/1.1Host: server4.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=928007208 HTTP/1.1Host: server2.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1
Source: global traffic	HTTP traffic detected: GET /pagead/html/r20241007/r20190131/zrt_lookup_fy2021.html HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490377&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373594&bpp=7&bdt=2220&idt=4021&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&correlator=3717780412659&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=350&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087700%2C44795921%2C95343454%2C95344187%2C95340253%2C95340255&oid=2&pvsid=3387663613290942&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaEe%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=4057 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2729452301&adk=478090332&adf=2045730728&pi=t.ma~as.2729452301&w=340&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490377&rafmt=1&format=340x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373601&bpp=1&bdt=2227&idt=4072&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=632x280&correlator=3717780412659&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=913&ady=89&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087700%2C44795921%2C95343454%2C95344187%2C95340253%2C95340255&oid=2&pvsid=3387663613290942&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaeE%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=4079 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1112480324821546&output=html&adk=1812271804&adf=3025194257&abgtt=3&lmt=1728490377&plaf=1%3A2%2C7%3A2&plat=1%3A128%2C2%3A128%2C3%3A128%2C4%3A128%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.fsist.com.br%2F&pra=7&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373603&bpp=7&bdt=2229&idt=4087&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=632x280%2C340x280&nras=1&correlator=3717780412659&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087700%2C44795921%2C95343454%2C95344187%2C95340253%2C95340255&oid=2&pvsid=3387663613290942&tmod=1031379896&uas=0&nvt=1&fsapi=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=4094 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=w23a324qou9vAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/zEg4NaMiOUeKKZ2pqXY4HMvMf5VCq4avNU_6WgNs2Cw.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=w23a324qou9vAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/drt/s?v=r20120211 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490377&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373594&bpp=7&bdt=2220&idt=4021&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&correlator=3717780412659&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=350&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087700%2C44795921%2C95343454%2C95344187%2C95340253%2C95340255&oid=2&pvsid=3387663613290942&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaEe%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=4057Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/zEg4NaMiOUeKKZ2pqXY4HMvMf5VCq4avNU_6WgNs2Cw.js HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CLTW2i6sGZ6PTD6O0vPIPhMebsAfI4qDneZexre-PEpud9f0IEAEg7JXMEmDJBqAB0v6XmQPIAQmoAwHIA8sEqgTpAU_Q7ftT7bMaD3dknSey1Y_abBgdNmr8eT3vFaWxejVkIKARYKUo4iN1bheooeA3vzlv6lfi_AwWESJ5RVCCp3pbpiSxrB8MBEzxWPJ4CJYBS6SWjjtL0jUAQ1zCgRlBB6scPg6XQ-ZXntnzo6hoL9CLJv_l0-cmQLTVFQYsgcqNGTKQwX-sOuC8gPForP68vt0RUXQJFQvkEK1yyXNi-QNNog-ICXIr4OHTkVFqNnjGhf-t_ytmyksO6y9Ge5LYKvy7JQB2Haez2Ik7vEmgVQHma0dlellgb_XZk_of4zQ4fSILvyl25VgNwAT6jcuJyASIBY_aw7hNkgUECAQYAZIFBAgFGASgBi6AB5aB6GaoB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAf3wrEC2AcA8gcEEIePB9IIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WJCwsrjYgYkDmglZaHR0cHM6Ly92ZXJ5ZmFzdC5pby8_YXA9YWR3JmFzPWdfZF9mYXN0X2luJmRtW2Fkc109b2xkX2FkYXB0aXZlJmRtW3R5cGVdPWRpcyZnYWRfc291cmNlPTWACgHICwHaDBEKCxDgn9H0t5_CgYwBEgIBA7gT5APYEwyIFAHQFQGYFgGAFwGyFx4KGggAEhRwdWItMTExMjQ4MDMyNDgyMTU0NhgAGAG6FwI4AbIYBRguIgEA0BgB6BgB&sigh=qbJyYs89t8o&uach_m=%5BUACH%5D&ase=2&cid=CAQSTwDpaXnffSGglvXajMBiiuqjET8IlTglUO_xUJZy9OLgcQS5cca-I09KoRjmFGaY98KoN7GZpd59RNA7D3Fetg5hNz-PSfma5qZjCHIdRukYAQ&template_id=484&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source, trigger;navigation-sourceReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2729452301&adk=478090332&adf=2045730728&pi=t.ma~as.2729452301&w=340&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490377&rafmt=1&format=340x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373601&bpp=1&bdt=2227&idt=4072&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=632x280&correlator=3717780412659&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=913&ady=89&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087700%2C44795921%2C95343454%2C95344187%2C95340253%2C95340255&oid=2&pvsid=3387663613290942&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaeE%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=4079Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CXD_Gi6sGZ8HlAZz1xtYP5fLv2ArI4qDnea7_y_SMEpud9f0IEAEg7JXMEmDJBqAB0v6XmQPIAQGoAwHIA8sEqgTsAU_Q6WqEUoy1qnL0OxaOitF7swr85dLKaf-9hpvHt2oNmTkOGzoESjytbrcIH7UMo6MVaAwbVmv_W1-09Oh_-8oE02SKeKSy8M2u7tt3Qyzkgo7HQJF05Npwrlllh5mJa3hrxdxDjndoIYIk2NVEfIb1xkOgiuMHDWvy0zogHwF7Ob7ZfMLSai9kc6chwytF7a66T68f7HUxddKSE1qNDQ37rMXovPgXBWkaWIIbADNV2vbKK_ztuFXJtVX58nOI5i58-wE9efja5J2a4LVsyp0biaopOJUOKOmsdaGdXD8hjxjTAkB4hu-YmgpwwAT6jcuJyASIBY_aw7hNkgUECAQYAZIFBAgFGASAB5aB6GaoB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAf3wrEC2AcB8gcEEM3aA9IIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WNu5pLjYgYkDmglaaHR0cHM6Ly92ZXJ5ZmFzdC5pby8_YXA9YWR3JmFzPWdfZF9mYXN0X2luJmRtW2Fkc109bmV3X2FkYXB0aXZlMSZkbVt0eXBlXT1kaXMmZ2FkX3NvdXJjZT01gAoByAsB2gwRCgsQsOHPhNLoiMafARICAQPYEwyIFAHQFQGYFgGAFwGyFx4KGggAEhRwdWItMTExMjQ4MDMyNDgyMTU0NhgAGAG6FwI4AbIYBRgBIgEA0BgB6BgB&sigh=--3SeGG9aLg&uach_m=%5BUACH%5D&ase=2&cid=CAQSTgDpaXnfZnIVk-fOIQaupnusu55DVVZBG6suq82BGPPiFM2BoaD5neYItQT-jAilcBWk_uEXEGhbsQdsOybLj1lgRxJACTv97UGsuOCdGBgB&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source, trigger;navigation-sourceReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490377&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373594&bpp=7&bdt=2220&idt=4021&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&correlator=3717780412659&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=350&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087700%2C44795921%2C95343454%2C95344187%2C95340253%2C95340255&oid=2&pvsid=3387663613290942&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaEe%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=4057Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /pagead/drt/ui HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/drt/si?st=NO_DATA HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg
Source: global traffic	HTTP traffic detected: GET /pagead/drt/ui HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/drt/si?st=NO_DATA HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.0.1728490378.0.0.0; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.0.1728490378.0.0.0; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/aframe HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.0.1728490378.0.0.0; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.0.1728490378.0.0.0; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: sslteste2.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=pwyvpq1939pk HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490391&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490391806&bpp=7&bdt=223&idt=168&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&correlator=3154597662639&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=350&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C42532523%2C44795922%2C95332585%2C95343328%2C95343455%2C95344187%2C95344522%2C95335245&oid=2&pvsid=716573222194574&tmod=1031379896&uas=0&nvt=1&ref=https%3A%2F%2Fwww.fsist.com.br%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaEe%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=188 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2729452301&adk=478090332&adf=2045730728&pi=t.ma~as.2729452301&w=340&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490392&rafmt=1&format=340x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490391854&bpp=3&bdt=270&idt=162&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&prev_fmts=632x280&correlator=3154597662639&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=913&ady=89&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C42532523%2C44795922%2C95332585%2C95343328%2C95343455%2C95344187%2C95344522%2C95335245&oid=2&pvsid=716573222194574&tmod=1031379896&uas=0&nvt=1&ref=https%3A%2F%2Fwww.fsist.com.br%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaeE%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=169 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.0.1728490378.0.0.0; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1112480324821546&output=html&adk=1812271804&adf=3025194257&abgtt=3&lmt=1728490392&plaf=1%3A2%2C7%3A2&plat=1%3A128%2C2%3A128%2C3%3A128%2C4%3A128%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.fsist.com.br%2F&pra=7&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&aiopts=1&aief=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490391884&bpp=2&bdt=301&idt=147&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&prev_fmts=632x280%2C340x280&nras=1&correlator=3154597662639&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C42532523%2C44795922%2C95332585%2C95343328%2C95343455%2C95344187%2C95344522%2C95335245&oid=2&pvsid=716573222194574&tmod=1031379896&uas=0&nvt=1&fsapi=1&ref=https%3A%2F%2Fwww.fsist.com.br%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=151 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=298800252 HTTP/1.1Host: server2.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=330893699 HTTP/1.1Host: server3.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=33093284 HTTP/1.1Host: server5.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=789503911 HTTP/1.1Host: server4.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx?ssllocal=OK&sslexterno=OK&iduser=319771858 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.0.1728490378.0.0.0; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: sslteste2.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.0.1728490378.0.0.0; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=330893699 HTTP/1.1Host: server3.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=298800252 HTTP/1.1Host: server2.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=789503911 HTTP/1.1Host: server4.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=33093284 HTTP/1.1Host: server5.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=C3pNqmasGZ6GqHtecjuwP1czVMf3Sto16nt7IiosMitGj7b4BEAEg7JXMEmDJBqABsLqh1wPIAQmoAwHIA8sEqgTvAU_QnI5y3ZWdh4vO9ipBYwLFb2GPuMu8zdkqY1kLlwe6Pz_raWohvBmAlX1mFBog3Us07-Gol759s-wcF4QZH3aSrUyIWSxpeoGpv-Up3lw9RQmDX3vK552IThiWOzPf3lb5Dv66uMMUopyQfsNUnzGgxqnjr0AWJ7WcG_Cc4vcKW_RP-vYtLUIicisBdYIR9oascxcUm-FcpF95ZklxLF_BYtrEoRrmmcNat9FLLa-8E_C9QHJMOAjj2bVQoVUM9U55zvW06okGr_XbJomnNTMUXJkpFKiu3CGksCWa6jwTvWQMh0e7_CWaD9xJRedCwASzkrSIlQOIBZvZ7JspkgUECAQYAZIFBAgFGASgBi6AB62DrnaoB9m2sQKoB6a-G6gHjs4bqAeT2BuoB_DgG6gH7paxAqgH_p6xAqgHr76xAqgH98KxAtgHAPIHBBDc0RTSCCYIgGEQARgfMgKKAjoLgECAwICAgKCogAJIvf3BOljWx5q_2IGJA5oJqQFodHRwczovL3d3dy5rYXlhay5jb20vc2VtaS9nZG50ZXh0L2hvdGVsX2dlbmVyYWwvYW55L2VuLmh0bWw_YWlkPTEwODczMzk5MTIxOSZ0aWQ9JmxvY3A9Mjg0MCZsb2NpPSZuPWQmZD1jJmZpZD0mY2lkPTQ2MjU2NDgyOTM3NSZwaWQ9d3d3LmZzaXN0LmNvbS5iciZhY2VpZD0mZ2FkX3NvdXJjZT01gAoByAsBogwIKgYKBOjCsQLaDBAKChDQ7Nb1v6Sb22oSAgED2BMMiBQE0BUBgBcBshceChoIABIUcHViLTExMTI0ODAzMjQ4MjE1NDYYABgBuhcCOAGyGAkSAqdPGC4iAQDQGAHoGAE&sigh=-p5Y4xdKhD4&cmd=ChdjYS1wdWItMTExMjQ4MDMyNDgyMTU0NhDuAxgB&uach_m=%5BUACH%5D&ase=2&cid=CAQSOwDpaXnfXrZsxXSuNzc64dIKqMdE3duPkbOgYweWV5L6K5okGouO1XzUnRye-5CAuk2Jjb2xIRZrHgy8GAE&template_id=494&vis=1&ebtr=1&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source, trigger, not-navigation-sourceReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2729452301&adk=478090332&adf=2045730728&pi=t.ma~as.2729452301&w=340&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490392&rafmt=1&format=340x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490391854&bpp=3&bdt=270&idt=162&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&prev_fmts=632x280&correlator=3154597662639&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=913&ady=89&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C42532523%2C44795922%2C95332585%2C95343328%2C95343
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx?ssllocal=OK&sslexterno=OK&iduser=319771858 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaTCN2PoY1hcbsvM3AlBxau_2wAZ1ZP8iSPvUOmpsi7zhiCGesO-VNWExkdZAZVdIkAiL1q3sAqPKZbNpc8yQRTN9KLCEA HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /google_pixel?google_gid=CAESEIxjDNuOzHMZA0eosOmhn-M&google_cver=1&google_push=AXcoOmSxur8xZ40MKPFu1c3xJUhpT-hbrMNJflXIjsjYVoC3O3Sa0BJQ_K1zkhd-MwLk6wk0AGB-fvwYqCVMx1nJUGmzkkJSKWVrsw HTTP/1.1Host: ads.travelaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adxcookie?id=&google_gid=CAESEOw6stEkw72yrlVOBRK3SiQ&google_cver=1&google_push=AXcoOmTAxMWTpxMJ-CYAX1wOV9CM4hkw_WdcIDfNxrPPtvJh4Z_HYKHgtZRu5eRws9rxV6yTUTeZqUFzR-4E4ZOnunS3BSsQouok0_Q HTTP/1.1Host: match.adsby.bidtheatre.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/adx/cm/pixel?google_gid=CAESENzT_PFHHYWJqDAQj7f-cHg&google_cver=1&google_push=AXcoOmQp5L6p6-B1M0hKarsImXO79OVm698BZ0GpuIh55FaPU6pkfw7qlnggghJulHk5di0_Wsi-lluW6IdhLZzgumoGhWf35ZLi1dUHhg HTTP/1.1Host: www.temu.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13J1lcTHEO1dkjia1CNqXFZwqu2m9uAtngKgqI3kou64x7Ym93P9DjqEKUHn8Q_z0Pc3CvflVbE8MQ HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13JCiPixVk4_9oiqfifaAvBTQ4-p2z18132C99HuBNNLYp7zMJINsA6ZIeuOG6LE9-HEfloyfu6n HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /match/?int_id=19&redir=1&google_gid=CAESEAxz4WuEi_-ipoEYUkBCu7I&google_cver=1&google_push=AXcoOmTsupw4OFvgscysMWt1LVCxVNq9jPUyAe1iHynsPAh5pHKsZ7LKu5GOUxmTm747rYrmFR_uPPR0HtByynp5k3T5HYZD5xLzaFWF HTTP/1.1Host: onetag-sys.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CzEJWmasGZ9GpIb7GvPIPzfHMwAXmo_veetWNu8DgEor9oITDARABIOyVzBJgyQagAfXrjvkCyAEJqAMByAPLBKoE9QFP0IAlyCZyubB-HFU9HcWeL2sub7yKYm9CX3c5sTnuBVg9e0ezHuPbEmLGJNIHa3r5qt4FeXlo2Kxh3yHUmt_Am1_BXjUPrncTUw-2UBsnD_lY-_Hedt5EcdRIIhJTrXzW40E-limhxw9yhgp6Q9UrZFPpORkcdx_K---f25Lm2SPS-UCDAUKpiNiFw09Ctrwf4AIxs5f65eUEVdtka4jXOk5b-CGllC7yUm2mGRlRkPDwkd-yeoYqeUmpUq3zDCF8aruGoYxfH-Vj8NLp7vv9bBCEYH81jF9n_dY7VMsI97yuJcVMKJXkN5m4iAkGGT2nc14-pcAEsLOJgvAEiAWN29aIUJIFBAgEGAGSBQQIBRgEoAYugAfZn-9bqAfVyRuoB9m2sQKoB6a-G6gHjs4bqAeT2BuoB_DgG6gH7paxAqgH_p6xAqgHr76xAqgH98KxAtgHAPIHBBDzwCvSCCYIgGEQARgfMgKKAjoLgECAwICAgKCogAJIvf3BOljNvJq_2IGJA5oJgAJodHRwczovL3NlYXJjaC55YWhvby5jb20veWhzL3NlYXJjaD9wPWVtcGxveWVlK2V2YWx1YXRpb24rc29mdHdhcmVzJmhzcGFydD15YWhvbyZoc2ltcD15aHNtLWc0MWEmZ19hcD1nZ3QyJnR5cGU9ZW1wbG95ZWUrZXZhbHVhdGlvbitzb2Z0d2FyZXMmZ3R5cGU9LS1ta3ctLWRjLW10LTcwNjQ5OTg2Njc0NC1zLXB0aWQtLXBncmlkLTE2NzUwODA3Mjg4MC1jcGduaWQtMjE0OTMwMzQzODEtbi1kLXBsLXd3dy5mc2lzdC5jb20uYnImZ2FkX3NvdXJjZT01gAoByAsBogwIKgYKBOjCsQLaDBAKChDQqM7Z2-aR1z8SAgEDuBPkA9gTDNAVAYAXAbIXHgoaCAASFHB1Yi0xMTEyNDgwMzI0ODIxNTQ2GAAYAboXAjgBshgJEgLcURguIgEA0BgB6BgB&sigh=x4eM9l8x-KI&uach_m=%5BUACH%5D&ase=2&cid=CAQSOwDpaXnf4qY-VVeRcYSb5A3QB_Pts9zGDzP5PYBmRsI4ukejBHtmGvpL5W4yC1ItbuIb_OMImD73c1PPGAE&template_id=484&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: not-navigation-source, trigger, event-sourceReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490391&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490391806&bpp=7&bdt=223&idt=168&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&correlator=3154597662639&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=350&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C4
Source: global traffic	HTTP traffic detected: GET /d/sync/cookie/generic?https://cm.g.doubleclick.net/pixel?google_nid=adelphic_mobile&google_gid=CAESELRq3tLWLanjlpO3GMAFO48&google_cver=1&google_push=AXcoOmTA7HRQE_WgdcrvGFwTEBaS-A3m12S2zlqA1NDQNOue-a3ubjkZRrvx4Hw5RZI_88uRqmh1DYl-cbGkcqOj3N_w8eWRhUImw7_9&google_hm=${ADELPHIC_CUID_B64} HTTP/1.1Host: sync.ipredictive.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ju/cs/google?google_gid=CAESEP-8kI__fXU56vSPESGqaV0&google_cver=1&google_push=AXcoOmS7CBsVjrA0gg8oIhbKZpAyR_fbmsHz1K5-VpEN3VRYpvdgHZ5AegOTbxHfwki9p3TR1phivJbYZeJJ3kaEjZN858lxbCeiquG9 HTTP/1.1Host: gtrace.mediago.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /d/sync/cookie/generic?https://cm.g.doubleclick.net/pixel?google_nid=adelphic_mobile&google_gid=CAESELRq3tLWLanjlpO3GMAFO48&google_cver=1&google_push=AXcoOmQiD51g-9IqUPgnAIqZ8cjkoG77enz2_91FrgUabIJA1evSv5MkQb6pVyHB27R47PPaXdnhvojOX9EIUqcI6hPs2Uc0XDoiaF8h&google_hm=${ADELPHIC_CUID_B64} HTTP/1.1Host: sync.ipredictive.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /match/?int_id=19&redir=1&google_gid=CAESEAxz4WuEi_-ipoEYUkBCu7I&google_cver=1&google_push=AXcoOmQ7t61p1mXJCYK2z4ZzfJBTiZ7sLstsWPqGfcgrQmkc8OMxFqtFeC1PMY_5xWJkFZlEibpieeGotRJVE8ZJ4_v4YqpJsy4HhD0 HTTP/1.1Host: onetag-sys.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13LF3wkPKkN21fG_nH1YCdmpifAdC4l2H4AEs0sMJpyH_vFbaF8KilIJOPcmb30V8h3haKFC HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /CookieSyncAdX?google_gid=CAESEKiBdEgmQPQZYe82P6DF2II&google_cver=1&google_push=AXcoOmSOlP36C6a42QAx5g_auiVG-wEPpjyFPXCpUPiMP0HpPTRvHa5hM6HCE3F-B6vRKF6tQkKy_YOriv91KXAVU_OZGKISvl4-okk HTTP/1.1Host: rtb.adentifi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_gid=CAESEBCXjOdVLhlpuk-jchKhUnU&google_cver=1&google_push=AXcoOmTzEP93au9h4j5LMhgxkAYnL9k1AyGEZWvj8X1m_S11wkqpK5lxn3C6cCUSuMYiuVCtF6cev4UAORTgHM8B_fXQNxR-jBdijmxy HTTP/1.1Host: an.yandex.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_gid=CAESEBCXjOdVLhlpuk-jchKhUnU&google_cver=1&google_push=AXcoOmTFNHaPSGnjlNulANlgQ8CRCRHZXBobh9_rb8NeC3H3BqWVDyhzINTdsllcDubhTnYnb_ToeT5YEOhosW2b91Y5E9GT2WReSu-t HTTP/1.1Host: an.yandex.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dpixel?a=p-n5vvLvRdjg0ek&eid=0&qc_google_push=&google_gid=CAESEEyPEkqDPEOe6W3TkAAFr4g&google_cver=1&google_push=AXcoOmSCBOpDMza6XsnPjK7FyVdKqX5gK46kaIlbEJWpvGCleGAcI3nGLhJ8MDFVzEl7JfUlPnMCk2dmZhPwiJWKo1I3ABwrE8OHxwk HTTP/1.1Host: cms.quantserve.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEHcCsrGI00BcUAQv-jSS-mE&google_cver=1&google_push=AXcoOmR8zfTY9K2X7fONDSDTtVAAdY1OUjYcP6aY56KdDlGack872lvlLS_ffSMu6SXPyOOq4FZODLnmBnuM-XGxeqi2ZSpFc-pZ1XE HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ping_match.gif?ei=GOOGLE&rurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3D9675309%26google_hm%3D_wfivefivec64esc_&google_gid=CAESEKgw0DWfZst5-GVQV8bHDdk&google_cver=1&google_push=AXcoOmTSbUZOFj1QVdyW9j7MxP5MPHw9FQCcvHDv0SN6WGOoMtf_pKot7z0v50kd9RKvBAFtCwEyvyv_LaTDEe0KQKYgAYRblnFAlCM HTTP/1.1Host: pm.w55c.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pub/sync?pubid=pub6871767557696&google_push=AXcoOmTNiWyOVtZzVZdfYEl1NFlHFkopEc6WYxDqHFRRaZ5WHIc6A871Uny8GmdyztqeJddFRtCqHxbjXR8yOpxgTWzKWTbO-QR0Sm37jQ&google_gid=CAESENX3xIrBdlB295ekHhYRjQs&google_cver=1 HTTP/1.1Host: t.adx.opera.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=toutiao_usd&google_push=AXcoOmTyIn7Sf3MEgownWO6g2KO68wzGmJkOw9xpaOTmnRbkgRdOUTCZBdYzgPfDZXk41R5-xat7hO_-eXE0mDog32lB1Tb48HbLkWR7 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=gcsDSnSZQLoYW8ZE6o_qKg&google_push=AXcoOmSxur8xZ40MKPFu1c3xJUhpT-hbrMNJflXIjsjYVoC3O3Sa0BJQ_K1zkhd-MwLk6wk0AGB-fvwYqCVMx1nJUGmzkkJSKWVrsw HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=adelphic_mobile&google_gid=CAESELRq3tLWLanjlpO3GMAFO48&google_cver=1&google_push=AXcoOmTA7HRQE_WgdcrvGFwTEBaS-A3m12S2zlqA1NDQNOue-a3ubjkZRrvx4Hw5RZI_88uRqmh1DYl-cbGkcqOj3N_w8eWRhUImw7_9&google_hm=u6qn8EOrRYavpHs6gpmW4w== HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=adelphic_mobile&google_gid=CAESELRq3tLWLanjlpO3GMAFO48&google_cver=1&google_push=AXcoOmQiD51g-9IqUPgnAIqZ8cjkoG77enz2_91FrgUabIJA1evSv5MkQb6pVyHB27R47PPaXdnhvojOX9EIUqcI6hPs2Uc0XDoiaF8h&google_hm=PhUyCs3aRl6nRBpAxLpjVQ== HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=linkedin&google_push=AXcoOmShd5UH0SS1vL0ez6304h5VtpSdX8D57cJ6mfYo05taFsAPp9BiquJ-t6_P5hFCw3ghuMtU7aNcHqS2pgsvhIllgIki0dOu40Kn HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bt&google_push=AXcoOmTAxMWTpxMJ-CYAX1wOV9CM4hkw_WdcIDfNxrPPtvJh4Z_HYKHgtZRu5eRws9rxV6yTUTeZqUFzR-4E4ZOnunS3BSsQouok0_Q HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /btr/view?ai=C3pNqmasGZ6GqHtecjuwP1czVMf3Sto16nt7IiosMitGj7b4BEAEg7JXMEmDJBqABsLqh1wPIAQmoAwHIA8sEqgTvAU_QnI5y3ZWdh4vO9ipBYwLFb2GPuMu8zdkqY1kLlwe6Pz_raWohvBmAlX1mFBog3Us07-Gol759s-wcF4QZH3aSrUyIWSxpeoGpv-Up3lw9RQmDX3vK552IThiWOzPf3lb5Dv66uMMUopyQfsNUnzGgxqnjr0AWJ7WcG_Cc4vcKW_RP-vYtLUIicisBdYIR9oascxcUm-FcpF95ZklxLF_BYtrEoRrmmcNat9FLLa-8E_C9QHJMOAjj2bVQoVUM9U55zvW06okGr_XbJomnNTMUXJkpFKiu3CGksCWa6jwTvWQMh0e7_CWaD9xJRedCwASzkrSIlQOIBZvZ7JspkgUECAQYAZIFBAgFGASgBi6AB62DrnaoB9m2sQKoB6a-G6gHjs4bqAeT2BuoB_DgG6gH7paxAqgH_p6xAqgHr76xAqgH98KxAtgHAPIHBBDc0RTSCCYIgGEQARgfMgKKAjoLgECAwICAgKCogAJIvf3BOljWx5q_2IGJA5oJqQFodHRwczovL3d3dy5rYXlhay5jb20vc2VtaS9nZG50ZXh0L2hvdGVsX2dlbmVyYWwvYW55L2VuLmh0bWw_YWlkPTEwODczMzk5MTIxOSZ0aWQ9JmxvY3A9Mjg0MCZsb2NpPSZuPWQmZD1jJmZpZD0mY2lkPTQ2MjU2NDgyOTM3NSZwaWQ9d3d3LmZzaXN0LmNvbS5iciZhY2VpZD0mZ2FkX3NvdXJjZT01gAoByAsBogwIKgYKBOjCsQLaDBAKChDQ7Nb1v6Sb22oSAgED2BMMiBQE0BUBgBcBshceChoIABIUcHViLTExMTI0ODAzMjQ4MjE1NDYYABgBuhcCOAGyGAkSAqdPGC4iAQDQGAHoGAE&sigh=-p5Y4xdKhD4&cmd=ChdjYS1wdWItMTExMjQ4MDMyNDgyMTU0NhDuAxgB&uach_m=%5BUACH%5D&ase=2&cid=CAQSOwDpaXnfXrZsxXSuNzc64dIKqMdE3duPkbOgYweWV5L6K5okGouO1XzUnRye-5CAuk2Jjb2xIRZrHgy8GAE&template_id=494&vis=1&ibtr=1&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source, trigger, not-navigation-sourceReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2729452301&adk=478090332&adf=2045730728&pi=t.ma~as.2729452301&w=340&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490392&rafmt=1&format=340x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490391854&bpp=3&bdt=270&idt=162&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&prev_fmts=632x280&correlator=3154597662639&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=913&ady=89&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C42532523%2C44795922%2C95332585%2C95343328%2C95343455%2
Source: global traffic	HTTP traffic detected: GET /ping_match.gif?scc=1&ei=GOOGLE&rurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3D9675309%26google_hm%3D_wfivefivec64esc_&google_gid=CAESEKgw0DWfZst5-GVQV8bHDdk&google_cver=1&google_push=AXcoOmTSbUZOFj1QVdyW9j7MxP5MPHw9FQCcvHDv0SN6WGOoMtf_pKot7z0v50kd9RKvBAFtCwEyvyv_LaTDEe0KQKYgAYRblnFAlCM HTTP/1.1Host: pm.w55c.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: wfivefivec=joKv41uE1SYzjn5
Source: global traffic	HTTP traffic detected: GET /portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM= HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CbMaSmasGZ9GpIb7GvPIPzfHMwAXmo_veetWNu8DgEor9oITDARABIOyVzBJgyQagAfXrjvkCyAEJqAMByAPLBKoE-AFP0IAlyCZyubB-HFU9HcWeL2sub7yKYm9CX3c5sTnuBVg9e0ezHuPbEmLGJNIHa3r5qt4FeXlo2Kxh3yHUmt_Am1_BXjUPrncTUw-2UBsnD_lY-_Hedt5EcdRIIhJTrXzW40E-limhxw9yhgp6Q9UrZFPpORkcdx_K---f25Lm2SPS-UCDAUKpiNiFw09Ctrwf4AIxs5f65eUEVdtka4jXOk5b-CGllC7yUm2mGRlRkPDwkd-yeoYqeUmpUq3zDCF8aruGoYxfH-Vj8NLp7vu_bjEW9Nb29_6kpgrsDBf3nZakocxiMANq7OIZaeQlNSURgpFmeaNw9sAEsLOJgvAEiAWN29aIUKAGLoAH2Z_vW6gH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgHyqmxAqgH66WxAqgH6rGxAqgHmbWxAqgHvrexAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WM28mr_YgYkDsQmVF_aojax0xoAKAZgLAcgLAYAMAaIMCCoGCgTowrEC2gwQCgoQ0KjO2dvmkdc_EgIBA6oNAlVTyA0BuBPkA9gTDNAVAfgWAYAXAbIXAhgBuhcCOAGyGAkSAtxRGC4iAQDQGAHoGAE&sigh=akwLUWYoZFM&cid=CAQSOwDpaXnf4qY-VVeRcYSb5A3QB_Pts9zGDzP5PYBmRsI4ukejBHtmGvpL5W4yC1ItbuIb_OMImD73c1PP&label=window_focus&gqid=masGZ4jzG9Dgx_AP8dfz6AE&qqid=CJHanr_YgYkDFT4jTwgdzTgTWA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490391&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490391806&bpp=7&bdt=223&idt=168&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&correlator=3154597662639&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=350&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C42532523%2C44795922%2C95332585%2C95343328%2C95343455%2C95344187%2C95344522%2C95335245&oid=2&pvsid=716573222194574&tmod=1031379896&uas=0&nvt=1&ref=https%3A%2F%2Fwww.fsist.com.br%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CtLhrmasGZ9K8GcPWjuwPq-7LQZ-Io7Jinuvbz-ER4OSgwuUBEAEg7JXMEmDJBqAByqDo1gPIAQmoAwHIA8sEqgTsAU_Qm5IQppL6t-7HIrzDdSOi58ZdiZ--1izGzG7-sCTZo7dOMq4rSS3FEMbg8uYECaravRDp2rs-r5ASKI1GNgdIcqaPIkR_BR42Ql2iJpOjv7H3xBcc8ICLt8Vs_8FA3-AQU4UoYDtsqgA8oD8lYka5849QVvVxWDGsiJa-kVtqTa2VmxT0Q9n5J7fPLaTio8OVPdQieULvjeHlAAwmbIshdja5vpXVh35v2hm4Gs9M9XridCSwWGDtTKJUMv2wFM7tIaQOfLFcY_ooAv7-VEsGSEi51qbQul-42rzczmPDMMInyE4EjEoK-uFqwASJ5uez9AKIBfKVyakjkgUECAQYAZIFBAgFGASgBi6AB57flymoB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAf3wrEC2AcA8gcFEJDziAHSCCYIgGEQARgfMgKKAjoLgECAwICAgKCogAJIvf3BOljUyJW_2IGJA5oJLWh0dHBzOi8vd2VkZGluZ3N0b2dva2V5d2VzdC5jb20vP2dhZF9zb3VyY2U9NYAKAcgLAaIMCCoGCgTowrEC2gwRCgsQkMueguPpi8bnARICAQO4E4gE2BMK0BUBmBYBgBcBshceChoIABIUcHViLTExMTI0ODAzMjQ4MjE1NDYYABgBuhcCOAGyGAkSAoFRGC4iAQDQGAE&sigh=Ob-VzTTpwoc&uach_m=%5BUACH%5D&ase=2&cid=CAQSOwDpaXnfx4vPLrH6fByOhZafd5b1X3FsyfHZyiONdrVJ3EFHH_BSBGxvsC6mQ2GOd4YcW0xUqRxmcqCyGAE&template_id=520&vis=1&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: trigger, event-sourceReferer: https://googleads.g.doubleclick.net/pagead/html/r20241007/r20190131/zrt_lookup_fy2021.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C2u7pmasGZ6GqHtecjuwP1czVMf3Sto16nt7IiosMitGj7b4BEAEg7JXMEmDJBqABsLqh1wPIAQmoAwHIA8sEqgTyAU_QnI5y3ZWdh4vO9ipBYwLFb2GPuMu8zdkqY1kLlwe6Pz_raWohvBmAlX1mFBog3Us07-Gol759s-wcF4QZH3aSrUyIWSxpeoGpv-Up3lw9RQmDX3vK552IThiWOzPf3lb5Dv66uMMUopyQfsNUnzGgxqnjr0AWJ7WcG_Cc4vcKW_RP-vYtLUIicisBdYIR9oascxcUm-FcpF95ZklxLF_BYtrEoRrmmcNat9FLLa-8E_C9QHJMOAjj2bVQoVUM9U55zvW06okGr7fZBxtrg4c10S1w4RuxGrqJmi8e4xILC42nmIEqVQa2FxLa6cbPinTRwASzkrSIlQOIBZvZ7JspoAYugAetg652qAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgHyqmxAqgH66WxAqgH6rGxAqgHmbWxAqgHvrexAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WNbHmr_YgYkDsQnoOb0IcHAWJ4AKAZgLAcgLAYAMAaIMCCoGCgTowrEC2gwQCgoQ0OzW9b-km9tqEgIBA6oNAlVTyA0B2BMMiBQE0BUB-BYBgBcBshcCGAG6FwI4AbIYCRICp08YLiIBANAYAegYAQ&sigh=vb9fDUMfde0&cid=CAQSOwDpaXnfXrZsxXSuNzc64dIKqMdE3duPkbOgYweWV5L6K5okGouO1XzUnRye-5CAuk2Jjb2xIRZrHgy8&label=window_focus&gqid=masGZ9z5G_Do1PIPysL2qAQ&qqid=COHam7_YgYkDFVeOgwcdVWY1Bg&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2729452301&adk=478090332&adf=2045730728&pi=t.ma~as.2729452301&w=340&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490392&rafmt=1&format=340x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490391854&bpp=3&bdt=270&idt=162&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&prev_fmts=632x280&correlator=3154597662639&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=913&ady=89&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C42532523%2C44795922%2C95332585%2C95343328%2C95343455%2C95344187%2C95344522%2C95335245&oid=2&pvsid=716573222194574&tmod=1031379896&uas=0&nvt=1&ref=https%3A%2F%2Fwww.fsist.com.br%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C9
Source: global traffic	HTTP traffic detected: GET /vt/data=-6py6MaVdlccSb9AkJZB_FHNp9s1ytKnQ-cuLOOeNG9CPvfkU0mqwy6pUgiaTvTMBCxLAq6Qwx3sV4wibVOXpg HTTP/1.1Host: mts0.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C82ZbmasGZ9K8GcPWjuwPq-7LQZ-Io7Jinuvbz-ER4OSgwuUBEAEg7JXMEmDJBqAByqDo1gPIAQmoAwHIA8sEqgTvAU_Qm5IQppL6t-7HIrzDdSOi58ZdiZ--1izGzG7-sCTZo7dOMq4rSS3FEMbg8uYECaravRDp2rs-r5ASKI1GNgdIcqaPIkR_BR42Ql2iJpOjv7H3xBcc8ICLt8Vs_8FA3-AQU4UoYDtsqgA8oD8lYka5849QVvVxWDGsiJa-kVtqTa2VmxT0Q9n5J7fPLaTio8OVPdQieULvjeHlAAwmbIshdja5vpXVh35v2hm4Gs9M9XridCSwWGDtTKJUMv2wFM7tIaQOfLEeYdq6jiUVWKjtYYNY3lwZEF6Q05LEQJ4wPCHuSlwolOHdA-mQ4f2EwASJ5uez9AKIBfKVyakjoAYugAee35cpqAfVyRuoB9m2sQKoB6a-G6gHjs4bqAeT2BuoB_DgG6gH7paxAqgH_p6xAqgHr76xAqgHmgaoB_PRG6gHltgbqAeqm7ECqAeDrbECqAfgvbECqAf_nrECqAffn7ECqAfKqbECqAfrpbECqAfqsbECqAeZtbECqAe-t7ECqAf4wrECqAf7wrECqAfCyLEC2AcA0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpY1MiVv9iBiQOxCVrIVcSRHjVhgAoBigogaHR0cHM6Ly93ZWRkaW5nc3RvZ29rZXl3ZXN0LmNvbS-YCwHICwHgCwGADAGiDAgqBgoE6MKxAtoMEQoLEJDLnoLj6YvG5wESAgEDqg0CVVPIDQGiE1YKOQgDQAFSCAoGEgQIARABaJbv1_pFciMSISACKAE4AkDylcmpI1gBaP7__________wFwAoABAZgBAxoZChdjYS1wdWItMTExMjQ4MDMyNDgyMTU0NrgTiATYEwrQFQGYFgH4FgGAFwGyFwIYAboXAjgBshgJEgKBURguIgEA0BgB&sigh=JgFeqczQiTk&cid=CAQSOwDpaXnfx4vPLrH6fByOhZafd5b1X3FsyfHZyiONdrVJ3EFHH_BSBGxvsC6mQ2GOd4YcW0xUqRxmcqCy&label=window_focus&gqid=masGZ7L9FqDox_AP-e_ruA4&qqid=CJLtlr_YgYkDFUOrgwcdK_cyCA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/html/r20241007/r20190131/zrt_lookup_fy2021.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pagead/images/gmob/4_5-stars-orange700-grey.svg HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/html/r20241007/r20190131/zrt_lookup_fy2021.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=one_tag&google_hm=&google_push=AXcoOmTsupw4OFvgscysMWt1LVCxVNq9jPUyAe1iHynsPAh5pHKsZ7LKu5GOUxmTm747rYrmFR_uPPR0HtByynp5k3T5HYZD5xLzaFWF HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=baidu_mediago&google_push=AXcoOmS7CBsVjrA0gg8oIhbKZpAyR_fbmsHz1K5-VpEN3VRYpvdgHZ5AegOTbxHfwki9p3TR1phivJbYZeJJ3kaEjZN858lxbCeiquG9&google_hm=22210ca7f8f4e28f2dk4rr00m222jxxt HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmQp5L6p6-B1M0hKarsImXO79OVm698BZ0GpuIh55FaPU6pkfw7qlnggghJulHk5di0_Wsi-lluW6IdhLZzgumoGhWf35ZLi1dUHhg HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_gid=CAESEBCXjOdVLhlpuk-jchKhUnU&google_cver=1&google_push=AXcoOmTzEP93au9h4j5LMhgxkAYnL9k1AyGEZWvj8X1m_S11wkqpK5lxn3C6cCUSuMYiuVCtF6cev4UAORTgHM8B_fXQNxR-jBdijmxy HTTP/1.1Host: an.yandex.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=B7/ptdYM5u426GoUHaEcvFEtxT8Cvxy5qd5vWn7wDtfUj87KGpvT38Px0+0/fj7U9YZvB7AqTXFowid5E6Lbsn/s9+0=; yandexuid=2960110821728490397; yashr=7589546791728490397
Source: global traffic	HTTP traffic detected: GET /mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_gid=CAESEBCXjOdVLhlpuk-jchKhUnU&google_cver=1&google_push=AXcoOmTFNHaPSGnjlNulANlgQ8CRCRHZXBobh9_rb8NeC3H3BqWVDyhzINTdsllcDubhTnYnb_ToeT5YEOhosW2b91Y5E9GT2WReSu-t HTTP/1.1Host: an.yandex.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=B7/ptdYM5u426GoUHaEcvFEtxT8Cvxy5qd5vWn7wDtfUj87KGpvT38Px0+0/fj7U9YZvB7AqTXFowid5E6Lbsn/s9+0=; yandexuid=2960110821728490397; yashr=7589546791728490397
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=one_tag&google_hm=&google_push=AXcoOmQ7t61p1mXJCYK2z4ZzfJBTiZ7sLstsWPqGfcgrQmkc8OMxFqtFeC1PMY_5xWJkFZlEibpieeGotRJVE8ZJ4_v4YqpJsy4HhD0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=teadstv_ab&google_hm=Y2JmZGFlOWQtMTc5Yi00M2Q3LTlkNzAtY2QxNGNmYWRkODg0&google_push=AXcoOmSbJWWpMppi4sJBOBMRyf-rx_SrxWYE9M2vnytK405rMlXsQj4t31ikwXkWVgkq3sF-fFB_GEp4lzpnCO0xo8Zv1kOWeHwegSys HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=toutiao_usd&google_push=AXcoOmTyIn7Sf3MEgownWO6g2KO68wzGmJkOw9xpaOTmnRbkgRdOUTCZBdYzgPfDZXk41R5-xat7hO_-eXE0mDog32lB1Tb48HbLkWR7 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=gcsDSnSZQLoYW8ZE6o_qKg&google_push=AXcoOmSxur8xZ40MKPFu1c3xJUhpT-hbrMNJflXIjsjYVoC3O3Sa0BJQ_K1zkhd-MwLk6wk0AGB-fvwYqCVMx1nJUGmzkkJSKWVrsw HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?&google_nid=B765081F39B1F7&google_push=AXcoOmSCBOpDMza6XsnPjK7FyVdKqX5gK46kaIlbEJWpvGCleGAcI3nGLhJ8MDFVzEl7JfUlPnMCk2dmZhPwiJWKo1I3ABwrE8OHxwk&google_hm=eobcquzhhZNatur5-PKXmg HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=adelphic_mobile&google_gid=CAESELRq3tLWLanjlpO3GMAFO48&google_cver=1&google_push=AXcoOmTA7HRQE_WgdcrvGFwTEBaS-A3m12S2zlqA1NDQNOue-a3ubjkZRrvx4Hw5RZI_88uRqmh1DYl-cbGkcqOj3N_w8eWRhUImw7_9&google_hm=u6qn8EOrRYavpHs6gpmW4w== HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=5425A6E6921447FCBF7A32FA817B1A27&google_push=AXcoOmR8zfTY9K2X7fONDSDTtVAAdY1OUjYcP6aY56KdDlGack872lvlLS_ffSMu6SXPyOOq4FZODLnmBnuM-XGxeqi2ZSpFc-pZ1XE HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_hm=UmZvVkNicUpBbHFuUUhZUG5hc0dadw%3D%3D&google_nid=appier&google_push=AXcoOmS-iTA3OY1VcFcNUxxgEXIh8yCaqFTHasbbZgY3CiJzryAlPZo_KuHFTrrwk20JN94qMopos--_O1pYU12WL8Kdrbvzz1Y7KKE HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_cver=1&google_gid=CAESENX3xIrBdlB295ekHhYRjQs&google_hm=T1BVYzA3YzBkOTM5NjFhNDM2Zjk3ZjEyMmMzNTlhMjAxMDQ&google_nid=opera_norway_as&google_push=AXcoOmTNiWyOVtZzVZdfYEl1NFlHFkopEc6WYxDqHFRRaZ5WHIc6A871Uny8GmdyztqeJddFRtCqHxbjXR8yOpxgTWzKWTbO-QR0Sm37jQ HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=1024&google_ula=1641347&google_hm=Mjc2ODczMTIyOTkzNjAxMTI5Mg&google_push=AXcoOmQHupi4rrikZkBqv75SAl91-VtqIQ9VVcFZm3c6aD_IzT_W9JaYdvkg0roDV_bMtPu1pD9QV0CDXvi2v-4ezHeSzAkSQZ09Dd7r HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=1024&google_ula=1641347&google_hm=MTIxMDU2MDEzNjA3MzA0OTc0Nw&google_push=AXcoOmSFKwZkmtLWyCzwGbcruMSnF3qdl_hIjtPXJSoxOPd6exszE0KAP2Ld_qBArPtLhp-UiWe4zt2beXjKC_wy85RetxEz0P10NEer HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=9675309&google_hm=am9LdjQxdUUxU1l6am41&google_gid=CAESEKgw0DWfZst5-GVQV8bHDdk&google_cver=1&google_push=AXcoOmTSbUZOFj1QVdyW9j7MxP5MPHw9FQCcvHDv0SN6WGOoMtf_pKot7z0v50kd9RKvBAFtCwEyvyv_LaTDEe0KQKYgAYRblnFAlCM HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/css/geral.css HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/css/classes.css HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/css/paginasInternas.css HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=adelphic_mobile&google_gid=CAESELRq3tLWLanjlpO3GMAFO48&google_cver=1&google_push=AXcoOmQiD51g-9IqUPgnAIqZ8cjkoG77enz2_91FrgUabIJA1evSv5MkQb6pVyHB27R47PPaXdnhvojOX9EIUqcI6hPs2Uc0XDoiaF8h&google_hm=PhUyCs3aRl6nRBpAxLpjVQ== HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=linkedin&google_push=AXcoOmShd5UH0SS1vL0ez6304h5VtpSdX8D57cJ6mfYo05taFsAPp9BiquJ-t6_P5hFCw3ghuMtU7aNcHqS2pgsvhIllgIki0dOu40Kn HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bt&google_push=AXcoOmTAxMWTpxMJ-CYAX1wOV9CM4hkw_WdcIDfNxrPPtvJh4Z_HYKHgtZRu5eRws9rxV6yTUTeZqUFzR-4E4ZOnunS3BSsQouok0_Q HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /vt/data=-6py6MaVdlccSb9AkJZB_FHNp9s1ytKnQ-cuLOOeNG9CPvfkU0mqwy6pUgiaTvTMBCxLAq6Qwx3sV4wibVOXpg HTTP/1.1Host: mts0.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=one_tag&google_hm=&google_push=AXcoOmTsupw4OFvgscysMWt1LVCxVNq9jPUyAe1iHynsPAh5pHKsZ7LKu5GOUxmTm747rYrmFR_uPPR0HtByynp5k3T5HYZD5xLzaFWF HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=baidu_mediago&google_push=AXcoOmS7CBsVjrA0gg8oIhbKZpAyR_fbmsHz1K5-VpEN3VRYpvdgHZ5AegOTbxHfwki9p3TR1phivJbYZeJJ3kaEjZN858lxbCeiquG9&google_hm=22210ca7f8f4e28f2dk4rr00m222jxxt HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmQp5L6p6-B1M0hKarsImXO79OVm698BZ0GpuIh55FaPU6pkfw7qlnggghJulHk5di0_Wsi-lluW6IdhLZzgumoGhWf35ZLi1dUHhg HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/css/estilo_visualizacao.css HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=one_tag&google_hm=&google_push=AXcoOmQ7t61p1mXJCYK2z4ZzfJBTiZ7sLstsWPqGfcgrQmkc8OMxFqtFeC1PMY_5xWJkFZlEibpieeGotRJVE8ZJ4_v4YqpJsy4HhD0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=5425A6E6921447FCBF7A32FA817B1A27&google_push=AXcoOmR8zfTY9K2X7fONDSDTtVAAdY1OUjYcP6aY56KdDlGack872lvlLS_ffSMu6SXPyOOq4FZODLnmBnuM-XGxeqi2ZSpFc-pZ1XE HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?&google_nid=B765081F39B1F7&google_push=AXcoOmSCBOpDMza6XsnPjK7FyVdKqX5gK46kaIlbEJWpvGCleGAcI3nGLhJ8MDFVzEl7JfUlPnMCk2dmZhPwiJWKo1I3ABwrE8OHxwk&google_hm=eobcquzhhZNatur5-PKXmg HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/scripts/jquery-3.2.1.min.js HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pixel?google_hm=UmZvVkNicUpBbHFuUUhZUG5hc0dadw%3D%3D&google_nid=appier&google_push=AXcoOmS-iTA3OY1VcFcNUxxgEXIh8yCaqFTHasbbZgY3CiJzryAlPZo_KuHFTrrwk20JN94qMopos--_O1pYU12WL8Kdrbvzz1Y7KKE HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_cver=1&google_gid=CAESENX3xIrBdlB295ekHhYRjQs&google_hm=T1BVYzA3YzBkOTM5NjFhNDM2Zjk3ZjEyMmMzNTlhMjAxMDQ&google_nid=opera_norway_as&google_push=AXcoOmTNiWyOVtZzVZdfYEl1NFlHFkopEc6WYxDqHFRRaZ5WHIc6A871Uny8GmdyztqeJddFRtCqHxbjXR8yOpxgTWzKWTbO-QR0Sm37jQ HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=1024&google_ula=1641347&google_hm=Mjc2ODczMTIyOTkzNjAxMTI5Mg&google_push=AXcoOmQHupi4rrikZkBqv75SAl91-VtqIQ9VVcFZm3c6aD_IzT_W9JaYdvkg0roDV_bMtPu1pD9QV0CDXvi2v-4ezHeSzAkSQZ09Dd7r HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/scripts/menu.js HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=1024&google_ula=1641347&google_hm=MTIxMDU2MDEzNjA3MzA0OTc0Nw&google_push=AXcoOmSFKwZkmtLWyCzwGbcruMSnF3qdl_hIjtPXJSoxOPd6exszE0KAP2Ld_qBArPtLhp-UiWe4zt2beXjKC_wy85RetxEz0P10NEer HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=9675309&google_hm=am9LdjQxdUUxU1l6am41&google_gid=CAESEKgw0DWfZst5-GVQV8bHDdk&google_cver=1&google_push=AXcoOmTSbUZOFj1QVdyW9j7MxP5MPHw9FQCcvHDv0SN6WGOoMtf_pKot7z0v50kd9RKvBAFtCwEyvyv_LaTDEe0KQKYgAYRblnFAlCM HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/scripts/mascaras.js HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/scripts/captcha-som.js HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/scripts/menu.js HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/scripts/jquery-3.2.1.min.js HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /estatistica/estatistica.js HTTP/1.1Host: www.receita.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajuda/artigos/instalar-certificado-digital-a1/ HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/WebResource.axd?d=ZWO9axJrMUCOr1izP3UEZRCC9H9dses7etW7JecjiAOQDqMwdG-StzfDPAgcsQ8hxRkl-AMsAJBR-BfkCGB56pQ3gKo1&t=638562453717896622 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/scripts/mascaras.js HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/scripts/captcha-som.js HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=lKER9OjLRXZj9hl3hYK1NeWbJzY0IIuG9PQaTzQ6Pm4nRciLTwk7o7LjvpMe9GVNg6X662VfwSehVb1otyCcpU2m44xxQkgLKAsDvmWO2Yna970r9nQMs9iM2wsfBKVn0e1N7A7CfQv2RmViMgcjNESKRE1Dcs2RNiSvVkuZ4dWJXKV60&t=7a0cc936 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /estatistica/estatistica.js HTTP/1.1Host: www.receita.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BIGipServer~WEBREC~POOL_RECEITA_443=rd1o00000000000000000000ffffa194e717o443
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=Zi9TAHOLxEdccMKnNf4xNp8a5H_hC7ktwxXCMW839oIKC-KlhfxAOitBAXQG-SWySwraG75zIJTvwEANGe6get63WoT4ZdLXWAgk2Z-XBAfy6jgxiI7x9b-cNebF_Co_PAsvQ0fBly5YGzia9V_0av0M8lEOOZsSxMV4gVx6Zq9PLtC70&t=7a0cc936 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/css/dist/block-library/style.min.css?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/css/dist/block-library/theme.min.css?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/css/dist/components/style.min.css?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/css/dist/block-editor/style.min.css?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/css/dist/nux/style.min.css?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/css/dist/editor/style.min.css?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=smDdZy0UdpA1U3PAJHasvdsXod9zn0f2STlJy-PJhGx8_vYP8dRjsZf1qYxwY3mS3cKF3WfB2R7Sg2WH_GXXIJKqKFePPEuDwdr0J1yTgWwyQFaZHnpfUQNuECmQ8Px3haXQojOb4ag1amzsVDiDq6qB-x01&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=kVR0IuuaOhFQpbjZA2sxxCaO48uBn_yQ4V1ccam0AMBnJU-vxMcVz4_hScZwm0hjt38WU8tS_S9S9e-wfV9LiOXTumlBPyt5u-wXxYke6l0NhR_Ob4oiPVTYswKhwFEsSqlZZo1rxk5seYGDbATTjkNDUzY1&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/WebResource.axd?d=ZWO9axJrMUCOr1izP3UEZRCC9H9dses7etW7JecjiAOQDqMwdG-StzfDPAgcsQ8hxRkl-AMsAJBR-BfkCGB56pQ3gKo1&t=638562453717896622 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=Zi9TAHOLxEdccMKnNf4xNp8a5H_hC7ktwxXCMW839oIKC-KlhfxAOitBAXQG-SWySwraG75zIJTvwEANGe6get63WoT4ZdLXWAgk2Z-XBAfy6jgxiI7x9b-cNebF_Co_PAsvQ0fBly5YGzia9V_0av0M8lEOOZsSxMV4gVx6Zq9PLtC70&t=7a0cc936 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/heroic-blocks/dist/css/ht-blocks-modules-styles.css?ver=1578159555 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=pkcToEKdnWyj6BBLNVnJyu_Y3XuXBs98wZ9wyZ15w9FXEvOrMM_gT7X2PwqJnvsQwfFLRbyxKeWQ2-Se4Q_7IXxARPdPMFy6Wgv8gHuYX2tS02anFSYZQgATkiBq9L2Yo3nBUqnJHh5z5fmkcUkTqbk72f01&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=lKER9OjLRXZj9hl3hYK1NeWbJzY0IIuG9PQaTzQ6Pm4nRciLTwk7o7LjvpMe9GVNg6X662VfwSehVb1otyCcpU2m44xxQkgLKAsDvmWO2Yna970r9nQMs9iM2wsfBKVn0e1N7A7CfQv2RmViMgcjNESKRE1Dcs2RNiSvVkuZ4dWJXKV60&t=7a0cc936 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/css/style.css?ver=1.6.0 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=smDdZy0UdpA1U3PAJHasvdsXod9zn0f2STlJy-PJhGx8_vYP8dRjsZf1qYxwY3mS3cKF3WfB2R7Sg2WH_GXXIJKqKFePPEuDwdr0J1yTgWwyQFaZHnpfUQNuECmQ8Px3haXQojOb4ag1amzsVDiDq6qB-x01&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=l84ZJb7av4nWEYmrUBlqz_xYDiy0on6DT4jtttxtkWr02MctCAoc2Wn1hZblUUTh-TGffEgIYUOPcfY6FTKpxumPBPqSE5DeU9Fe88UicGnOpX87B2r7zozypeAyqKLoVYXUNAX1vrLuRgjmBPBiJGaY0c2ZX4rNd72hCnu_9ISYB4lw0&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=kVR0IuuaOhFQpbjZA2sxxCaO48uBn_yQ4V1ccam0AMBnJU-vxMcVz4_hScZwm0hjt38WU8tS_S9S9e-wfV9LiOXTumlBPyt5u-wXxYke6l0NhR_Ob4oiPVTYswKhwFEsSqlZZo1rxk5seYGDbATTjkNDUzY1&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=iDbFzJSD2oML9r8HieMBM-M5gKhdLCr5IrMss1r17SsZ0JcaO8TSLbAGunGheaW3Fj0IjsrIGzPxUhMMhtkaM-AhC3KMBTGg9PenIXe-p2nmvF4WImocqKuito4crmkzUW3tjQSXa_Vrz-x-4r8IrVyS-Jloz7keeyTzQuO8126poHhe0&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=pkcToEKdnWyj6BBLNVnJyu_Y3XuXBs98wZ9wyZ15w9FXEvOrMM_gT7X2PwqJnvsQwfFLRbyxKeWQ2-Se4Q_7IXxARPdPMFy6Wgv8gHuYX2tS02anFSYZQgATkiBq9L2Yo3nBUqnJHh5z5fmkcUkTqbk72f01&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=AiYOmmQWJYcb6cvJtIZ-9MKPdtkBa7UyWQPa9fehqyoGrsAdiYguZzbaZYfBK6IRoAwuGML54M6traEPFdZLa4H8KLLZLY3s8RhJWQWrRIKONPTO4QgzVn0-ZnBE_h16Nc6oo_qSbd5C77QEW-IevdOLAS5skB6YczbXT-cJBPKepBnt0&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?render=explicit&ver=1.63 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2024/08/KFOmCnqEu92Fr1Me5g-1.woff HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.fsist.com.brsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2024/08/KFOlCnqEu92Fr1MmWUlvAA-1.woff HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.fsist.com.brsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/img/search.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/wp-content/themes/knowall/css/style.css?ver=1.6.0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/Logo-Top-Site-2018-Sem-Logo-2-187-e1578160541388.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/img/loading.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_18-31-19-2.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=re7kKGQqZxCO0AjgKkBJNbY_JwHnDfNmkK6-PdOBQcA-_lUmrvxrQm5kHHnzPxP9CMhmIbF8xgBPP2bg3tQI3aH6pnGFWuGn1wQ_6PbuTzniu6aYITmr5zjYR4AGaiIXWdxLh79qhN9GIa4oxYvya7XvOkcOfXsHte-TGaHlNkb7Nptc0&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/home_icon_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/botao_buscar_Off_completo.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?render=explicit&ver=1.63 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=l84ZJb7av4nWEYmrUBlqz_xYDiy0on6DT4jtttxtkWr02MctCAoc2Wn1hZblUUTh-TGffEgIYUOPcfY6FTKpxumPBPqSE5DeU9Fe88UicGnOpX87B2r7zozypeAyqKLoVYXUNAX1vrLuRgjmBPBiJGaY0c2ZX4rNd72hCnu_9ISYB4lw0&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=iDbFzJSD2oML9r8HieMBM-M5gKhdLCr5IrMss1r17SsZ0JcaO8TSLbAGunGheaW3Fj0IjsrIGzPxUhMMhtkaM-AhC3KMBTGg9PenIXe-p2nmvF4WImocqKuito4crmkzUW3tjQSXa_Vrz-x-4r8IrVyS-Jloz7keeyTzQuO8126poHhe0&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=AiYOmmQWJYcb6cvJtIZ-9MKPdtkBa7UyWQPa9fehqyoGrsAdiYguZzbaZYfBK6IRoAwuGML54M6traEPFdZLa4H8KLLZLY3s8RhJWQWrRIKONPTO4QgzVn0-ZnBE_h16Nc6oo_qSbd5C77QEW-IevdOLAS5skB6YczbXT-cJBPKepBnt0&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-16-09.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-18-13.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/Logo-Top-Site-2018-Sem-Logo-2-187-e1578160541388.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/img/search.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/img/loading.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_18-31-19-2.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/imagens/linha_divisoria.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/home_icon_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/botao_buscar_Off_completo.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/banners_Visite_CTe_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/ht-knowledge-base/js/jquery.livesearch.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/ScriptResource.axd?d=re7kKGQqZxCO0AjgKkBJNbY_JwHnDfNmkK6-PdOBQcA-_lUmrvxrQm5kHHnzPxP9CMhmIbF8xgBPP2bg3tQI3aH6pnGFWuGn1wQ_6PbuTzniu6aYITmr5zjYR4AGaiIXWdxLh79qhN9GIa4oxYvya7XvOkcOfXsHte-TGaHlNkb7Nptc0&t=ffffffff87636c38 HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/banners_Visite_Sped_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/ht-knowledge-base/js/hkb-livesearch-js.min.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/ht-knowledge-base/exits/js/ht-exits-frontend.min.js?ver=1.0.0 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/google-captcha/css/gglcptch.css?ver=1.63 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-16-09.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-18-13.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/heroic-blocks/dist/js/ht-blocks-frontend.js?ver=1578159555 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: sslteste2.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=s26jsm8p9col HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/imagens/banners_manaus_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/linha_divisoria.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/banners_Visite_CTe_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /barra.js HTTP/1.1Host: barra.brasil.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/js/js.min.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/ht-knowledge-base/js/jquery.livesearch.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/imagens/banner_mdfe_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/banners_Visite_Sped_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=394031556 HTTP/1.1Host: server3.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=820729159 HTTP/1.1Host: server4.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=523949321 HTTP/1.1Host: server2.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=795039951 HTTP/1.1Host: server5.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Origin: https://www.fsist.com.brSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx?ssllocal=OK&sslexterno=OK&iduser=319771858 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: application/x-www-form-urlencodedAccept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/ht-knowledge-base/js/hkb-livesearch-js.min.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/js/scrollspy.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/ht-knowledge-base/exits/js/ht-exits-frontend.min.js?ver=1.0.0 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/js/comment-reply.min.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/js/wp-embed.min.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: sslteste2.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/ht-knowledge-base/voting/js/ht-voting-frontend-js.min.js?ver=1 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/heroic-blocks/dist/js/ht-blocks-frontend.js?ver=1578159555 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/imagens/banner_bpe_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/js/js.min.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/google-captcha/js/script.js?ver=1.63 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/imagens/acessibilidade_reduzir_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/banners_manaus_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=394031556 HTTP/1.1Host: server3.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/imagens/banner_mdfe_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /barra.js HTTP/1.1Host: barra.brasil.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/imagens/acessibilidade_ampliar_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490412&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F%23certificadonecessarios&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490410858&bpp=3&bdt=313&idt=1497&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&correlator=4322266114412&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=-269&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087658%2C44795922%2C95343454%2C95344524&oid=2&pvsid=3062997577783540&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaEe%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=1514 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=820729159 HTTP/1.1Host: server4.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2729452301&adk=478090332&adf=2045730728&pi=t.ma~as.2729452301&w=340&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490412&rafmt=1&format=340x280&url=https%3A%2F%2Fwww.fsist.com.br%2F%23certificadonecessarios&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490410862&bpp=1&bdt=317&idt=1520&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&prev_fmts=632x280&correlator=4322266114412&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=913&ady=-530&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087658%2C44795922%2C95343454%2C95344524&oid=2&pvsid=3062997577783540&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaeE%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=1525 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1112480324821546&output=html&adk=1812271804&adf=3025194257&abgtt=3&lmt=1728490412&plaf=1%3A2%2C7%3A2&plat=1%3A128%2C2%3A128%2C3%3A128%2C4%3A128%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.fsist.com.br%2F%23certificadonecessarios&pra=7&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&itsi=0&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490410863&bpp=1&bdt=318&idt=1565&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&prev_fmts=632x280%2C340x280&nras=1&correlator=4322266114412&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087658%2C44795922%2C95343454%2C95344524&oid=2&pvsid=3062997577783540&tmod=1031379896&uas=0&nvt=1&fsapi=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1569 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=795039951 HTTP/1.1Host: server5.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /baixarxml.ashx?m=WEB&t=teste&r=523949321 HTTP/1.1Host: server2.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/js/wp-emoji-release.min.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490393.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-18-45-2.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-19-44.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-21-03-1.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-22-18.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/heroic-blocks/img/info-circle.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/wp-content/plugins/heroic-blocks/dist/css/ht-blocks-modules-styles.css?ver=1578159555Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/opensans-bold.woff HTTP/1.1Host: barra.brasil.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.nfe.fazenda.gov.brsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.nfe.fazenda.gov.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/imagens/background_Cinza_NFe.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/css/geral.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/fundo_quadradinhos_filete.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/css/geral.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=ChhUirasGZ7jYL_rXxdwPg8322QOI76j0XN69t5avAcCNtwEQASAAYMkGggEXY2EtcHViLTExMTI0ODAzMjQ4MjE1NDbIAQmoAwHIAwKqBOMBT9Bg9QcJuHeJZfmvVl1mshO9j50MutPKtzXdTBYZga8eXP6CBmHq6KTDd-1cppqxMUIYvarWyDV7mBTkpwNXfOTq8pAgZoN6wWfMvCt_tgacacP-UDXv_DKd_mCIJOY3Dy3C_CjYUiNgRxEWA8SYnNoBj6BQuvGrO0rHilfU7wVDH3T0yiQEtkiUzxFXc-x3lXX6ncQECFCIS42n5pbcoyEZnq0U0WnRGD8oflOUWphH0UZS4IulsHg9EdITcUhyRyr1uM2j5t2vhtJ2jWziUc5lr_Cm0KTI6osV3-azXpd57m-ABtW424f14Y-0vAGgBiGoB6a-G6gHltgbqAeqm7ECqAeDrbECqAf_nrECqAffn7ECqAetvrEC2AcA0ggkCIBhEAEyAooCOguAQIDAgICAoKiAAki9_cE6WJnP78jYgYkDgAoB-gsCCAGADAHQFQGAFwGyFxwKGBIUcHViLTExMTI0ODAzMjQ4MjE1NDYYABgM&sigh=zr_UfRIgeaM&uach_m=%5BUACH%5D&cid=CAQSOwDpaXnfIeI0mULx5wKhIDNgvkVFQ51fGrzVa9IYJOz7yCVDeYxE5B4yZRUxoXB3_xTql_INkeKe-dKGGAE HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2729452301&adk=478090332&adf=2045730728&pi=t.ma~as.2729452301&w=340&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490412&rafmt=1&format=340x280&url=https%3A%2F%2Fwww.fsist.com.br%2F%23certificadonecessarios&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490410862&bpp=1&bdt=317&idt=1520&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&prev_fmts=632x280&correlator=4322266114412&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=913&ady=-530&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087658%2C44795922%2C95343454%2C95344524&oid=2&pvsid=3062997577783540&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaeE%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=1525Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaSYQdzuw3GlWp048etz6NFnecVe_nMDUBKAEb9ZZMpgSzPff9W7qlqWTnzoyU_OtCQTlQQBd8k2-TNy-UAe5uKPiQ12hg HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adchoices/adchoices.css HTTP/1.1Host: content.quantcount.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/heroic-blocks/img/exclamation-triangle.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/wp-content/plugins/heroic-blocks/dist/css/ht-blocks-modules-styles.css?ver=1578159555Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/img/check.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/wp-content/themes/knowall/css/style.css?ver=1.6.0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/img/cross.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/ajuda/wp-content/themes/knowall/css/style.css?ver=1.6.0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/ht-knowledge-base/voting/js/ht-voting-frontend-js.min.js?ver=1 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/js/wp-embed.min.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/js/comment-reply.min.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/imagens/acessibilidade_reduzir_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/banner_bpe_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/js/scrollspy.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /portal/imagens/acessibilidade_ampliar_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/google-captcha/js/script.js?ver=1.63 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /sslteste.ashx?ssllocal=OK&sslexterno=OK&iduser=319771858 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CRebTrasGZ-XeLc3SxdwP8cCfqAOg-7_reZaj2POLEseTj48MEAEg7JXMEmDJBqAB0v6XmQPIAQGoAwHIA8sEqgTsAU_Qf8BGETKRSIfbzNGP16fAtCcy5Pc3j4XNdxZbtXnyGywCGMTo1ch5SJqjqS96Ulk4IiCfUXk-LtOkmuvj0RsKJfigX4IJo8kT2kdM_R6Ev558HR_wniTXypB8osqVVYuE6pOLNLEKxzImHDBAl_hfqkUY2wQj16h9P3D37BFMenzY6R6FxXbs1j_sneJH0ENEoH3bo7g-gTI5VEnqEDKDXOM7DkZle77YRyPUuPYv5il2NUIlrEV_YCA_d9GQ73n2eVoGr7U-pcr5gjykC0lAX_4Jp_rrYHbjPBJYnwPySNAOHXxycUSoZ3A1wATskYD0yASIBc3s0cNNkgUECAQYAZIFBAgFGASAB5aB6GaoB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAf3wrEC2AcB8gcEELrVINIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WJXd7cjYgYkDmgleaHR0cHM6Ly92ZXJ5ZmFzdC5pby8_YXA9YWR3JmFzPWdfZF9mYXN0X2FsbF9pbiZkbVthZHNdPW5ld19hZGFwdGl2ZTEmZG1bdHlwZV09ZGlzJmdhZF9zb3VyY2U9NYAKAcgLAaIMCCoGCgTowrEC2gwQCgoQkM_zxeWftOxSEgIBA9gTDNAVAZgWAYAXAbIXHgoaCAASFHB1Yi0xMTEyNDgwMzI0ODIxNTQ2GAAYAboXAjgBshgFGAEiAQDQGAHoGAE&sigh=UFkl21xpvX4&uach_m=%5BUACH%5D&ase=2&cid=CAQSOwDpaXnfksyVfmzVMU_x1sGd-MSR4gGQ3TRGrW9UMMGn6SeW52Gk7VPusQ65NULlsMd2cOeQFv8R3HT7GAE&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: trigger=navigation-source, event-sourceReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490412&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F%23certificadonecessarios&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490410858&bpp=3&bdt=313&idt=1497&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&correlator=4322266114412&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=-269&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087658%2C44795922%2C95343454%2C95344524&oid=2&pvsid=3062997577783540&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaEe%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf
Source: global traffic	HTTP traffic detected: GET /usersync/googleadx/?google_gid=CAESEFgJmTWb8qubv5vRYOIX34I&google_cver=1&google_push=AXcoOmQUioeRbNFMvdD9nJo-tN6lSL0tZeVLrFYQ3C99SKNeRBY0i6uZhaLb-diczutkwYZ3z2jNDRlgQpIVSAIGwOQyqWPApG1l6D0 HTTP/1.1Host: b1sync.zemanta.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sync?ssp=google&google_gid=CAESEDmcpV3RVZzRJJFTFBRHNpI&google_cver=1&google_push=AXcoOmSnyQQPU7kXbzWLScpyNoMYRkgllQKKoubK1rPU9T9c9KQxtbUrfniHOzt3FWKc1p3iTPDIbTM7yrXOiHH8JlZYg7gV7PrEZf8 HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13I93mM0Xo-phB92bbESX0EmTXGh1TjRpmM4kbMQIpyZMXGVqT4AImmCVbv8uuuE4-8 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /sync?nid=154&google_gid=CAESEJoHxJLAUovRHzmLFlWKjrc&google_cver=1&google_push=AXcoOmSd4m4RfFDIsQnfiHlr1yxfw0KBfWNVuIu1R66nyB2cDlbBQo3U0liWodC0BtEiiRtTe3dw2DRitPmq19MRNhNlRv55UgzDzwE HTTP/1.1Host: sync.srv.stackadapt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaT6qxR7XgvIxUfw0PrB_AFTGCwrwv-vOmRw02XFBuSq4lDU3Awjis0C2NYZgn3y1IiHQFq6avdeDcw_lhlPFUhO9pzwUg HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adchoices/img/adc.png HTTP/1.1Host: content.quantcount.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sync/adx?google_gid=CAESEJmZJ4IebVGBC2x4b2lZBv8&google_cver=1&google_push=AXcoOmRObiIyJzrWMV4pR6dK9-Zl32BB1jG5cnttJjmMiuGDYIl9XOCBkVSXKg-gNzqqunvwPnuR1ogHPQ3S8EQlRA_TjpmZQprayw HTTP/1.1Host: pr-bh.ybp.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rjss/st/2184108/81709832/skeleton.js?ias_advId=${ACCOUNT_ID}&ias_creativeId=0&ias_campId=9059152&ias_placementId=9157453&adsafe_par&ias_impId=477989826908547088&custom=544cffc4-9290-439c-bfa1-a4d316001a47&custom2=85e643db-7127-4263-a373-8c523cf5869d&custom3=p-1RYxePXT9bCS2 HTTP/1.1Host: pixel.adsafeprotected.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /usersync/googleadx/?google_cver=1&google_gid=CAESEFgJmTWb8qubv5vRYOIX34I&google_push=AXcoOmQUioeRbNFMvdD9nJo-tN6lSL0tZeVLrFYQ3C99SKNeRBY0i6uZhaLb-diczutkwYZ3z2jNDRlgQpIVSAIGwOQyqWPApG1l6D0&s=2 HTTP/1.1Host: b1sync.zemanta.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: zuid=ivNp9cWJH3JvsCOzAkK0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-includes/js/wp-emoji-release.min.js?ver=5.3.2 HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-22-18.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-19-44.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-18-45-2.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/uploads/2020/02/2020-02-01_22-21-03-1.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/heroic-blocks/img/info-circle.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /pixel/p-9fYuixa7g_Hm2.gif?labels=_qc.spend,_qc.image.imp&rtbdata2=EAA6GGh0dHBzOi8vd3d3LmZzaXN0LmNvbS5iclooTjdFaHIyRGtLUDBzdGlDdU1yVThvVEd3SjYwc3RpVDZaT2Y4b2p4VIABn8a0zQ66AQDAAejOEsgBj766kKcy2gEWb3NnUEhXem94QW1yUzNwSnRnSnl0d7ACCMgCANACzuGG-_if98ypAegCGfICDwiriAYQyKSl99mZiLPVAfICDwiAyR8Q-P2amKGntYqIAfICDAgZELvo4-7q_9mbFvgCAIoDFjAucHViLTExMTI0ODAzMjQ4MjE1NDaYAwCoAwCyAwQILnsAugMSCWNCJ3HbQ-aFEZ2G9TxSjHOjwgMSCZxDkJLE_0xUEUcaABbTpKG_yAPkh4AQ2AOj5s-KBeIDD3AtMVJZeGVQWFQ5YkNTMuoDBgisAhD6AfIDBTc3MDIw-AMAgASwAooEAjc3kgQSNTQ5NjQ0MzkzODQ4OTg5Njc5mgQSCSNNuAOBcriHERHpCsyBKKydogQSCWNCJ3HbQ-aFEZ2G9TxSjHOjqgQSCWNCJ3HbQ-aFEZ2G9TxSjHOjuATQBdAEDPIEAlVTgAUBigUAkAUBuAUAwAXdmbD1CsgF0PaoBNIFBggBEAIYCOgFBZoGFAoSCSNNuAOBcriHERHpCsyBKKydoAYAtQYq19U3ugY1CgJVUxICVFgY6gQiB2hvdXN0b24qBTc3MDIwOhhsZXZlbCUyMDMlMjBwYXJlbnQlMjBsbGPJBk84Ig83KaIG0AY42AY44gY_X2ZwLmV2ZW50LkRDIFBhaWQgQ29udmVyc2lvbixfZnAuZXZlbnQuREMgVHJpYWwgQ29udmVyc2lvbixfb3Jf6gYRaHR0cHM6Ly9hZG9iZS5jb23xBhBoIg83KaIG-AYDgAcA HTTP/1.1Host: pixel.quantcount.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/p-1RYxePXT9bCS2.gif?&media=ad&p=ZwarrQAL7DgFkWv6AD2mg-ubjZDTNMEUhO8L0w&r=715565&rand=1364456227&labels=_qc.imp,_imp.adserver.rtb,_imp.qccampaign.9059152,_imp.flight.0,_imp.lineitem.0&rtbip=91.228.72.193&rtbdata2=EAA6GGh0dHBzOi8vd3d3LmZzaXN0LmNvbS5iclooTjdFaHIyRGtLUDBzdGlDdU1yVThvVEd3SjYwc3RpVDZaT2Y4b2p4VIABn8a0zQ66AQDAAejOEsgBj766kKcy2gEWb3NnUEhXem94QW1yUzNwSnRnSnl0d7ACCMgCANACzuGG-_if98ypAegCGfICDwiriAYQyKSl99mZiLPVAfICDwiAyR8Q-P2amKGntYqIAfICDAgZELvo4-7q_9mbFvgCAIoDFjAucHViLTExMTI0ODAzMjQ4MjE1NDaYAwCoAwCyAwQILnsAugMSCWNCJ3HbQ-aFEZ2G9TxSjHOjwgMSCZxDkJLE_0xUEUcaABbTpKG_yAPkh4AQ2AOj5s-KBeIDD3AtMVJZeGVQWFQ5YkNTMuoDBgisAhD6AfIDBTc3MDIw-AMAgASwAooEAjc3kgQSNTQ5NjQ0MzkzODQ4OTg5Njc5mgQSCSNNuAOBcriHERHpCsyBKKydogQSCWNCJ3HbQ-aFEZ2G9TxSjHOjqgQSCWNCJ3HbQ-aFEZ2G9TxSjHOjuATQBdAEDPIEAlVTgAUBigUAkAUBuAUAwAXdmbD1CsgF0PaoBNIFBggBEAIYCOgFBZoGFAoSCSNNuAOBcriHERHpCsyBKKydoAYAtQYq19U3ugY1CgJVUxICVFgY6gQiB2hvdXN0b24qBTc3MDIwOhhsZXZlbCUyMDMlMjBwYXJlbnQlMjBsbGPJBk84Ig83KaIG0AY42AY44gY_X2ZwLmV2ZW50LkRDIFBhaWQgQ29udmVyc2lvbixfZnAuZXZlbnQuREMgVHJpYWwgQ29udmVyc2lvbixfb3Jf6gYRaHR0cHM6Ly9hZG9iZS5jb23xBhBoIg83KaIG-AYDgAcA&fpan=0&fpa=&d=googleads.g.doubleclick.net&et=1728490414020&sr=1280x1024x24&tzo=240 HTTP/1.1Host: pixel.quantserve.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, trigger, not-navigation-sourceReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mc=6706ab9d-01733-80664-05cea; sp=CggI2WUSAxDODQ==
Source: global traffic	HTTP traffic detected: GET /ul_cb/sync?ssp=google&google_gid=CAESEDmcpV3RVZzRJJFTFBRHNpI&google_cver=1&google_push=AXcoOmSnyQQPU7kXbzWLScpyNoMYRkgllQKKoubK1rPU9T9c9KQxtbUrfniHOzt3FWKc1p3iTPDIbTM7yrXOiHH8JlZYg7gV7PrEZf8 HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=ae103708-2616-40a0-b890-12d72b8828ee; c=1728490416; tuuid_lu=1728490416
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=stackadapt_usd&google_hm=RO9hsv43VjtJegiqx3XZlggueyE&google_push=AXcoOmSd4m4RfFDIsQnfiHlr1yxfw0KBfWNVuIu1R66nyB2cDlbBQo3U0liWodC0BtEiiRtTe3dw2DRitPmq19MRNhNlRv55UgzDzwE HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zeta_interactive&google_push=AXcoOmR26LQt_c3OXAvPRZx_70f_YkVVrplK5hxCkZuVa9XxMXikjiXSIzZI1zLsrHcOnC3jC2TRcAUUYYYdtY5WzyfXpLzZE4-m88mN&google_hm=NzY0MTQyMDU5NzMxMTM0OTM2Ng== HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/imagens/cabecalho_NFe.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/css/geral.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/box_estatisticas.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/css/geral.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/Box_Busca.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/css/geral.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=yahoo&google_push=AXcoOmRObiIyJzrWMV4pR6dK9-Zl32BB1jG5cnttJjmMiuGDYIl9XOCBkVSXKg-gNzqqunvwPnuR1ogHPQ3S8EQlRA_TjpmZQprayw&google_hm=eS1ya1d6Z1ZGRTJwRm1JZmFpMWwzMGZpYWJyUk5PUVRjc35B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/imagens/background_Cinza_NFe.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/fundo_quadradinhos_filete.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zemanta&google_push=AXcoOmQUioeRbNFMvdD9nJo-tN6lSL0tZeVLrFYQ3C99SKNeRBY0i6uZhaLb-diczutkwYZ3z2jNDRlgQpIVSAIGwOQyqWPApG1l6D0&google_hm=aXZOcDljV0pIM0p2c0NPekFrSzA= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /sync?nid=154&google_gid=CAESEJoHxJLAUovRHzmLFlWKjrc&google_cver=1&google_push=AXcoOmQ-33xHELLyrwfBci9dLG6bkVmxzEWWh0qeC6UWRPBOH3fKLjkDlPteiaHtjvpFbTAauSfaYUo9jqecDWy1PjJasIb2WB2rE9k HTTP/1.1Host: sync.srv.stackadapt.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sa-user-id=s%3A0-44ef61b2-fe37-563b-497a-08aac775d996.HUZAD87nGmfB6ts9monpnGc74iU%2BnIDtZVp3vzenSYI; sa-user-id=s%3A0-44ef61b2-fe37-563b-497a-08aac775d996.HUZAD87nGmfB6ts9monpnGc74iU%2BnIDtZVp3vzenSYI; sa-user-id-v2=s%3ARO9hsv43VjtJegiqx3XZlggueyE.f1DEnV0kSRDqXApJa8DQm75QGQfLI69IqPby0eTbqqo; sa-user-id-v2=s%3ARO9hsv43VjtJegiqx3XZlggueyE.f1DEnV0kSRDqXApJa8DQm75QGQfLI69IqPby0eTbqqo; sa-user-id-v3=s%3AAQAKIPMD_qM83gEw_KpANQ1k_u5OM7M1EA1HSai3RTqI7aomEHwYBCCw15q4BjABOgT87-jmQgQtl7ha.aVS1bJGc2NOVS0acaW%2Fx%2FDUslQhAe5FoNHFkW7MusvI; sa-user-id-v3=s%3AAQAKIPMD_qM83gEw_KpANQ1k_u5OM7M1EA1HSai3RTqI7aomEHwYBCCw15q4BjABOgT87-jmQgQtl7ha.aVS1bJGc2NOVS0acaW%2Fx%2FDUslQhAe5FoNHFkW7MusvI
Source: global traffic	HTTP traffic detected: GET /usersync/googleadx/?google_gid=CAESEFgJmTWb8qubv5vRYOIX34I&google_cver=1&google_push=AXcoOmSFROr1g3tVkMLcaXmlB1A0cgYFJWvbHCgZv8X107LPPD9yp1Wabaau5wgyRcSgjhvr0-Dpp4DtJviLQlGYR38o0TLMKefOW6E HTTP/1.1Host: b1sync.zemanta.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: zuid=ivNp9cWJH3JvsCOzAkK0
Source: global traffic	HTTP traffic detected: GET /sync/adx?google_gid=CAESEJmZJ4IebVGBC2x4b2lZBv8&google_cver=1&google_push=AXcoOmTvlW-ssloF-RuQ3jBf_6ays93qIMZ-c4PFSItWgJ2-CbrhPY16VOdrPNUhx-dA2b3VQlEPy3OZoz9iDVrq28X9fOt3q7sJ4w HTTP/1.1Host: pr-bh.ybp.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: A3=d=AQABBLCrBmcCEIojZkiwIMXkUdWgfGNMcCsFEgEBAQH9B2cQZwAAAAAA_eMAAA&S=AQAAAqrVA6s6f7c9rzy2DkgmRlo
Source: global traffic	HTTP traffic detected: GET /sync?ssp=google&google_gid=CAESEDmcpV3RVZzRJJFTFBRHNpI&google_cver=1&google_push=AXcoOmT5tw4h_BTuKWxAXzylwFR6q4rlKkxahRa4rlfLWKaxg7Z9x561_nwrAwlUSATDFH_aCrjlrgZthNft4FbFf2voUDGqfXUL7Q HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=ae103708-2616-40a0-b890-12d72b8828ee; c=1728490416; tuuid_lu=1728490416
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13LrQxHvYOtVQiM16Yf1jVRRzVrlNDPT_z7tL9xXifhcm4YybGpIxoVsFatdglYpPFQ HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/img/cross.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/themes/knowall/img/check.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajuda/wp-content/plugins/heroic-blocks/img/exclamation-triangle.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /adchoices/img/adc.png HTTP/1.1Host: content.quantcount.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LdtP8QbAAAAANDw3KFiz-PzdUvfmWCm4EpQe0OW&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&theme=light&size=normal&cb=jgc5n85jiq8v HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=dotomi&google_ula=17128,0&google_hm=AQAJ0BARRHTvnAJ2z5V_AQEBAQEBAQCTcw-s0QEBAJNzD6zR&expiration=1728576817&google_cver=1&is_secure=true&google_gid=CAESEFsqrbjMqwgSqNZf-0nFVYQ&google_push=AXcoOmR_mNN36FWVs8645zt__gSu_YQ9AGSujyHyXNmMs8Adm0A6G4B_ltFLPC160j6HYfKaRHhsoLAHByPYw30PXGfukT3i5qiztPw HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/imagens/area_restrita_NFe_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/css/geral.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /rjss/st/2184108/81709832/skeleton.js?ias_advId=${ACCOUNT_ID}&ias_creativeId=0&ias_campId=9059152&ias_placementId=9157453&adsafe_par&ias_impId=477989826908547088&custom=544cffc4-9290-439c-bfa1-a4d316001a47&custom2=85e643db-7127-4263-a373-8c523cf5869d&custom3=p-1RYxePXT9bCS2 HTTP/1.1Host: pixel.adsafeprotected.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/p-1RYxePXT9bCS2.gif?iid=477989826908547088&labels=_qc.extra_user_agent&platform=Windows&platformVersion=10.0.0&model= HTTP/1.1Host: exch.quantcount.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CzBY9rasGZ-XeLc3SxdwP8cCfqAOg-7_reZaj2POLEseTj48MEAEg7JXMEmDJBqAB0v6XmQPIAQGoAwHIA8sEqgTvAU_Qf8BGETKRSIfbzNGP16fAtCcy5Pc3j4XNdxZbtXnyGywCGMTo1ch5SJqjqS96Ulk4IiCfUXk-LtOkmuvj0RsKJfigX4IJo8kT2kdM_R6Ev558HR_wniTXypB8osqVVYuE6pOLNLEKxzImHDBAl_hfqkUY2wQj16h9P3D37BFMenzY6R6FxXbs1j_sneJH0ENEoH3bo7g-gTI5VEnqEDKDXOM7DkZle77YRyPUuPYv5il2NUIlrEV_YCA_d9GQ73n2eVoGr_c8hFhVY7SH4sEv9QIFDS6LSHxtNzxAMcViazmkkF9eaaYvg3yfbkhVwATskYD0yASIBc3s0cNNgAeWgehmqAfVyRuoB9m2sQKoB6a-G6gHjs4bqAeT2BuoB_DgG6gH7paxAqgH_p6xAqgHr76xAqgHmgaoB_PRG6gHltgbqAeqm7ECqAeDrbECqAfgvbECqAf_nrECqAffn7ECqAfKqbECqAfrpbECqAfqsbECqAeZtbECqAe-t7ECqAf4wrECqAf7wrEC2AcB0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpYld3tyNiBiQOxCagb1QWb_2fPgAoBmAsByAsBogwIKgYKBOjCsQLaDBAKChCQz_PF5Z-07FISAgEDqg0CVVPIDQHYEwzQFQGYFgH4FgGAFwGyFwIYAboXAjgBshgFGAEiAQDQGAHoGAE&sigh=0VsWFWIoOmE&cid=CAQSOwDpaXnfksyVfmzVMU_x1sGd-MSR4gGQ3TRGrW9UMMGn6SeW52Gk7VPusQ65NULlsMd2cOeQFv8R3HT7&label=window_focus&gqid=rasGZ8C6KuuRjuwP_rWi-Ao&qqid=CKXp78jYgYkDFU1pkQUdceAHNQ&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490412&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F%23certificadonecessarios&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490410858&bpp=3&bdt=313&idt=1497&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&correlator=4322266114412&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=-269&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087658%2C44795922%2C95343454%2C95344524&oid=2&pvsid=3062997577783540&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaEe%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&
Source: global traffic	HTTP traffic detected: GET /main.19.8.537.js HTTP/1.1Host: static.adsafeprotected.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CQquPrasGZ7jYL_rXxdwPg8322QOI76j0XN69t5avAcCNtwEQASAAYMkGggEXY2EtcHViLTExMTI0ODAzMjQ4MjE1NDbIAQmoAwHIAwKqBOYBT9Bg9QcJuHeJZfmvVl1mshO9j50MutPKtzXdTBYZga8eXP6CBmHq6KTDd-1cppqxMUIYvarWyDV7mBTkpwNXfOTq8pAgZoN6wWfMvCt_tgacacP-UDXv_DKd_mCIJOY3Dy3C_CjYUiNgRxEWA8SYnNoBj6BQuvGrO0rHilfU7wVDH3T0yiQEtkiUzxFXc-x3lXX6ncQECFCIS42n5pbcoyEZnq0U0WnRGD8oflOUWphH0UZS4IulsHg9EdITcQpwZ7hgKRifRgi2TykQQb8_beZsgegUDkeuJlLBwcqrySK00s-ai8eABtW424f14Y-0vAGgBiGoB6a-G6gHltgbqAeqm7ECqAeDrbECqAf_nrECqAffn7ECqAetvrEC2AcA0ggkCIBhEAEyAooCOguAQIDAgICAoKiAAki9_cE6WJnP78jYgYkD-gsCCAGADAHQFQGAFwGyFwIYDA&sigh=dQw0NP5bmgc&cid=CAQSOwDpaXnfIeI0mULx5wKhIDNgvkVFQ51fGrzVa9IYJOz7yCVDeYxE5B4yZRUxoXB3_xTql_INkeKe-dKG&label=window_focus&gqid=rasGZ66gLOPjjuwPxIWm-Qw&qqid=CPji8cjYgYkDFfprkQUdg6Y9Ow&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2729452301&adk=478090332&adf=2045730728&pi=t.ma~as.2729452301&w=340&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490412&rafmt=1&format=340x280&url=https%3A%2F%2Fwww.fsist.com.br%2F%23certificadonecessarios&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490410862&bpp=1&bdt=317&idt=1520&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&prev_fmts=632x280&correlator=4322266114412&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=913&ady=-530&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087658%2C44795922%2C95343454%2C95344524&oid=2&pvsid=3062997577783540&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaeE%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=1525Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DS
Source: global traffic	HTTP traffic detected: GET /portal/imagens/central_atendimento_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/css/geral.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/perguntas_NFE_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/css/geral.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/portais_NFE.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/css/geral.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zemanta&google_push=AXcoOmSFROr1g3tVkMLcaXmlB1A0cgYFJWvbHCgZv8X107LPPD9yp1Wabaau5wgyRcSgjhvr0-Dpp4DtJviLQlGYR38o0TLMKefOW6E&google_hm=aXZOcDljV0pIM0p2c0NPekFrSzA= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zeta_interactive&google_push=AXcoOmR992K98W1DK6rd0VDR6NCaGrba4EFPZ1PWkIjYhexucbMctTSA3eZUXeMs7lI-ITg8I_pkMiH25VvcTeSvl8RMDmQ7YTKt2xuw&google_hm=NzY0MTQyMDU5NzMxMTM0OTM2Ng== HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=yahoo&google_push=AXcoOmTvlW-ssloF-RuQ3jBf_6ays93qIMZ-c4PFSItWgJ2-CbrhPY16VOdrPNUhx-dA2b3VQlEPy3OZoz9iDVrq28X9fOt3q7sJ4w&google_hm=eS1ya1d6Z1ZGRTJwRm1JZmFpMWwzMGZpYWJyUk5PUVRjc35B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=stackadapt_usd&google_hm=RO9hsv43VjtJegiqx3XZlggueyE&google_push=AXcoOmQ-33xHELLyrwfBci9dLG6bkVmxzEWWh0qeC6UWRPBOH3fKLjkDlPteiaHtjvpFbTAauSfaYUo9jqecDWy1PjJasIb2WB2rE9k HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmT5tw4h_BTuKWxAXzylwFR6q4rlKkxahRa4rlfLWKaxg7Z9x561_nwrAwlUSATDFH_aCrjlrgZthNft4FbFf2voUDGqfXUL7Q&google_hm=rhA3CCYWQKC4kBLXK4go7g==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /ftUtils.js HTTP/1.1Host: ajs-assets.ftstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/p-9fYuixa7g_Hm2.gif?labels=_qc.spend,_qc.image.imp&rtbdata2=EAA6GGh0dHBzOi8vd3d3LmZzaXN0LmNvbS5iclooTjdFaHIyRGtLUDBzdGlDdU1yVThvVEd3SjYwc3RpVDZaT2Y4b2p4VIABn8a0zQ66AQDAAejOEsgBj766kKcy2gEWb3NnUEhXem94QW1yUzNwSnRnSnl0d7ACCMgCANACzuGG-_if98ypAegCGfICDwiriAYQyKSl99mZiLPVAfICDwiAyR8Q-P2amKGntYqIAfICDAgZELvo4-7q_9mbFvgCAIoDFjAucHViLTExMTI0ODAzMjQ4MjE1NDaYAwCoAwCyAwQILnsAugMSCWNCJ3HbQ-aFEZ2G9TxSjHOjwgMSCZxDkJLE_0xUEUcaABbTpKG_yAPkh4AQ2AOj5s-KBeIDD3AtMVJZeGVQWFQ5YkNTMuoDBgisAhD6AfIDBTc3MDIw-AMAgASwAooEAjc3kgQSNTQ5NjQ0MzkzODQ4OTg5Njc5mgQSCSNNuAOBcriHERHpCsyBKKydogQSCWNCJ3HbQ-aFEZ2G9TxSjHOjqgQSCWNCJ3HbQ-aFEZ2G9TxSjHOjuATQBdAEDPIEAlVTgAUBigUAkAUBuAUAwAXdmbD1CsgF0PaoBNIFBggBEAIYCOgFBZoGFAoSCSNNuAOBcriHERHpCsyBKKydoAYAtQYq19U3ugY1CgJVUxICVFgY6gQiB2hvdXN0b24qBTc3MDIwOhhsZXZlbCUyMDMlMjBwYXJlbnQlMjBsbGPJBk84Ig83KaIG0AY42AY44gY_X2ZwLmV2ZW50LkRDIFBhaWQgQ29udmVyc2lvbixfZnAuZXZlbnQuREMgVHJpYWwgQ29udmVyc2lvbixfb3Jf6gYRaHR0cHM6Ly9hZG9iZS5jb23xBhBoIg83KaIG-AYDgAcA HTTP/1.1Host: pixel.quantcount.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=stackadapt_usd&google_hm=RO9hsv43VjtJegiqx3XZlggueyE&google_push=AXcoOmSd4m4RfFDIsQnfiHlr1yxfw0KBfWNVuIu1R66nyB2cDlbBQo3U0liWodC0BtEiiRtTe3dw2DRitPmq19MRNhNlRv55UgzDzwE HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel/p-1RYxePXT9bCS2.gif?&media=ad&p=ZwarrQAL7DgFkWv6AD2mg-ubjZDTNMEUhO8L0w&r=715565&rand=1364456227&labels=_qc.imp,_imp.adserver.rtb,_imp.qccampaign.9059152,_imp.flight.0,_imp.lineitem.0&rtbip=91.228.72.193&rtbdata2=EAA6GGh0dHBzOi8vd3d3LmZzaXN0LmNvbS5iclooTjdFaHIyRGtLUDBzdGlDdU1yVThvVEd3SjYwc3RpVDZaT2Y4b2p4VIABn8a0zQ66AQDAAejOEsgBj766kKcy2gEWb3NnUEhXem94QW1yUzNwSnRnSnl0d7ACCMgCANACzuGG-_if98ypAegCGfICDwiriAYQyKSl99mZiLPVAfICDwiAyR8Q-P2amKGntYqIAfICDAgZELvo4-7q_9mbFvgCAIoDFjAucHViLTExMTI0ODAzMjQ4MjE1NDaYAwCoAwCyAwQILnsAugMSCWNCJ3HbQ-aFEZ2G9TxSjHOjwgMSCZxDkJLE_0xUEUcaABbTpKG_yAPkh4AQ2AOj5s-KBeIDD3AtMVJZeGVQWFQ5YkNTMuoDBgisAhD6AfIDBTc3MDIw-AMAgASwAooEAjc3kgQSNTQ5NjQ0MzkzODQ4OTg5Njc5mgQSCSNNuAOBcriHERHpCsyBKKydogQSCWNCJ3HbQ-aFEZ2G9TxSjHOjqgQSCWNCJ3HbQ-aFEZ2G9TxSjHOjuATQBdAEDPIEAlVTgAUBigUAkAUBuAUAwAXdmbD1CsgF0PaoBNIFBggBEAIYCOgFBZoGFAoSCSNNuAOBcriHERHpCsyBKKydoAYAtQYq19U3ugY1CgJVUxICVFgY6gQiB2hvdXN0b24qBTc3MDIwOhhsZXZlbCUyMDMlMjBwYXJlbnQlMjBsbGPJBk84Ig83KaIG0AY42AY44gY_X2ZwLmV2ZW50LkRDIFBhaWQgQ29udmVyc2lvbixfZnAuZXZlbnQuREMgVHJpYWwgQ29udmVyc2lvbixfb3Jf6gYRaHR0cHM6Ly9hZG9iZS5jb23xBhBoIg83KaIG-AYDgAcA&fpan=0&fpa=&d=googleads.g.doubleclick.net&et=1728490414020&sr=1280x1024x24&tzo=240 HTTP/1.1Host: pixel.quantserve.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mc=6706ab9d-01733-80664-05cea; sp=CggI2WUSAxDODQ==
Source: global traffic	HTTP traffic detected: GET /sca.17.6.4.js HTTP/1.1Host: static.adsafeprotected.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/imagens/sombra_rodape.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/css/geral.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /rfw/st/2184108/81709832/skeleton.js?ias_advId=${ACCOUNT_ID}&ias_creativeId=0&ias_campId=9059152&ias_placementId=9157453&adsafe_par&ias_impId=477989826908547088&custom=544cffc4-9290-439c-bfa1-a4d316001a47&custom2=85e643db-7127-4263-a373-8c523cf5869d&custom3=p-1RYxePXT9bCS2&adsafe_url=https%3A%2F%2Fwww.fsist.com.br&adsafe_type=g&adsafe_url=https%3A%2F%2Fwww.fsist.com.br%2F&adsafe_type=c&adsafe_url=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&adsafe_type=f&adsafe_url=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fpagead%2Fads%3Fclient%3Dca-pub-1112480324821546%26output%3Dhtml%26h%3D280%26slotname%3D2729452301%26adk%3D478090332%26adf%3D2045730728%26pi%3Dt.ma~as.2729452301%26w%3D340%26abgtt%3D3%26fwrn%3D4%26fwrnh%3D100%26lmt%3D1728490412%26rafmt%3D1%26format%3D340x280%26url%3Dhttps%253A%252F%252Fwww.fsist.com.br%252F%2523certificadonecessarios%26fwr%3D0%26fwrattr%3Dtrue%26rpe%3D1%26resp_fmts%3D3%26wgl%3D1%26uach%3DWyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.%26dt%3D1728490410862%26bpp%3D1%26bdt%3D317%26idt%3D1520%26shv%3Dr20241007%26mjsv%3Dm202410030101%26ptt%3D9%26saldr%3Daa%26abxe%3D1%26cookie%3DID%253D0a826a3351289280%253AT%253D1728490378%253ART%253D1728490378%253AS%253DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ%26gpic%3DUID%253D00000f05e6b2da9f%253AT%253D1728490378%253ART%253D1728490378%253AS%253DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ%26eo_id_str%3DID%253D032924807577f1f5%253AT%253D1728490378%253ART%253D1728490378%253AS%253DAA-AfjY8glguKwKrF5oT01NjKnLk%26prev_fmts%3D632x280%26correlator%3D4322266114412%26frm%3D20%26pv%3D1%26u_tz%3D-240%26u_his%3D1%26u_h%3D1024%26u_w%3D1280%26u_ah%3D984%26u_aw%3D1280%26u_cd%3D24%26u_sd%3D1%26dmc%3D8%26adx%3D913%26ady%3D-530%26biw%3D1280%26bih%3D907%26scr_x%3D0%26scr_y%3D0%26eid%3D44759875%252C44759926%252C44759842%252C31087658%252C44795922%252C95343454%252C95344524%26oid%3D2%26pvsid%3D3062997577783540%26tmod%3D1031379896%26uas%3D0%26nvt%3D1%26fc%3D896%26brdim%3D0%252C0%252C0%252C0%252C1280%252C0%252C1280%252C984%252C1280%252C907%26vis%3D1%26rsz%3D%257C%257CaeE%257C%26abl%3DCA%26pfx%3D0%26fu%3D128%26bc%3D31%26bz%3D1%26td%3D1%26tdf%3D0%26psd%3DW251bGwsbnVsbCxudWxsLDNd%26nt%3D1%26ifi%3D2%26uci%3Da!2%26fsb%3D1%26dtd%3D1525&adsafe_type=bed&adsafe_jsinfo=,id:d5ac92a5-b32a-d3c5-b168-8572e0491990,c:qDDOOQ,sl:na,em:true,fr:false,thd:1,mn:jsserver-experiment-primary-7b4d7f46fb-tncvm,rg:ie,pt:1-5-15,mu:10000,br:c,bru:c,an:n,oam:0,scm:ctKpc1,mtim:4083,mot:0,app:0,maw:0,tdt:s,fm:uqIVDzK+11%7C121%7C13%7C14%7C151%7C152%7C161.2184108-81709832%7C1611%7C17,idMap:161,ex:e2,pl:CV8L.CV8L.CV8L.CV8L.CV8L,rmeas:0,rend:0,renddet:na,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:1,cnod:1,gm:0,tt:rjss,et:4117,oid:707bafbc-8659-11ef-b4fd-2a0e27ace9cc,v:19.8.537,sp:1,st:0,fwm:1,wr:1280.984,sr:1280.1024,ff:1,ov:0 HTTP/1.1Host: pixel.adsafeprotected.comConnection: keep-alivesec-ch-ua:
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=dotomi&google_ula=17128,0&google_hm=AQAGvARSSWsddgJpFj0oAQEBAQEBAQCTcw-0YgEBAJNzD7Ri&expiration=1728576819&google_cver=1&is_secure=true&google_gid=CAESEFsqrbjMqwgSqNZf-0nFVYQ&google_push=AXcoOmStYDmM-ZjgDtGzzMND07egTFzCy96_HaB-sF87-DOi7gRfgZMlbDbqHl6Wt5iPH-0aPmPW_qAF6-50w9jtLAq3-iTYV9UAtoA HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /estatistica/grupos/www.nfe.fazenda.gov.br.js HTTP/1.1Host: www.receita.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BIGipServer~WEBREC~POOL_RECEITA_443=rd1o00000000000000000000ffffa194e717o443
Source: global traffic	HTTP traffic detected: GET /portal/imagens/marca_Receita.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/css/geral.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /sync?dsp_id=119&user_id=7641420597311349366&expires=30&ssp=google HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=ae103708-2616-40a0-b890-12d72b8828ee; c=1728490416; tuuid_lu=1728490417; google_push=AXcoOmT5tw4h_BTuKWxAXzylwFR6q4rlKkxahRa4rlfLWKaxg7Z9x561_nwrAwlUSATDFH_aCrjlrgZthNft4FbFf2voUDGqfXUL7Q
Source: global traffic	HTTP traffic detected: GET /dt?advEntityId=2184108&asId=d5ac92a5-b32a-d3c5-b168-8572e0491990&tv=%7Bc:qDDOPK,pingTime:-2,time:4172,type:a,im:%7Bsf:0,pom:1,prf:%7BbeA:2949,beZ:2952,mfA:7033,cmA:7034,inA:7034,inZ:7039,prA:7040,prZ:7060,si:7067,poA:7072,poZ:7092,cmZ:7092,mfZ:7092,loA:7114,loZ:7117,ltA:7121,ltZ:7121,mdA:2953,mdZ:7009%7D%7D,sca:%7Blts:2024-10-09%2012.13.40,dfp:%7Bdf:4,sz:300.250,dom:div%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:-1,vs:n,r:,w:0,h:0,t:4116%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:1,cnod:1,gm:0,slTimes:%7Bi:0,o:0,n:4173,pp:0,pm:0%7D,slEvents:%5B%7Bsl:n,t:4115,wc:0.0.1280.984,bkn:%7Bpiv:%5B86~1%5D,as:%5B86~na.na%5D%7D%7D%5D,slEventCount:1,em:true,fr:false,e:,tt:rjss,dtt:0,fm:uqIVDzK+11%7C121%7C13%7C14%7C151%7C152%7C161.2184108-81709832%7C1611%7C17,idMap:161,pd:CV8L.internal-pdf-viewer,rmeas:1,rend:0,renddet:na,siq:4118,sinceFw:49,readyFired:true%7D&br=c HTTP/1.1Host: dt.adsafeprotected.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /display/7892485/4766313.json HTTP/1.1Host: agen-assets.ftstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://googleads.g.doubleclick.netSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /app2/vlibras-plugin.js HTTP/1.1Host: vlibras.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.nfe.fazenda.gov.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zeta_interactive&google_push=AXcoOmR26LQt_c3OXAvPRZx_70f_YkVVrplK5hxCkZuVa9XxMXikjiXSIzZI1zLsrHcOnC3jC2TRcAUUYYYdtY5WzyfXpLzZE4-m88mN&google_hm=NzY0MTQyMDU5NzMxMTM0OTM2Ng== HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/imagens/Box_Busca.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /skeleton.js HTTP/1.1Host: static.adsafeprotected.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/imagens/box_estatisticas.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=yahoo&google_push=AXcoOmRObiIyJzrWMV4pR6dK9-Zl32BB1jG5cnttJjmMiuGDYIl9XOCBkVSXKg-gNzqqunvwPnuR1ogHPQ3S8EQlRA_TjpmZQprayw&google_hm=eS1ya1d6Z1ZGRTJwRm1JZmFpMWwzMGZpYWJyUk5PUVRjc35B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel/p-1RYxePXT9bCS2.gif?iid=477989826908547088&labels=_qc.extra_user_agent&platform=Windows&platformVersion=10.0.0&model= HTTP/1.1Host: exch.quantcount.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/imagens/cabecalho_NFe.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmT5tw4h_BTuKWxAXzylwFR6q4rlKkxahRa4rlfLWKaxg7Z9x561_nwrAwlUSATDFH_aCrjlrgZthNft4FbFf2voUDGqfXUL7Q&google_hm=rhA3CCYWQKC4kBLXK4go7g==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zemanta&google_push=AXcoOmQUioeRbNFMvdD9nJo-tN6lSL0tZeVLrFYQ3C99SKNeRBY0i6uZhaLb-diczutkwYZ3z2jNDRlgQpIVSAIGwOQyqWPApG1l6D0&google_hm=aXZOcDljV0pIM0p2c0NPekFrSzA= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /?anId=926884&advId=quantcast&campId=onMeasurable&impId=477989826908547088&custom=544cffc4-9290-439c-bfa1-a4d316001a47&custom2=85e643db-7127-4263-a373-8c523cf5869d&custom3=p-1RYxePXT9bCS2 HTTP/1.1Host: pixel.adsafeprotected.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ias/v1?r=[cachebuster]&labels=_ias.measurable&iid=477989826908547088&a=p-1RYxePXT9bCS2&cid=544cffc4-9290-439c-bfa1-a4d316001a47&bid=85e643db-7127-4263-a373-8c523cf5869d&gdpr=[gdpr]&gdpr_consent=[gdpr_consent] HTTP/1.1Host: pixel.quantserve.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mc=6706ab9d-01733-80664-05cea; sp=CggI2WUSAxDODQ==
Source: global traffic	HTTP traffic detected: GET /dt?advEntityId=2184108&asId=d5ac92a5-b32a-d3c5-b168-8572e0491990&tv=%7Bc:qDDPrB,pingTime:-10,time:6519,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi40djk4NHx8MTI4MHx8MXx8MXx8MjR8fDEwMjR8fDB8fDB8fDF8fGxhbmRzY2FwZS1wcmltYXJ5fHwyNHx8NS80fHw1LzR8fDB8fDEyODA-,no:MTcuNi40dk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxXaW4zMnx8R2Vja298fDIwMDMwMTA3fHwyNDB8fE1vemlsbGEvNS4wIChXaW5kb3dzIE5UIDEwLjA7IFdpbjY0OyB4NjQpIEFwcGxlV2ViS2l0LzUzNy4zNiAoS0hUTUwsIGxpa2UgR2Vja28pIENocm9tZS8xMTcuMC4wLjAgU2FmYXJpLzUzNy4zNnx8MXx8MXx8R29vZ2xlIEluYy58fG4-,ch:n,fsc:17.6.4v222222220002222202222222220222222222202222222220222202000022000220222222220000222202002222202222222220222222220000020022222200022222220200000222200022220002022022022222202002220222022222022220000220200000022220222220222222222222202222222222222222222222222222222222222200000022022020020000002022202022022022222222000000000020222202022022222000000020000000000000000000020220202220000022200222202220022200200222022202220022220222200202222020002200002222022222202222000002002002222222202220022202200222002220222202,asp:1728490423282%7C%7Cf00cf219393f1fd1a3f22f7e15f1ba21%7C%7C22210ca73bf1af2ec2eace74a96ee356%7C%7Cb7e07b1d0c27eb966dd161a9e246b981%7C%7Cedcc0ab8c7aa0d742bc136e39bca057b%7C%7C7ed4a4e268df84d5e53048b2d964e464%7C%7C5faff8254a6c3efc318f41fde15a1ead%7C%7Ca977e0739c285a003119e2128299dc22%7C%7C1715618633,im:%7Bpci:%7Btdr:2173%7D%7D%7D HTTP/1.1Host: dt.adsafeprotected.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pageFold/ftpagefold_v4.7.2.js HTTP/1.1Host: cdn.flashtalking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: flashtalkingad1="GUID=612620D58B8C97"
Source: global traffic	HTTP traffic detected: GET /score.min.js?pid=1000925&tt=g HTTP/1.1Host: js.ad-score.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=dotomi&google_ula=17128,0&google_hm=AQAJ0BARRHTvnAJ2z5V_AQEBAQEBAQCTcw-s0QEBAJNzD6zR&expiration=1728576817&google_cver=1&is_secure=true&google_gid=CAESEFsqrbjMqwgSqNZf-0nFVYQ&google_push=AXcoOmR_mNN36FWVs8645zt__gSu_YQ9AGSujyHyXNmMs8Adm0A6G4B_ltFLPC160j6HYfKaRHhsoLAHByPYw30PXGfukT3i5qiztPw HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=yahoo&google_push=AXcoOmTvlW-ssloF-RuQ3jBf_6ays93qIMZ-c4PFSItWgJ2-CbrhPY16VOdrPNUhx-dA2b3VQlEPy3OZoz9iDVrq28X9fOt3q7sJ4w&google_hm=eS1ya1d6Z1ZGRTJwRm1JZmFpMWwzMGZpYWJyUk5PUVRjc35B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmT5tw4h_BTuKWxAXzylwFR6q4rlKkxahRa4rlfLWKaxg7Z9x561_nwrAwlUSATDFH_aCrjlrgZthNft4FbFf2voUDGqfXUL7Q&google_hm=rhA3CCYWQKC4kBLXK4go7g==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/imagens/area_restrita_NFe_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/perguntas_NFE_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=stackadapt_usd&google_hm=RO9hsv43VjtJegiqx3XZlggueyE&google_push=AXcoOmQ-33xHELLyrwfBci9dLG6bkVmxzEWWh0qeC6UWRPBOH3fKLjkDlPteiaHtjvpFbTAauSfaYUo9jqecDWy1PjJasIb2WB2rE9k HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zeta_interactive&google_push=AXcoOmR992K98W1DK6rd0VDR6NCaGrba4EFPZ1PWkIjYhexucbMctTSA3eZUXeMs7lI-ITg8I_pkMiH25VvcTeSvl8RMDmQ7YTKt2xuw&google_hm=NzY0MTQyMDU5NzMxMTM0OTM2Ng== HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zemanta&google_push=AXcoOmSFROr1g3tVkMLcaXmlB1A0cgYFJWvbHCgZv8X107LPPD9yp1Wabaau5wgyRcSgjhvr0-Dpp4DtJviLQlGYR38o0TLMKefOW6E&google_hm=aXZOcDljV0pIM0p2c0NPekFrSzA= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /portal/imagens/central_atendimento_Off.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/portais_NFE.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /ftUtils.js HTTP/1.1Host: ajs-assets.ftstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /main.19.8.537.js HTTP/1.1Host: static.adsafeprotected.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/bframe?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&k=6LdtP8QbAAAAANDw3KFiz-PzdUvfmWCm4EpQe0OW HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dt?advEntityId=2184108&asId=d5ac92a5-b32a-d3c5-b168-8572e0491990&tv=%7Bc:qDDOPK,pingTime:-2,time:4172,type:a,im:%7Bsf:0,pom:1,prf:%7BbeA:2949,beZ:2952,mfA:7033,cmA:7034,inA:7034,inZ:7039,prA:7040,prZ:7060,si:7067,poA:7072,poZ:7092,cmZ:7092,mfZ:7092,loA:7114,loZ:7117,ltA:7121,ltZ:7121,mdA:2953,mdZ:7009%7D%7D,sca:%7Blts:2024-10-09%2012.13.40,dfp:%7Bdf:4,sz:300.250,dom:div%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:-1,vs:n,r:,w:0,h:0,t:4116%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:1,cnod:1,gm:0,slTimes:%7Bi:0,o:0,n:4173,pp:0,pm:0%7D,slEvents:%5B%7Bsl:n,t:4115,wc:0.0.1280.984,bkn:%7Bpiv:%5B86~1%5D,as:%5B86~na.na%5D%7D%7D%5D,slEventCount:1,em:true,fr:false,e:,tt:rjss,dtt:0,fm:uqIVDzK+11%7C121%7C13%7C14%7C151%7C152%7C161.2184108-81709832%7C1611%7C17,idMap:161,pd:CV8L.internal-pdf-viewer,rmeas:1,rend:0,renddet:na,siq:4118,sinceFw:49,readyFired:true%7D&br=c HTTP/1.1Host: dt.adsafeprotected.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /app2//assets/access_icon.svg HTTP/1.1Host: vlibras.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /app2//assets/access_popup.jpg HTTP/1.1Host: vlibras.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /estatistica/estatistica.gif?novo_visitante_diario=&novo_visitante_mensal=&novo_visitante_anual=&plugins=PDF&monitor=1280x1024x24&so=Windows&navegador=Chrome.117&novo_visitante_diario_pagina=&novo_visitante_mensal_pagina=&novo_visitante_anual_pagina=&dominio=www.nfe.fazenda.gov.br&nova_visita_pagina=&nova_visita=&_=1728490423933&versao=3.3 HTTP/1.1Host: www.receita.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BIGipServer~WEBREC~POOL_RECEITA_443=rd1o00000000000000000000ffffa194e717o443
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LdtP8QbAAAAANDw3KFiz-PzdUvfmWCm4EpQe0OW&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&theme=light&size=normal&cb=hr8sw7vxxchl HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/imagens/sombra_rodape.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /portal/imagens/marca_Receita.png HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /dt?advEntityId=2184108&asId=d5ac92a5-b32a-d3c5-b168-8572e0491990&tv=%7Bc:qDDPrB,pingTime:-10,time:6519,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi40djk4NHx8MTI4MHx8MXx8MXx8MjR8fDEwMjR8fDB8fDB8fDF8fGxhbmRzY2FwZS1wcmltYXJ5fHwyNHx8NS80fHw1LzR8fDB8fDEyODA-,no:MTcuNi40dk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxXaW4zMnx8R2Vja298fDIwMDMwMTA3fHwyNDB8fE1vemlsbGEvNS4wIChXaW5kb3dzIE5UIDEwLjA7IFdpbjY0OyB4NjQpIEFwcGxlV2ViS2l0LzUzNy4zNiAoS0hUTUwsIGxpa2UgR2Vja28pIENocm9tZS8xMTcuMC4wLjAgU2FmYXJpLzUzNy4zNnx8MXx8MXx8R29vZ2xlIEluYy58fG4-,ch:n,fsc:17.6.4v222222220002222202222222220222222222202222222220222202000022000220222222220000222202002222202222222220222222220000020022222200022222220200000222200022220002022022022222202002220222022222022220000220200000022220222220222222222222202222222222222222222222222222222222222200000022022020020000002022202022022022222222000000000020222202022022222000000020000000000000000000020220202220000022200222202220022200200222022202220022220222200202222020002200002222022222202222000002002002222222202220022202200222002220222202,asp:1728490423282%7C%7Cf00cf219393f1fd1a3f22f7e15f1ba21%7C%7C22210ca73bf1af2ec2eace74a96ee356%7C%7Cb7e07b1d0c27eb966dd161a9e246b981%7C%7Cedcc0ab8c7aa0d742bc136e39bca057b%7C%7C7ed4a4e268df84d5e53048b2d964e464%7C%7C5faff8254a6c3efc318f41fde15a1ead%7C%7Ca977e0739c285a003119e2128299dc22%7C%7C1715618633,im:%7Bpci:%7Btdr:2173%7D%7D%7D HTTP/1.1Host: dt.adsafeprotected.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /estatistica/grupos/www.nfe.fazenda.gov.br.js HTTP/1.1Host: www.receita.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BIGipServer~WEBREC~POOL_RECEITA_443=rd1o00000000000000000000ffffa194e717o443
Source: global traffic	HTTP traffic detected: GET /?anId=926884&advId=quantcast&campId=onMeasurable&impId=477989826908547088&custom=544cffc4-9290-439c-bfa1-a4d316001a47&custom2=85e643db-7127-4263-a373-8c523cf5869d&custom3=p-1RYxePXT9bCS2 HTTP/1.1Host: pixel.adsafeprotected.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=dotomi&google_ula=17128,0&google_hm=AQAGvARSSWsddgJpFj0oAQEBAQEBAQCTcw-0YgEBAJNzD7Ri&expiration=1728576819&google_cver=1&is_secure=true&google_gid=CAESEFsqrbjMqwgSqNZf-0nFVYQ&google_push=AXcoOmStYDmM-ZjgDtGzzMND07egTFzCy96_HaB-sF87-DOi7gRfgZMlbDbqHl6Wt5iPH-0aPmPW_qAF6-50w9jtLAq3-iTYV9UAtoA HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /sca.17.6.4.js HTTP/1.1Host: static.adsafeprotected.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /display/7892485/4766313.json HTTP/1.1Host: agen-assets.ftstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmT5tw4h_BTuKWxAXzylwFR6q4rlKkxahRa4rlfLWKaxg7Z9x561_nwrAwlUSATDFH_aCrjlrgZthNft4FbFf2voUDGqfXUL7Q&google_hm=rhA3CCYWQKC4kBLXK4go7g==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
Source: global traffic	HTTP traffic detected: GET /skeleton.js HTTP/1.1Host: static.adsafeprotected.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/bframe?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&k=6LdtP8QbAAAAANDw3KFiz-PzdUvfmWCm4EpQe0OW HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.nfe.fazenda.gov.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AspxAutoDetectCookieSupport=1; ASP.NET_SessionId=rde4fe1cnq1eaftb5and2diy
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /estatistica/estatistica.gif?novo_visitante_diario=&novo_visitante_mensal=&novo_visitante_anual=&plugins=PDF&monitor=1280x1024x24&so=Windows&navegador=Chrome.117&novo_visitante_diario_pagina=&novo_visitante_mensal_pagina=&novo_visitante_anual_pagina=&dominio=www.nfe.fazenda.gov.br&nova_visita_pagina=&nova_visita=&_=1728490423933&versao=3.3 HTTP/1.1Host: www.receita.fazenda.gov.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BIGipServer~WEBREC~POOL_RECEITA_443=rd1o00000000000000000000ffffa194e717o443
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LdtP8QbAAAAANDw3KFiz-PzdUvfmWCm4EpQe0OW&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&theme=light&size=normal&cb=q3bointxu6px HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/bframe?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&k=6LdtP8QbAAAAANDw3KFiz-PzdUvfmWCm4EpQe0OW HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.fsist.com.br/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /imgs/autxmlnfe.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /contato HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490412.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /monitor-de-notas HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/feliz.jpg HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/monitor-de-notasAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/contador.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/monitor-de-notasAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/empresa.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/monitor-de-notasAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/produtor.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/monitor-de-notasAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/app2.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/monitor-de-notasAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/um.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/monitor-de-notasAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/feliz.jpg HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/contador.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/filiais.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/monitor-de-notasAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/computador.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/monitor-de-notasAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/wifi.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/monitor-de-notasAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/aws.png HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.fsist.com.br/monitor-de-notasAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490438.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /videos/monitor-de-notas-primeiro-uso.mp4 HTTP/1.1Host: www.fsist.com.brConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Encoding: identity;q=1, ;q=0sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: videoReferer: https://www.fsist.com.br/monitor-de-notasAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490442.0.0.0Range: bytes=0-
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/empresa.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490442.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/produtor.svg HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490442.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/um.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490442.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/app2.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490442.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/computador.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490442.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/filiais.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490442.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/wifi.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490442.0.0.0
Source: global traffic	HTTP traffic detected: GET /PriPlugin/v4/imgs/monitor/aws.png HTTP/1.1Host: www.fsist.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.1.1728490442.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: chromecache_739.2.dr, chromecache_748.2.dr

String found in binary or memory: return b}QC.F="internal.enableAutoEventOnTimer";var gc=ka(["data-gtm-yt-inspected-"]),SC=["www.youtube.com","www.youtube-nocookie.com"],TC,UC=!1; equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: www.fsist.com.br
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: sslteste2.fsist.com.br
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: server2.fsist.com.br
Source: global traffic	DNS traffic detected: DNS query: server3.fsist.com.br
Source: global traffic	DNS traffic detected: DNS query: server4.fsist.com.br
Source: global traffic	DNS traffic detected: DNS query: server5.fsist.com.br
Source: global traffic	DNS traffic detected: DNS query: sync.ipredictive.com
Source: global traffic	DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: c1.adform.net
Source: global traffic	DNS traffic detected: DNS query: onetag-sys.com
Source: global traffic	DNS traffic detected: DNS query: an.yandex.ru
Source: global traffic	DNS traffic detected: DNS query: sync.teads.tv
Source: global traffic	DNS traffic detected: DNS query: analytics.pangle-ads.com
Source: global traffic	DNS traffic detected: DNS query: www.temu.com
Source: global traffic	DNS traffic detected: DNS query: cm.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: match.adsby.bidtheatre.com
Source: global traffic	DNS traffic detected: DNS query: t.adx.opera.com
Source: global traffic	DNS traffic detected: DNS query: gtrace.mediago.io
Source: global traffic	DNS traffic detected: DNS query: cms.quantserve.com
Source: global traffic	DNS traffic detected: DNS query: pm.w55c.net
Source: global traffic	DNS traffic detected: DNS query: um.simpli.fi
Source: global traffic	DNS traffic detected: DNS query: ads.travelaudience.com
Source: global traffic	DNS traffic detected: DNS query: rtb.adentifi.com
Source: global traffic	DNS traffic detected: DNS query: a.c.appier.net
Source: global traffic	DNS traffic detected: DNS query: www.nfe.fazenda.gov.br
Source: global traffic	DNS traffic detected: DNS query: mts0.google.com
Source: global traffic	DNS traffic detected: DNS query: www.receita.fazenda.gov.br
Source: global traffic	DNS traffic detected: DNS query: s.w.org
Source: global traffic	DNS traffic detected: DNS query: barra.brasil.gov.br
Source: global traffic	DNS traffic detected: DNS query: eu-google-rtb.quantserve.com
Source: global traffic	DNS traffic detected: DNS query: _8443._https.eu-google-rtb.quantserve.com
Source: global traffic	DNS traffic detected: DNS query: content.quantcount.com
Source: global traffic	DNS traffic detected: DNS query: dclk-match.dotomi.com
Source: global traffic	DNS traffic detected: DNS query: x.bidswitch.net
Source: global traffic	DNS traffic detected: DNS query: pr-bh.ybp.yahoo.com
Source: global traffic	DNS traffic detected: DNS query: b1sync.zemanta.com
Source: global traffic	DNS traffic detected: DNS query: sync.srv.stackadapt.com
Source: global traffic	DNS traffic detected: DNS query: a.rfihub.com
Source: global traffic	DNS traffic detected: DNS query: z.moatads.com
Source: global traffic	DNS traffic detected: DNS query: pixel.adsafeprotected.com
Source: global traffic	DNS traffic detected: DNS query: pixel.quantcount.com
Source: global traffic	DNS traffic detected: DNS query: pixel.quantserve.com
Source: global traffic	DNS traffic detected: DNS query: exch.quantcount.com
Source: global traffic	DNS traffic detected: DNS query: servedby.flashtalking.com
Source: global traffic	DNS traffic detected: DNS query: static.adsafeprotected.com
Source: global traffic	DNS traffic detected: DNS query: p.rfihub.com
Source: global traffic	DNS traffic detected: DNS query: ajs-assets.ftstatic.com
Source: global traffic	DNS traffic detected: DNS query: vlibras.gov.br
Source: global traffic	DNS traffic detected: DNS query: dt.adsafeprotected.com
Source: global traffic	DNS traffic detected: DNS query: agen-assets.ftstatic.com
Source: global traffic	DNS traffic detected: DNS query: d9.flashtalking.com
Source: global traffic	DNS traffic detected: DNS query: cdn.flashtalking.com
Source: global traffic	DNS traffic detected: DNS query: js.ad-score.com
Source: global traffic	DNS traffic detected: DNS query: cdn.jsdelivr.net
Source: global traffic	DNS traffic detected: DNS query: ad.turn.com
Source: global traffic	DNS traffic detected: DNS query: a.tribalfusion.com
Source: global traffic	DNS traffic detected: DNS query: match.adsrvr.org
Source: global traffic	DNS traffic detected: DNS query: dis.criteo.com
Source: global traffic	DNS traffic detected: DNS query: match.prod.bidr.io
Source: global traffic	DNS traffic detected: DNS query: dsp.adkernel.com
Source: global traffic	DNS traffic detected: DNS query: sync-dmp.aura-dsp.com
Source: global traffic	DNS traffic detected: DNS query: s.tribalfusion.com
Source: global traffic	DNS traffic detected: DNS query: widget.us.criteo.com
Source: global traffic	DNS traffic detected: DNS query: r.turn.com
Source: global traffic	DNS traffic detected: DNS query: tr.blismedia.com
Source: global traffic	DNS traffic detected: DNS query: veryfast.io
Source: global traffic	DNS traffic detected: DNS query: repcdn.pcapp.store

Source: unknown

HTTP traffic detected: POST /pixelgif.php HTTP/1.1Host: veryfast.ioConnection: keep-aliveContent-Length: 351sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/json;charset=UTF-8Accept: */*Origin: https://veryfast.ioSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://veryfast.io/?ap=adw&as=g_d_fast_all_in&dm[ads]=new_adaptive1&dm[type]=dis&gad_source=5&gclid=EAIaIQobChMIuPWZ49iBiQMVJck7Ah07zTOxEAEYASAAEgI6O_D_BwEAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _fcid=1728490474414215; srcd=googleads.g.doubleclick.net; srcr=googleads.g.doubleclick.net%2F; default_lp=lp%2Flp_veryfast_main_r1; ml_lp_prediction_g_d_fast_all_in=lp26_farss_sd_r1; lp=%2Flp26_farss_sd_r1.html

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundContent-Type: text/htmlServer: Microsoft-IIS/10.0X-Powered-By: ASP.NETDate: Wed, 09 Oct 2024 16:13:47 GMTConnection: closeContent-Length: 1245
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Wed, 09 Oct 2024 16:14:54 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeVary: Accept-EncodingVary: Accept-EncodingStrict-Transport-Security: max-age=31536000; includeSubDomains

Source: chromecache_572.2.dr, chromecache_370.2.dr	String found in binary or memory: http://andreaslagerkvist.com/jquery/live-search/
Source: chromecache_320.2.dr	String found in binary or memory: http://brasil.gov.br
Source: chromecache_572.2.dr, chromecache_370.2.dr	String found in binary or memory: http://creativecommons.org/licenses/by/3.0/
Source: chromecache_320.2.dr	String found in binary or memory: http://dec.fazenda.df.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://epwg.governoeletronico.gov.br/barra/atualize.html
Source: chromecache_320.2.dr	String found in binary or memory: http://exslt.org/chaveacesso
Source: chromecache_320.2.dr	String found in binary or memory: http://exslt.org/dates-and-times
Source: chromecache_320.2.dr	String found in binary or memory: http://fazenda.rs.gov.br/inicial
Source: chromecache_705.2.dr, chromecache_664.2.dr	String found in binary or memory: http://getbootstrap.com/javascript/#scrollspy
Source: chromecache_321.2.dr	String found in binary or memory: http://gmpg.org/xfn/11
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: http://google.com
Source: chromecache_372.2.dr, chromecache_697.2.dr, chromecache_576.2.dr, chromecache_374.2.dr	String found in binary or memory: http://googleads.g.doubleclick.net
Source: chromecache_320.2.dr	String found in binary or memory: http://internet.sefaz.es.gov.br/informacoes/nfe/
Source: chromecache_460.2.dr, chromecache_373.2.dr	String found in binary or memory: http://javascript.crockford.com/jsmin.html
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: http://mathiasbynens.be/
Source: chromecache_320.2.dr	String found in binary or memory: http://nfe.sef.sc.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://nfe.sefaz.ce.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://nfe.sefaz.se.gov.br/
Source: chromecache_372.2.dr, chromecache_697.2.dr, chromecache_576.2.dr, chromecache_374.2.dr	String found in binary or memory: http://pagead2.googlesyndication.com
Source: chromecache_460.2.dr, chromecache_373.2.dr	String found in binary or memory: http://pajhome.org.uk/crypt/md5
Source: chromecache_320.2.dr	String found in binary or memory: http://portal.sefaz.pi.gov.br/documentoseletronicos/portal/efd/index.php
Source: chromecache_320.2.dr	String found in binary or memory: http://receita.fazenda.rs.gov.br/lista/2933/nf-e-(nota-fiscal-eletronica)
Source: chromecache_321.2.dr	String found in binary or memory: http://schema.org/WPHeader
Source: chromecache_320.2.dr	String found in binary or memory: http://sefaznet.ac.gov.br/nfe/
Source: chromecache_320.2.dr	String found in binary or memory: http://sistemas.sefaz.am.gov.br/nfeweb/portal/index.do
Source: chromecache_460.2.dr, chromecache_373.2.dr	String found in binary or memory: http://www.JSON.org/js.html
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_721.2.dr	String found in binary or memory: http://www.cte.fazenda.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.fazenda.df.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.fazenda.mg.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.fazenda.rj.gov.br/sefaz/faces/webcenter/faces/owResource.jspx?z=oracle.webcenter.doclib%2
Source: chromecache_320.2.dr	String found in binary or memory: http://www.fazenda.sp.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.fazenda.sp.gov.br/nfe/
Source: chromecache_721.2.dr	String found in binary or memory: http://www.nfe.fazenda.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.nfe.ms.gov.br/
Source: chromecache_460.2.dr, chromecache_373.2.dr	String found in binary or memory: http://www.opensource.org/licenses/MIT
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sef.sc.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefa.pa.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefa.pa.gov.br/index.php/component/banners/click/7
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.ac.gov.br
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.al.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.al.gov.br/nfe/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.am.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.ap.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.ba.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.ba.gov.br/scripts/default/nfiscal.asp
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.ce.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.es.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.go.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.ma.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.ms.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.mt.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.mt.gov.br/portal/nfe/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.pi.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.rr.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.se.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sefaz.to.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.set.rn.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.set.rn.gov.br/contentProducao/Aplicacao/SET_v2/nfe/gerados/inicio.asp
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sped.fazenda.mg.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sped.fazenda.pr.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: http://www.sped.fazenda.pr.gov.br/modules/conteudo/conteudo.php?conteudo=1
Source: chromecache_518.2.dr	String found in binary or memory: http://www.techsmith.com/xmp/tsc/
Source: chromecache_460.2.dr, chromecache_373.2.dr	String found in binary or memory: http://www.webtoolkit.info/
Source: chromecache_721.2.dr	String found in binary or memory: https://addons.mozilla.org/pt-BR/firefox/addon/gerar-danfe-dacte/
Source: chromecache_693.2.dr, chromecache_418.2.dr	String found in binary or memory: https://adsense.com.
Source: chromecache_748.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_729.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr	String found in binary or memory: https://adssettings.google.com"
Source: chromecache_729.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr	String found in binary or memory: https://adssettings.google.com/whythisad?source=display
Source: chromecache_634.2.dr, chromecache_466.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_321.2.dr	String found in binary or memory: https://api.w.org/
Source: chromecache_547.2.dr	String found in binary or memory: https://aws.amazon.com/pt
Source: chromecache_460.2.dr, chromecache_373.2.dr	String found in binary or memory: https://blueimp.net
Source: chromecache_739.2.dr, chromecache_748.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://cdn.ampproject.org/amp4ads-host-v0.js
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://cdn.ampproject.org/rtv/$
Source: chromecache_721.2.dr	String found in binary or memory: https://chrome.google.com/webstore/detail/gerar-danfedacte/fnalonmlenogoaknbeikifdbaokkhmjj
Source: chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_721.2.dr	String found in binary or memory: https://compra.certificadodigital.com.br/loja/identificacao/e-CNPJ/0761/E-CNPJ-A1-12-MESES-SEM-MIDIA
Source: chromecache_460.2.dr, chromecache_373.2.dr	String found in binary or memory: https://creativecommons.org/licenses/by/2.0/uk/
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://cse.google.com/cse.js
Source: chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_485.2.dr, chromecache_720.2.dr, chromecache_701.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/bg/
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/getconfig/sodar
Source: chromecache_701.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=231
Source: chromecache_485.2.dr, chromecache_720.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=232
Source: chromecache_701.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=231
Source: chromecache_485.2.dr, chromecache_720.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232
Source: chromecache_720.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google
Source: chromecache_485.2.dr, chromecache_720.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/$
Source: chromecache_692.2.dr, chromecache_668.2.dr, chromecache_462.2.dr	String found in binary or memory: https://fonts.google.com/license/googlerestricted
Source: chromecache_576.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Google
Source: chromecache_576.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Google
Source: chromecache_321.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Noto
Source: chromecache_547.2.dr	String found in binary or memory: https://fonts.googleapis.com/icon?family=Material
Source: chromecache_321.2.dr	String found in binary or memory: https://fonts.gstatic.com
Source: chromecache_507.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/bebasneue/v14/JTUSjIg69CK48gW7PXoo9Wdhyzbi.woff2)
Source: chromecache_507.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/bebasneue/v14/JTUSjIg69CK48gW7PXoo9Wlhyw.woff2)
Source: chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesans/v61/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RF
Source: chromecache_692.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesans/v61/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RP
Source: chromecache_462.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDv39oS_a.woff2)
Source: chromecache_462.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDv79oQ.woff2)
Source: chromecache_462.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDvD9oS_a.woff2)
Source: chromecache_462.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDvH9oS_a.woff2)
Source: chromecache_462.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDvr9oS_a.woff2)
Source: chromecache_462.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etB77TKx9.woff2
Source: chromecache_462.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBD7TA.woff2)
Source: chromecache_462.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBP7TKx9.woff2
Source: chromecache_462.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBT7TKx9.woff2
Source: chromecache_462.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etB_7TKx9.woff2
Source: chromecache_507.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa0ZL7SUc.woff2)
Source: chromecache_507.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2)
Source: chromecache_507.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1pL7SUc.woff2)
Source: chromecache_507.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa25L7SUc.woff2)
Source: chromecache_507.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa2JL7SUc.woff2)
Source: chromecache_507.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa2ZL7SUc.woff2)
Source: chromecache_507.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa2pL7SUc.woff2)
Source: chromecache_733.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf-D33Esw.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf0D33Esw.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf1D33Esw.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf2D33Esw.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf3D33Esw.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf5D33Esw.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf6D30.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6faw1J5X9T9RW6j9bNfFIMZhhWnFTyNZIQD1-_P3Dct-FG.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6faw1J5X9T9RW6j9bNfFIMZhhWnFTyNZIQD1-_P3Hct-FG.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6faw1J5X9T9RW6j9bNfFIMZhhWnFTyNZIQD1-_P3Lct-FG.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6faw1J5X9T9RW6j9bNfFIMZhhWnFTyNZIQD1-_P3Pct-FG.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6faw1J5X9T9RW6j9bNfFIMZhhWnFTyNZIQD1-_P3_ctw.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6faw1J5X9T9RW6j9bNfFIMZhhWnFTyNZIQD1-_P3vct-FG.woff2)
Source: chromecache_656.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/notoserif/v23/ga6faw1J5X9T9RW6j9bNfFIMZhhWnFTyNZIQD1-_P3zct-FG.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBBc4.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2)
Source: chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2)
Source: chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBBc4.woff2)
Source: chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBxc4EsA.woff2)
Source: chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCBc4EsA.woff2)
Source: chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCRc4EsA.woff2)
Source: chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2)
Source: chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_560.2.dr, chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_560.2.dr, chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_507.2.dr, chromecache_560.2.dr, chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_560.2.dr, chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_560.2.dr, chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_560.2.dr, chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_560.2.dr, chromecache_332.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfABc4EsA.woff2)
Source: chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfBBc4.woff2)
Source: chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfBxc4EsA.woff2)
Source: chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCBc4EsA.woff2)
Source: chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCRc4EsA.woff2)
Source: chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfChc4EsA.woff2)
Source: chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmYUtfCxc4EsA.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr, chromecache_560.2.dr, chromecache_332.2.dr, chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr, chromecache_560.2.dr, chromecache_332.2.dr, chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr, chromecache_560.2.dr, chromecache_332.2.dr, chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr, chromecache_560.2.dr, chromecache_332.2.dr, chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr, chromecache_560.2.dr, chromecache_332.2.dr, chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr, chromecache_560.2.dr, chromecache_332.2.dr, chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_507.2.dr, chromecache_657.2.dr, chromecache_560.2.dr, chromecache_332.2.dr, chromecache_668.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://fundingchoicesmessages.google.com/i/$
Source: chromecache_460.2.dr, chromecache_373.2.dr	String found in binary or memory: https://github.com/blueimp/JavaScript-MD5
Source: chromecache_705.2.dr, chromecache_664.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_374.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/html/$
Source: chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/images/abg/iconx2-000000.png
Source: chromecache_337.2.dr, chromecache_729.2.dr, chromecache_516.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr, chromecache_750.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/images/abg/iconx2-000000.png"
Source: chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/images/adchoices/iconx2-000000.png
Source: chromecache_337.2.dr, chromecache_729.2.dr, chromecache_516.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr, chromecache_750.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/images/adchoices/iconx2-000000.png"
Source: chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/images/mtad/abg_blue.png
Source: chromecache_337.2.dr, chromecache_729.2.dr, chromecache_516.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr, chromecache_750.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/images/mtad/abg_blue.png"
Source: chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/images/mtad/back_blue.png
Source: chromecache_337.2.dr, chromecache_729.2.dr, chromecache_516.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr, chromecache_750.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/images/mtad/back_blue.png"
Source: chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/images/mtad/x_blue.png
Source: chromecache_337.2.dr, chromecache_729.2.dr, chromecache_516.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr, chromecache_750.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/images/mtad/x_blue.png"
Source: chromecache_320.2.dr	String found in binary or memory: https://hom.nfe.fazenda.gov.br/arearestrita/inicial/autenticacao.aspx';
Source: chromecache_748.2.dr, chromecache_346.2.dr, chromecache_418.2.dr, chromecache_610.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_485.2.dr, chromecache_720.2.dr, chromecache_701.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/bg/
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/getconfig/sodar
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&bin=
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&name=invalid_geo&context=10
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=extra&rnd=
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&lidartos
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&start&control&fle=1&s
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-fallback2
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-later2
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-pagehide2
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-start2
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=reach&proto=
Source: chromecache_406.2.dr, chromecache_500.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=fccs&
Source: chromecache_340.2.dr, chromecache_433.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=mys&d=
Source: chromecache_693.2.dr, chromecache_418.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=plmetrics
Source: chromecache_697.2.dr, chromecache_374.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=rcs_internal
Source: chromecache_701.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=231
Source: chromecache_485.2.dr, chromecache_720.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=232
Source: chromecache_739.2.dr, chromecache_748.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/html/$
Source: chromecache_576.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/$
Source: chromecache_721.2.dr, chromecache_372.2.dr, chromecache_697.2.dr, chromecache_576.2.dr, chromecache_374.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=
Source: chromecache_372.2.dr, chromecache_697.2.dr, chromecache_576.2.dr, chromecache_693.2.dr, chromecache_374.2.dr, chromecache_418.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/err_rep.js
Source: chromecache_372.2.dr, chromecache_576.2.dr, chromecache_693.2.dr, chromecache_418.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/logging_library.js
Source: chromecache_418.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/$
Source: chromecache_576.2.dr, chromecache_693.2.dr, chromecache_374.2.dr, chromecache_418.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping?e=1
Source: chromecache_414.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?
Source: chromecache_701.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=231
Source: chromecache_485.2.dr, chromecache_720.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=232
Source: chromecache_506.2.dr	String found in binary or memory: https://pixel.quantserve.com/ias/v1?r=
Source: chromecache_609.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_609.2.dr	String found in binary or memory: https://recaptcha.net
Source: chromecache_321.2.dr	String found in binary or memory: https://schema.org/BreadcrumbList
Source: chromecache_321.2.dr	String found in binary or memory: https://schema.org/Comment
Source: chromecache_321.2.dr	String found in binary or memory: https://schema.org/CreativeWork
Source: chromecache_321.2.dr	String found in binary or memory: https://schema.org/ListItem
Source: chromecache_321.2.dr	String found in binary or memory: https://schema.org/Person
Source: chromecache_321.2.dr	String found in binary or memory: https://schema.org/WPFooter
Source: chromecache_321.2.dr	String found in binary or memory: https://schema.org/WPSideBar
Source: chromecache_321.2.dr	String found in binary or memory: https://schema.org/WebPage
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/static/topics/topics_frame.html
Source: chromecache_721.2.dr	String found in binary or memory: https://serasa.certificadodigital.com.br
Source: chromecache_721.2.dr	String found in binary or memory: https://serasa.certificadodigital.com.br/
Source: chromecache_358.2.dr, chromecache_472.2.dr	String found in binary or memory: https://servedby.flashtalking.com/click/8/225291;7892485;4766313;210;
Source: chromecache_721.2.dr	String found in binary or memory: https://server2.fsist.com.br/baixarxml.ashx?m=WEB
Source: chromecache_721.2.dr	String found in binary or memory: https://server3.fsist.com.br/baixarxml.ashx?m=WEB
Source: chromecache_721.2.dr	String found in binary or memory: https://server4.fsist.com.br/baixarxml.ashx?m=WEB
Source: chromecache_721.2.dr	String found in binary or memory: https://server5.fsist.com.br/baixarxml.ashx?m=WEB
Source: chromecache_320.2.dr	String found in binary or memory: https://sistemas1.sefaz.ma.gov.br/portalsefaz/jsp/pagina/pagina.jsf?codigo=11
Source: chromecache_514.2.dr, chromecache_506.2.dr	String found in binary or memory: https://stackoverflow.com/questions/4845762/onload-handler-for-script-tag-in-internet-explorer
Source: chromecache_739.2.dr, chromecache_748.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_466.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_609.2.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_634.2.dr, chromecache_466.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_739.2.dr, chromecache_748.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_720.2.dr	String found in binary or memory: https://tpc.googlesyndication.com
Source: chromecache_485.2.dr, chromecache_720.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/$
Source: chromecache_721.2.dr	String found in binary or memory: https://www.certisign.com.br/
Source: chromecache_721.2.dr	String found in binary or memory: https://www.certisign.com.br/certificado-digital/ecnpj/
Source: chromecache_721.2.dr	String found in binary or memory: https://www.cte.fazenda.gov.br/portal/consulta.aspx?tipoConsulta=completa&tipoConteudo=mCK/KoCqru0=
Source: chromecache_721.2.dr	String found in binary or memory: https://www.cte.fazenda.gov.br/portal/consultaRecaptcha.aspx?tipoConsulta=completa&tipoConteudo=mCK/
Source: chromecache_721.2.dr	String found in binary or memory: https://www.cte.fazenda.gov.br/portal/consultaRecaptcha.aspx?tipoConsulta=resumo&tipoConteudo=cktLvU
Source: chromecache_320.2.dr	String found in binary or memory: https://www.economia.go.gov.br/receita-estadual/documentos-fiscais/nfe.html
Source: chromecache_721.2.dr	String found in binary or memory: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/
Source: chromecache_721.2.dr	String found in binary or memory: https://www.fsist.com.br/ajuda/artigos/sua-conexao-nao-e-particular/
Source: chromecache_547.2.dr	String found in binary or memory: https://www.fsist.com.br/app/FSistMonitorNet.exe?xvc7N
Source: chromecache_721.2.dr	String found in binary or memory: https://www.fsist.com.br/baixaremlote
Source: chromecache_721.2.dr	String found in binary or memory: https://www.fsist.com.br/cert/
Source: chromecache_321.2.dr	String found in binary or memory: https://www.fsist.com.br/contato
Source: chromecache_721.2.dr	String found in binary or memory: https://www.fsist.com.br/converter-xml-nfe-para-danfe
Source: chromecache_547.2.dr	String found in binary or memory: https://www.fsist.com.br/videos/monitor-de-notas-ativar-ciencia-da-operacao-automatica.mp4
Source: chromecache_547.2.dr	String found in binary or memory: https://www.fsist.com.br/videos/monitor-de-notas-cadastrar-filiais.mp4
Source: chromecache_547.2.dr	String found in binary or memory: https://www.fsist.com.br/videos/monitor-de-notas-download-xml-lote.mp4
Source: chromecache_547.2.dr	String found in binary or memory: https://www.fsist.com.br/videos/monitor-de-notas-etiquetas.mp4
Source: chromecache_547.2.dr	String found in binary or memory: https://www.fsist.com.br/videos/monitor-de-notas-manifesto-confirmar-opera
Source: chromecache_547.2.dr	String found in binary or memory: https://www.fsist.com.br/videos/monitor-de-notas-manifesto-opera
Source: chromecache_547.2.dr	String found in binary or memory: https://www.fsist.com.br/videos/monitor-de-notas-primeiro-uso.mp4
Source: chromecache_721.2.dr	String found in binary or memory: https://www.fsist.com.br/xmls-compartilhados
Source: chromecache_721.2.dr, chromecache_382.2.dr, chromecache_547.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_634.2.dr, chromecache_466.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_634.2.dr, chromecache_466.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_634.2.dr, chromecache_466.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_748.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_320.2.dr	String found in binary or memory: https://www.google.com.br/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&cad=rja&a
Source: chromecache_634.2.dr, chromecache_466.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_693.2.dr, chromecache_418.2.dr	String found in binary or memory: https://www.google.com/adsense
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://www.google.com/adsense/search/async-ads.js
Source: chromecache_337.2.dr, chromecache_315.2.dr, chromecache_469.2.dr, chromecache_729.2.dr, chromecache_516.2.dr, chromecache_718.2.dr, chromecache_604.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr, chromecache_750.2.dr	String found in binary or memory: https://www.google.com/adsense/support/bin/request.py%3Fcontact%3Dabg_afc%26url%3Dhttps://www.fsist.
Source: chromecache_260.2.dr	String found in binary or memory: https://www.google.com/pagead/drt/ui
Source: chromecache_721.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api.js?render=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf
Source: chromecache_321.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api.js?render=explicit&ver=1.63
Source: chromecache_321.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api/fallback?k=6LdtP8QbAAAAANDw3KFiz-PzdUvfmWCm4EpQe0OW
Source: chromecache_380.2.dr, chromecache_292.2.dr, chromecache_486.2.dr, chromecache_555.2.dr, chromecache_273.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_485.2.dr, chromecache_372.2.dr, chromecache_576.2.dr, chromecache_720.2.dr, chromecache_701.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/aframe
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://www.google.com/s2/favicons?sz=64&domain_url=
Source: chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	String found in binary or memory: https://www.google.com/url?ct
Source: chromecache_337.2.dr, chromecache_729.2.dr, chromecache_516.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr, chromecache_750.2.dr	String found in binary or memory: https://www.google.com/url?ct=abg
Source: chromecache_739.2.dr, chromecache_748.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_337.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/aclk?nis=4&sa=L&ai=C-xiTmasGZ6GqHtecjuwP1czVMf3Sto16
Source: chromecache_337.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/aclk?nis=4&sa=L&ai=C8u05masGZ6GqHtecjuwP1czVMf3Sto16
Source: chromecache_337.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/aclk?nis=4&sa=L&ai=CK2LAmasGZ6GqHtecjuwP1czVMf3Sto16
Source: chromecache_600.2.dr, chromecache_463.2.dr, chromecache_723.2.dr, chromecache_236.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/managed/js/activeview/
Source: chromecache_748.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_634.2.dr, chromecache_466.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__.
Source: chromecache_576.2.dr, chromecache_604.2.dr	String found in binary or memory: https://www.gstatic.com
Source: chromecache_337.2.dr, chromecache_729.2.dr, chromecache_516.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr, chromecache_750.2.dr	String found in binary or memory: https://www.gstatic.com"
Source: chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/2x/googlelogo_dark_color_84x28dp.png
Source: chromecache_337.2.dr, chromecache_729.2.dr, chromecache_516.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr, chromecache_750.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/2x/googlelogo_dark_color_84x28dp.png"
Source: chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	String found in binary or memory: https://www.gstatic.com/images/icons/material/system/2x/feedback_grey600_24dp.png
Source: chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	String found in binary or memory: https://www.gstatic.com/images/icons/material/system/2x/settings_grey600_24dp.png
Source: chromecache_372.2.dr, chromecache_576.2.dr	String found in binary or memory: https://www.gstatic.com/prose/protected/$
Source: chromecache_355.2.dr, chromecache_401.2.dr, chromecache_292.2.dr, chromecache_486.2.dr, chromecache_555.2.dr, chromecache_273.2.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__en.js
Source: chromecache_739.2.dr, chromecache_748.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_320.2.dr	String found in binary or memory: https://www.nfe.fazenda.gov.br/AgendamentoSVC/?tipoConteudo=dKnzIG
Source: chromecache_721.2.dr	String found in binary or memory: https://www.nfe.fazenda.gov.br/portal/
Source: chromecache_721.2.dr	String found in binary or memory: https://www.nfe.fazenda.gov.br/portal/consulta.aspx?tipoConsulta=completa&tipoConteudo=XbSeqxE8pl8=
Source: chromecache_721.2.dr	String found in binary or memory: https://www.nfe.fazenda.gov.br/portal/consultaRecaptcha.aspx?tipoConsulta=completa&tipoConteudo=XbSe
Source: chromecache_721.2.dr	String found in binary or memory: https://www.nfe.fazenda.gov.br/portal/consultaRecaptcha.aspx?tipoConsulta=resumo&tipoConteudo=7PhJ
Source: chromecache_721.2.dr	String found in binary or memory: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=
Source: chromecache_320.2.dr	String found in binary or memory: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&page=1&pagesize=5
Source: chromecache_547.2.dr	String found in binary or memory: https://www.nfe.fazenda.gov.br/portal/listaConteudo.aspx?tipoConteudo=tW
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefaz.ap.gov.br/index.php/nf-e
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefaz.pb.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefaz.pb.gov.br/servirtual/documentos-fiscais/nf-e/consulta-completa
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefaz.pe.gov.br/Servicos/Nota-Fiscal-Eletronica/Paginas/Apresentacao.aspx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefaz.pe.gov.br/SitePages/Home.aspx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefaz.rr.gov.br/empresa/consultar-internamento-nf
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefazvirtual.fazenda.gov.br/NFeAutorizacao4/NFeAutorizacao4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefazvirtual.fazenda.gov.br/NFeConsultaProtocolo4/NFeConsultaProtocolo4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefazvirtual.fazenda.gov.br/NFeInutilizacao4/NFeInutilizacao4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefazvirtual.fazenda.gov.br/NFeRecepcaoEvento4/NFeRecepcaoEvento4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefazvirtual.fazenda.gov.br/NFeRetAutorizacao4/NFeRetAutorizacao4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefazvirtual.fazenda.gov.br/NFeStatusServico4/NFeStatusServico4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefin.ro.gov.br/
Source: chromecache_320.2.dr	String found in binary or memory: https://www.sefin.ro.gov.br/conteudo.jsp?idCategoria=524
Source: chromecache_320.2.dr	String found in binary or memory: https://www.serpro.gov.br/menu/suporte/central-de-atendimento-serpro-nfe-cte
Source: chromecache_320.2.dr	String found in binary or memory: https://www.svc.fazenda.gov.br/NFeAutorizacao4/NFeAutorizacao4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.svc.fazenda.gov.br/NFeConsultaProtocolo4/NFeConsultaProtocolo4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.svc.fazenda.gov.br/NFeInutilizacao4/NFeInutilizacao4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.svc.fazenda.gov.br/NFeRecepcaoEvento4/NFeRecepcaoEvento4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.svc.fazenda.gov.br/NFeRetAutorizacao4/NFeRetAutorizacao4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www.svc.fazenda.gov.br/NFeStatusServico4/NFeStatusServico4.asmx
Source: chromecache_320.2.dr	String found in binary or memory: https://www1.sped.fazenda.gov.br/login/sped/spednfeacesso
Source: chromecache_320.2.dr	String found in binary or memory: https://www1.sped.fazenda.gov.br/spednfeacesso/arnfe/inicial/listaSubMenu.aspx?Id=UORZ3ynALMA=

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50738
Source: unknown	Network traffic detected: HTTP traffic on port 50726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50730
Source: unknown	Network traffic detected: HTTP traffic on port 50693 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50211 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50452 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50746
Source: unknown	Network traffic detected: HTTP traffic on port 50578 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50745
Source: unknown	Network traffic detected: HTTP traffic on port 50853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50748
Source: unknown	Network traffic detected: HTTP traffic on port 50440 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50749
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50742
Source: unknown	Network traffic detected: HTTP traffic on port 50325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50600 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50759
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50752
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50768
Source: unknown	Network traffic detected: HTTP traffic on port 50280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50760
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50762
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50761
Source: unknown	Network traffic detected: HTTP traffic on port 50612 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50566 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50510 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50382 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 50783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50591 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50700
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50701
Source: unknown	Network traffic detected: HTTP traffic on port 50656 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50705
Source: unknown	Network traffic detected: HTTP traffic on port 50522 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50407 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50708
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50710
Source: unknown	Network traffic detected: HTTP traffic on port 50313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50717
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50716
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50719
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 50496 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 50865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50727
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50644 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 50420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50336
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 50386 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50338
Source: unknown	Network traffic detected: HTTP traffic on port 50546 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50330
Source: unknown	Network traffic detected: HTTP traffic on port 50632 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50334
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50349
Source: unknown	Network traffic detected: HTTP traffic on port 50505 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50342
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50345
Source: unknown	Network traffic detected: HTTP traffic on port 50673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50350
Source: unknown	Network traffic detected: HTTP traffic on port 50558 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50354
Source: unknown	Network traffic detected: HTTP traffic on port 50374 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50357
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50360
Source: unknown	Network traffic detected: HTTP traffic on port 50620 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 50419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 50255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 50685 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50361
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50371
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50370
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50778
Source: unknown	Network traffic detected: HTTP traffic on port 50571 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50774
Source: unknown	Network traffic detected: HTTP traffic on port 50350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50697 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50607 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50304
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50306
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50305
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50789
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50307
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50309
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50780
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50300
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50301
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50799
Source: unknown	Network traffic detected: HTTP traffic on port 50791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50316
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50319
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50318
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50792
Source: unknown	Network traffic detected: HTTP traffic on port 50394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50311
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50310
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50313
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50797
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50796
Source: unknown	Network traffic detected: HTTP traffic on port 50349 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50325
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50327
Source: unknown	Network traffic detected: HTTP traffic on port 50828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50329
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50320
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50321
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50324
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50323
Source: unknown	Network traffic detected: HTTP traffic on port 50746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50432 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50514 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50295
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50299
Source: unknown	Network traffic detected: HTTP traffic on port 50389 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50400 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50377 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50652 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50537 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50502 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50550 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50390 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50481 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50136 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50665 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50640 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50193 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50259
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50424 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50252
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50254
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50256
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50255
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50258
Source: unknown	Network traffic detected: HTTP traffic on port 50456 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50161 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50260
Source: unknown	Network traffic detected: HTTP traffic on port 50848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50215 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50574 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50262
Source: unknown	Network traffic detected: HTTP traffic on port 50639 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50269
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50268
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50270
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50272
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50271
Source: unknown	Network traffic detected: HTTP traffic on port 50677 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50273
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50276
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50278
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50277
Source: unknown	Network traffic detected: HTTP traffic on port 50836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50280
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50283
Source: unknown	Network traffic detected: HTTP traffic on port 50412 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50104 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50341 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50203 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50285
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50284
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50287
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50289
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50288
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50290
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50292
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50294
Source: unknown	Network traffic detected: HTTP traffic on port 50799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50293
Source: unknown	Network traffic detected: HTTP traffic on port 50562 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50627 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50168 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50260 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50357 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50598 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50517 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50603 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50448 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50461 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50529 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50615 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50099 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50586 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50156 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50473 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50272 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50100 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50345 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50660 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50207 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50181 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50436 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50659 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50112 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50404 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50542 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50087 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50509 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50321 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50493 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50063 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50124 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50554 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50647 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50669 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50859
Source: unknown	Network traffic detected: HTTP traffic on port 50749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50850
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50851
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50866
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50863
Source: unknown	Network traffic detected: HTTP traffic on port 50222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50862
Source: unknown	Network traffic detected: HTTP traffic on port 50864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50543 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50428 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 50852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50416 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50657 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50015 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50870
Source: unknown	Network traffic detected: HTTP traffic on port 50246 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50130 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50291 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50403
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50402
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50405
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50404
Source: unknown	Network traffic detected: HTTP traffic on port 50555 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50407
Source: unknown	Network traffic detected: HTTP traffic on port 50142 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50406
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50409
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50408
Source: unknown	Network traffic detected: HTTP traffic on port 50725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50401
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50400
Source: unknown	Network traffic detected: HTTP traffic on port 50348 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50810
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50811
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50815
Source: unknown	Network traffic detected: HTTP traffic on port 50819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50579 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50485 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50324 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50645 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50818
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50819
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50820
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50827

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49750 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.4:50355 version: TLS 1.2

Source: classification engine

Classification label: mal52.phis.win@39/823@226/62

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2240 --field-trial-handle=2188,i,15235355289027217109,10389378411862367938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.fsist.com.br"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6732 --field-trial-handle=2188,i,15235355289027217109,10389378411862367938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6788 --field-trial-handle=2188,i,15235355289027217109,10389378411862367938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2240 --field-trial-handle=2188,i,15235355289027217109,10389378411862367938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6732 --field-trial-handle=2188,i,15235355289027217109,10389378411862367938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6788 --field-trial-handle=2188,i,15235355289027217109,10389378411862367938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Install
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Install
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Install
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Install
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Install
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: agree

Source: Window Recorder

Window detected: More than 3 window changes detected

Persistence and Installation Behavior

AI detected landing page (webpage, office document or email)

Source: https://veryfast.io/?ap=adw&as=g_d_fast_all_in&dm[ads]=new_adaptive1&dm[type]=dis&gad_source=5&gclid=EAIaIQobChMIuPWZ49iBiQMVJck7Ah07zTOxEAEYASAAEgI6O_D_BwE

LLM: Page contains button: 'DOWNLOAD NOW' Source: '8.80.pages.csv'

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	1 Scripting	Valid Accounts	Windows Management Instrumentation	1 Browser Extensions	1 Process Injection	1 Process Injection	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	1 Scripting	Boot or Logon Initialization Scripts	Rootkit	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label
https://ampcid.google.com/v1/publisher:getClientId	0%	URL Reputation	safe
https://support.google.com/recaptcha/#6175971	0%	URL Reputation	safe
https://support.google.com/recaptcha	0%	URL Reputation	safe
http://mathiasbynens.be/	0%	URL Reputation	safe
http://gmpg.org/xfn/11	0%	URL Reputation	safe
https://cloud.google.com/contact	0%	URL Reputation	safe
https://www.gstatic.c..?/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__.	0%	URL Reputation	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
um.simpli.fi	35.204.158.49	true	false	unknown
d3f1y6rso5ozvw.cloudfront.net	18.239.36.45	true	false	unknown
tr.blismedia.com	34.96.105.8	true	false	unknown
global.px.quantserve.com	91.228.74.244	true	false	unknown
server5.fsist.com.br	200.98.81.193	true	false	unknown
tag.device9.com	54.72.91.203	true	false	unknown
receita.fazenda.gov.br	161.148.231.100	true	false	unknown
cdn.w55c.net	3.69.4.67	true	false	unknown
veryfast.io	64.227.17.224	true	false	unknown
an.yandex.ru	213.180.204.90	true	false	unknown
cm.g.doubleclick.net	142.250.74.194	true	false	unknown
ds-pr-bh.ybp.gysm.yahoodns.net	52.49.160.216	true	false	unknown
www.google.com	172.217.18.4	true	false	unknown
d3fxn7cse5tdjr.cloudfront.net	13.227.219.67	true	false	unknown
server3.fsist.com.br	200.98.81.191	true	false	unknown
match.adsrvr.org	35.71.131.137	true	false	unknown
match.prod.bidr.io	34.247.205.103	true	false	unknown
chidc2.outbrain.org	50.31.142.63	true	false	unknown
firewall-external-2134955858.eu-west-1.elb.amazonaws.com	52.19.215.7	true	false	unknown
d162h6x3rxav67.cloudfront.net	18.66.112.44	true	false	unknown
gtrace.mediago.io	35.214.168.80	true	false	unknown
bg.microsoft.map.fastly.net	199.232.210.172	true	false	unknown
www.fsist.com.br	54.232.198.103	true	false	unknown
googleads.g.doubleclick.net	142.250.186.162	true	false	unknown
ads.travelaudience.com	35.190.0.66	true	false	unknown
a561c4ff9be424fabb2e7987f5c75dc3-57e4619c4bae0435.elb.sa-east-1.amazonaws.com	15.229.72.199	true	false	unknown
presentation-ams1.turn.com	46.228.164.11	true	false	unknown
a.tribalfusion.com	172.64.150.63	true	false	unknown
d1dvhck2p605dz.cloudfront.net	18.244.18.94	true	false	unknown
www.nfe.fazenda.gov.br	200.198.239.19	true	false	unknown
mts.l.google.com	142.250.185.174	true	false	unknown
s.w.org	192.0.77.48	true	false	unknown
widget.us5.vip.prod.criteo.com	74.119.117.16	true	false	unknown
s-part-0032.t-0009.t-msedge.net	13.107.246.60	true	false	unknown
1645886859.rsc.cdn77.org	37.19.194.80	true	false	unknown
s.tribalfusion.com	172.64.150.63	true	false	unknown
server4.fsist.com.br	200.98.81.192	true	false	unknown
user-data-eu.bidswitch.net	35.214.136.108	true	false	unknown
dsp.adkernel.com	174.137.133.49	true	false	unknown
fp2e7a.wpc.phicdn.net	192.229.221.95	true	false	unknown
edge.eu-central-1.rtb.quantserve.net	91.228.72.81	true	false	unknown
widget.nl3.vip.prod.criteo.com	178.250.1.9	true	false	unknown
creative-adchoices.advertise.qcinternal.io	13.225.78.105	true	false	unknown
rtb.adentifi.com	44.206.32.49	true	false	unknown
sync.srv.stackadapt.com	54.196.10.149	true	false	unknown
server2.fsist.com.br	200.98.80.186	true	false	unknown
vlibras.gov.br	18.231.51.202	true	false	unknown
sync.ipredictive.com	54.157.70.218	true	false	unknown
gw-c-eu-isp.temu.com	20.157.119.2	true	false	unknown
s-part-0017.t-0009.t-msedge.net	13.107.246.45	true	false	unknown
outspot2-ams.adx.opera.com	82.145.213.8	true	false	unknown
dt-external-217593033.us-east-1.elb.amazonaws.com	44.195.127.47	true	false	unknown
onetag-sys.com	51.89.9.251	true	false	unknown
match.adsby.bidtheatre.com	134.122.57.34	true	false	unknown
d30hfjcp71s79q.cloudfront.net	18.245.60.26	true	false	unknown
sslteste2.fsist.com.br	35.198.59.113	true	false	unknown
pm.w55c.net	unknown	unknown	false	unknown
a.rfihub.com	unknown	unknown	false	unknown
exch.quantcount.com	unknown	unknown	false	unknown
z.moatads.com	unknown	unknown	false	unknown
pixel.adsafeprotected.com	unknown	unknown	false	unknown
_8443._https.eu-google-rtb.quantserve.com	unknown	unknown	false	unknown
www.receita.fazenda.gov.br	unknown	unknown	false	unknown
cdn.flashtalking.com	unknown	unknown	false	unknown
pixel.quantcount.com	unknown	unknown	false	unknown
agen-assets.ftstatic.com	unknown	unknown	false	unknown
dis.criteo.com	unknown	unknown	false	unknown
widget.us.criteo.com	unknown	unknown	false	unknown
c1.adform.net	unknown	unknown	false	unknown
barra.brasil.gov.br	unknown	unknown	false	unknown
content.quantcount.com	unknown	unknown	false	unknown
px.ads.linkedin.com	unknown	unknown	false	unknown
eu-google-rtb.quantserve.com	unknown	unknown	false	unknown
dclk-match.dotomi.com	unknown	unknown	false	unknown
p.rfihub.com	unknown	unknown	false	unknown
sync.teads.tv	unknown	unknown	false	unknown
t.adx.opera.com	unknown	unknown	false	unknown
cdn.jsdelivr.net	unknown	unknown	false	unknown
sync-dmp.aura-dsp.com	unknown	unknown	false	unknown
a.c.appier.net	unknown	unknown	false	unknown
www.temu.com	unknown	unknown	false	unknown
ajs-assets.ftstatic.com	unknown	unknown	false	unknown
dt.adsafeprotected.com	unknown	unknown	false	unknown
pr-bh.ybp.yahoo.com	unknown	unknown	false	unknown
servedby.flashtalking.com	unknown	unknown	false	unknown
x.bidswitch.net	unknown	unknown	false	unknown
r.turn.com	unknown	unknown	false	unknown
js.ad-score.com	unknown	unknown	false	unknown
ad.turn.com	unknown	unknown	false	unknown
mts0.google.com	unknown	unknown	false	unknown
pixel.quantserve.com	unknown	unknown	false	unknown
analytics.pangle-ads.com	unknown	unknown	false	unknown
repcdn.pcapp.store	unknown	unknown	false	unknown
cms.quantserve.com	unknown	unknown	false	unknown
d9.flashtalking.com	unknown	unknown	false	unknown
static.adsafeprotected.com	unknown	unknown	false	unknown
b1sync.zemanta.com	unknown	unknown	false	unknown

Contacted URLs

Name	Malicious	Reputation
https://www.nfe.fazenda.gov.br/portal/imagens/botao_buscar_Off_completo.png	false	unknown
https://www.fsist.com.br/ajuda/wp-content/uploads/2020/02/2020-02-01_22-16-09.png	true	unknown
https://www.fsist.com.br/ajuda/wp-includes/css/dist/components/style.min.css?ver=5.3.2	true	unknown
https://cm.g.doubleclick.net/pixel?google_nid=TheTradeDesk&google_hm=OTVhNmRhYzUtNTNjNS00MGIxLTk5MGUtNGM0M2M0ZDkxMjUy&google_push&gdpr=0&gdpr_consent=&ttd_tdid=95a6dac5-53c5-40b1-990e-4c43c4d91252	false	unknown
https://www.google.com/ads/measurement/l?ebcid=ALh7CaQ4n7CQ9eAsAK8Mo39z-NYPF7AIG9-GyOdGsFMKY263RvZucBVY9gP8n4S-L7zhNSDlMorSWytx5MLyKYNaxlr291kgAg	false	unknown
https://match.adsrvr.org/track/cmf/google?google_gid=CAESEFmS_Cu6sNXWs5ggd8OlUs0&google_cver=1&google_push=AXcoOmRc2o7U8ee0prbV8NHBKK9FMqafVpr6FLNxFiTYF0_XMeCvf0IHy-M9_I-eXglE-dk9z9VsFAZ-MEKe_ansjd2e8lQfont0Cg	false	unknown
https://server2.fsist.com.br/baixarxml.ashx?m=WEB&t=teste&r=798517021	false	unknown
https://vlibras.gov.br/app2//assets/access_icon.svg	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=turn1&google_cm&google_sc&google_hm=MjQwNDI1OTg1MDUwNzQzODMyOQ==&gdpr=&gdpr_consent=&process_consent=T	false	unknown
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=pwyvpq1939pk	false	unknown
https://dis.criteo.com/dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmQL0RpsTdmEJBMmGZhQnKh7BpZCeAjDuOSlp5FQaaYSSpr8o4ZDlqzv-yf5r6admodzZMOo1PGQEc-Yh4RFqTIg15P1yowAXw&google_gid=CAESEOXzygiQuX3Mi-LSdEX10jE&google_cver=1	false	unknown
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&adk=1812271804&adf=3025194257&abgtt=3&lmt=1728490392&plaf=1%3A2%2C7%3A2&plat=1%3A128%2C2%3A128%2C3%3A128%2C4%3A128%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.fsist.com.br%2F&pra=7&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&aiopts=1&aief=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490391884&bpp=2&bdt=301&idt=147&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&prev_fmts=632x280%2C340x280&nras=1&correlator=3154597662639&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C42532523%2C44795922%2C95332585%2C95343328%2C95343455%2C95344187%2C95344522%2C95335245&oid=2&pvsid=716573222194574&tmod=1031379896&uas=0&nvt=1&fsapi=1&ref=https%3A%2F%2Fwww.fsist.com.br%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=151	false	unknown
https://googleads.g.doubleclick.net/pagead/adview?ai=C5oPY0qsGZ8bfA--5xdwP94GR-Aag-7_reZaj2POLEpud9f0IEAEg7JXMEmDJBqAB0v6XmQPIAQGoAwHIA8sEqgTvAU_QcFZQGQAJ-ZAeOt9L3XidHMoFTU6eO_IE6Ufj2VRJ-fqmT5JdnUjJrLtC-eyUCCji3kSAjl956eRIhcaKfr9lfo18DdBWqJQY64flKWQX6T3hETuCNNX_N8G1IvpD_YW5QmDeWHtIt9g-7Dhh1neCDjqEl7rMhKZAEJtP2Cpb9hrfXnsB-VEK1OwjqWMo9eaoS-h_5d3dJ3A5UiEZWR2lAMEOA73_vxuIBi2pjjhjIadB2cJwV0IhIGGbUhEvdTHNWZEhJ5jH9kvyAhu27Pvncv3_yW6ZvXtjR7MzfodObdbfCryzkR72j67Hv4o5wATskYD0yASIBc3s0cNNkgUECAQYAZIFBAgFGASAB5aB6GaoB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAf3wrEC2AcB8gcEEOXkE9IIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WIn_ldrYgYkDmgleaHR0cHM6Ly92ZXJ5ZmFzdC5pby8_YXA9YWR3JmFzPWdfZF9mYXN0X2FsbF9pbiZkbVthZHNdPW5ld19hZGFwdGl2ZTEmZG1bdHlwZV09ZGlzJmdhZF9zb3VyY2U9NYAKAcgLAaIMCCoGCgTowrEC2gwRCgsQ0OqOwfP2iYL8ARICAQPYEwzQFQGYFgGAFwGyFx4KGggAEhRwdWItMTExMjQ4MDMyNDgyMTU0NhgAGAG6FwI4AbIYBRgBIgEA0BgB6BgB&sigh=VPIS71Wq84k&uach_m=%5BUACH%5D&ase=2&cid=CAQSOwDpaXnfn0PSnojKL4z3qBYfKfbju3hT2SJXCxRH0K7FU9uD8LUJhCXrxZh_brVp5iRlodP3c3SeVUSeGAE&template_id=5001&nis=6	false	unknown
https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM=&AspxAutoDetectCookieSupport=1	false	unknown
https://cm.g.doubleclick.net/pixel/attr?d=AHNF13I5j6uxoKzYiyfUU3bzZvZ6sWla9zyKMIGrnQaWj6l-AQDAgoeJCxkPGecRX13OIOSI4ofGkQ	false	unknown
https://www.nfe.fazenda.gov.br/portal/imagens/Box_Busca.png	false	unknown
https://vlibras.gov.br/app2/vlibras-plugin.js	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=ta&google_hm=gcsDSnSZQLoYW8ZE6o_qKg&google_push=AXcoOmSxur8xZ40MKPFu1c3xJUhpT-hbrMNJflXIjsjYVoC3O3Sa0BJQ_K1zkhd-MwLk6wk0AGB-fvwYqCVMx1nJUGmzkkJSKWVrsw	false	unknown
https://www.nfe.fazenda.gov.br/portal/css/geral.css	false	unknown
https://www.nfe.fazenda.gov.br/portal/css/paginasInternas.css	false	unknown
https://googleads.g.doubleclick.net/pagead/html/r20241007/r20190131/zrt_lookup_fy2021.html	false	unknown
https://www.nfe.fazenda.gov.br/portal/imagens/background_Cinza_NFe.png	false	unknown
https://www.fsist.com.br/monitor-de-notas	true	unknown
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdtP8QbAAAAANDw3KFiz-PzdUvfmWCm4EpQe0OW&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&theme=light&size=normal&cb=q3bointxu6px	false	unknown
https://www.nfe.fazenda.gov.br/portal/imagens/banner_mdfe_Off.png	false	unknown
https://dis.criteo.com/dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmRkulH8U61mGTZ5KchGn-zd8Cw0qGyjdotqjeBV7zLM3AbUaF7DZtTiL-2JlkxlBuMQVQhxvpAE_msC6XZ5QcZqF6O2g9X7SkE&google_gid=CAESEOXzygiQuX3Mi-LSdEX10jE&google_cver=1	false	unknown
https://server4.fsist.com.br/baixarxml.ashx?m=WEB&t=teste&r=615292075	false	unknown
https://dis.criteo.com/dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmQF7x3nYMlierSOl2H704rvdmnQ9IZhEWkmtvfz448K5VC8u6AHLYswxNBShbhriXgjLr7A3LnFQBJ8kbyHc-e0vYVPMNgJcUnH&google_gid=CAESEOXzygiQuX3Mi-LSdEX10jE&google_cver=1	false	unknown
https://www.fsist.com.br/ajuda/wp-content/uploads/2020/02/2020-02-01_22-18-13.png	true	unknown
https://server5.fsist.com.br/baixarxml.ashx?m=WEB&t=teste&r=795039951	false	unknown
https://www.fsist.com.br/ajuda/wp-content/themes/knowall/js/scrollspy.js?ver=5.3.2	true	unknown
https://veryfast.io/api/api.php	false	unknown
https://www.fsist.com.br/ajuda/wp-content/plugins/google-captcha/css/gglcptch.css?ver=1.63	true	unknown
https://cm.g.doubleclick.net/pixel/attr?d=AHNF13LF3wkPKkN21fG_nH1YCdmpifAdC4l2H4AEs0sMJpyH_vFbaF8KilIJOPcmb30V8h3haKFC	false	unknown
https://onetag-sys.com/match/?int_id=19&redir=1&google_gid=CAESEAxz4WuEi_-ipoEYUkBCu7I&google_cver=1&google_push=AXcoOmQ7t61p1mXJCYK2z4ZzfJBTiZ7sLstsWPqGfcgrQmkc8OMxFqtFeC1PMY_5xWJkFZlEibpieeGotRJVE8ZJ4_v4YqpJsy4HhD0	false	unknown
https://cm.g.doubleclick.net/pixel?google_hm=UmZvVkNicUpBbHFuUUhZUG5hc0dadw%3D%3D&google_nid=appier&google_push=AXcoOmS-iTA3OY1VcFcNUxxgEXIh8yCaqFTHasbbZgY3CiJzryAlPZo_KuHFTrrwk20JN94qMopos--_O1pYU12WL8Kdrbvzz1Y7KKE	false	unknown
https://www.fsist.com.br/ajuda/wp-content/uploads/2020/02/2020-02-01_22-18-45-2.png	true	unknown
https://www.fsist.com.br/ajuda/wp-content/uploads/2020/02/2020-02-01_22-21-03-1.png	true	unknown
https://www.fsist.com.br/#google_vignette	true	unknown
https://www.fsist.com.br/ajuda/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	true	unknown
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490448&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490448592&bpp=2&bdt=352&idt=19&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&correlator=5565359926097&frm=20&pv=2&u_tz=-240&u_his=2&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=350&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087658%2C95331688%2C95342015%2C95343328%2C95343455%2C95344190%2C95340252%2C95340254&oid=2&pvsid=729288861190573&tmod=1031379896&uas=0&nvt=1&ref=https%3A%2F%2Fwww.fsist.com.br%2Fmonitor-de-notas&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CaEe%7C&abl=CA&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=43	false	unknown
https://www.nfe.fazenda.gov.br/portal/scripts/mascaras.js	false	unknown
https://www.nfe.fazenda.gov.br/portal/imagens/marca_Receita.png	false	unknown
https://www.fsist.com.br/ajuda/wp-content/plugins/ht-knowledge-base/js/hkb-livesearch-js.min.js?ver=5.3.2	true	unknown
https://dis.criteo.com/dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmRkYZ0_S9BwwMjq-GN7Q3qRjwJSwlmNN7t-RUWV14ARQ-lIYsk24DGVeEcl8mcWLQ1ACkdAy9EZTOgOxD4PhB4RSEVq9IGlydvs&google_gid=CAESEOXzygiQuX3Mi-LSdEX10jE&google_cver=1	false	unknown
https://www.fsist.com.br/PriPlugin/v4/imgs/monitor/produtor.svg	true	unknown
https://www.nfe.fazenda.gov.br/portal/scripts/menu.js	false	unknown
https://veryfast.io/lp/lpd/lp26_rarss_sd_r1/img/icon_download_cloud_white.svg	false	unknown
https://server5.fsist.com.br/baixarxml.ashx?m=WEB&t=teste&r=33093284	false	unknown
https://b1sync.zemanta.com/usersync/googleadx/?google_gid=CAESEFgJmTWb8qubv5vRYOIX34I&google_cver=1&google_push=AXcoOmSFROr1g3tVkMLcaXmlB1A0cgYFJWvbHCgZv8X107LPPD9yp1Wabaau5wgyRcSgjhvr0-Dpp4DtJviLQlGYR38o0TLMKefOW6E	false	unknown
https://veryfast.io/src/main.js	false	unknown
https://www.nfe.fazenda.gov.br/portal/css/estilo_visualizacao.css	false	unknown
https://sync.srv.stackadapt.com/sync?nid=154&google_gid=CAESEJoHxJLAUovRHzmLFlWKjrc&google_cver=1&google_push=AXcoOmSd4m4RfFDIsQnfiHlr1yxfw0KBfWNVuIu1R66nyB2cDlbBQo3U0liWodC0BtEiiRtTe3dw2DRitPmq19MRNhNlRv55UgzDzwE	false	unknown
https://www.nfe.fazenda.gov.br/portal/imagens/acessibilidade_reduzir_Off.png	false	unknown
https://match.prod.bidr.io/cookie-sync/adx?google_gid=CAESEGxNujHEdDFY71jUtt-cobA&google_cver=1&google_push=AXcoOmSwgBo_sPsWo_r6Lisucuc2-v5yj6ekLztyW7DLiEfpEwqiU_YRPB5omKhTSC0uru5Lpd7lX3xzKSZa1Bd_E1yjjJtyK_7sYFk	false	unknown
https://dt.adsafeprotected.com/dt?advEntityId=2184108&asId=d5ac92a5-b32a-d3c5-b168-8572e0491990&tv=%7Bc:qDDOPK,pingTime:-2,time:4172,type:a,im:%7Bsf:0,pom:1,prf:%7BbeA:2949,beZ:2952,mfA:7033,cmA:7034,inA:7034,inZ:7039,prA:7040,prZ:7060,si:7067,poA:7072,poZ:7092,cmZ:7092,mfZ:7092,loA:7114,loZ:7117,ltA:7121,ltZ:7121,mdA:2953,mdZ:7009%7D%7D,sca:%7Blts:2024-10-09%2012.13.40,dfp:%7Bdf:4,sz:300.250,dom:div%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:-1,vs:n,r:,w:0,h:0,t:4116%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:1,cnod:1,gm:0,slTimes:%7Bi:0,o:0,n:4173,pp:0,pm:0%7D,slEvents:%5B%7Bsl:n,t:4115,wc:0.0.1280.984,bkn:%7Bpiv:%5B86~1%5D,as:%5B86~na.na%5D%7D%7D%5D,slEventCount:1,em:true,fr:false,e:,tt:rjss,dtt:0,fm:uqIVDzK+11%7C121%7C13%7C14%7C151%7C152%7C161.2184108-81709832%7C1611%7C17,idMap:161,pd:CV8L.internal-pdf-viewer,rmeas:1,rend:0,renddet:na,siq:4118,sinceFw:49,readyFired:true%7D&br=c	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=zemanta&google_push=AXcoOmQUioeRbNFMvdD9nJo-tN6lSL0tZeVLrFYQ3C99SKNeRBY0i6uZhaLb-diczutkwYZ3z2jNDRlgQpIVSAIGwOQyqWPApG1l6D0&google_hm=aXZOcDljV0pIM0p2c0NPekFrSzA=	false	unknown
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdtP8QbAAAAANDw3KFiz-PzdUvfmWCm4EpQe0OW&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&theme=light&size=normal&cb=jgc5n85jiq8v	false	unknown
https://googleads.g.doubleclick.net/pagead/adview?ai=CZUfJ0qsGZ_DYA5mXxdwPj_eXUaD7v-t5lqPY84sSm531_QgQASDslcwSYMkGoAHS_peZA8gBAagDAcgDywSqBOwBT9Af9e-dUt-Rfd_Bar2QWugubNZCoyZP5823i0qKsVUHmkXIVprz39U-wrdTn4FMiS0Lkb2Okrf38AeWLI4NrQzRcZiPuwVZtvGTJgJL8WXx6DYJS6UsNzp4FTl-zp330HIz2DphrMg5DwicTdswSuFE6bVauBCnqU8Y2VmTOuntwveXM17GLnLBcfKveial7z8slcxMJ8GBH18cztkUCj_1_s3tedFHB9cvN4Lt99EdrLvwoFHEiRcYS2sqo3yBlnRW8ORIAlpuKPyE8TOblGf6WNFp45CEo5SiqadT8mFAuUgINUuHrPAC22HABOyRgPTIBIgFzezRw02SBQQIBBgBkgUECAUYBIAHloHoZqgH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB_fCsQLYBwHyBwQQr4I-0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpYiYCW2tiBiQOaCV5odHRwczovL3ZlcnlmYXN0LmlvLz9hcD1hZHcmYXM9Z19kX2Zhc3RfYWxsX2luJmRtW2Fkc109bmV3X2FkYXB0aXZlMSZkbVt0eXBlXT1kaXMmZ2FkX3NvdXJjZT01gAoByAsBogwIKgYKBOjCsQLaDBEKCxDwoObhmKjhk7IBEgIBA9gTDNAVAZgWAYAXAbIXHgoaCAASFHB1Yi0xMTEyNDgwMzI0ODIxNTQ2GAAYAboXAjgBshgFGAEiAQDQGAHoGAE&sigh=vd36V1qoXIk&uach_m=%5BUACH%5D&ase=2&cid=CAQSOwDpaXnfPTfXThX1eDJkoqKfjDaFuMJ7hTAZ7CVHdfxesjABwjlxk2k8moTGX1KuxID04tHilSJ2SH7-GAE&nis=6	false	unknown
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&adk=1812271804&adf=3025194257&abgtt=3&lmt=1728490467&plaf=1%3A2%2C7%3A2&plat=1%3A128%2C2%3A128%2C3%3A128%2C4%3A128%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.fsist.com.br%2F&pra=7&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aicel=33&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&aiict=1&itsi=1&aiopts=1&aief=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490467478&bpp=1&bdt=399&idt=220&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D0a826a3351289280%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ&gpic=UID%3D00000f05e6b2da9f%3AT%3D1728490378%3ART%3D1728490378%3AS%3DALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ&eo_id_str=ID%3D032924807577f1f5%3AT%3D1728490378%3ART%3D1728490378%3AS%3DAA-AfjY8glguKwKrF5oT01NjKnLk&prev_fmts=632x280%2C340x280&nras=1&correlator=981858729345&frm=20&pv=1&u_tz=-240&u_his=2&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C42531706%2C44795922%2C95343329%2C95343455%2C95344525&oid=2&pvsid=2020163021002566&tmod=1031379896&uas=0&nvt=1&fsapi=1&ref=https%3A%2F%2Fwww.fsist.com.br%2F&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=223	false	unknown
https://www.fsist.com.br/	true	unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://www.sefazvirtual.fazenda.gov.br/NFeConsultaProtocolo4/NFeConsultaProtocolo4.asmx	chromecache_320.2.dr	false		unknown
https://adssettings.google.com/whythisad?source=display	chromecache_729.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr	false		unknown
https://ep2.adtrafficquality.google	chromecache_720.2.dr	false		unknown
https://www.fsist.com.br/videos/monitor-de-notas-cadastrar-filiais.mp4	chromecache_547.2.dr	true		unknown
https://ampcid.google.com/v1/publisher:getClientId	chromecache_634.2.dr, chromecache_466.2.dr	false	URL Reputation: safe	unknown
http://www.sefaz.ap.gov.br/	chromecache_320.2.dr	false		unknown
https://schema.org/WPSideBar	chromecache_321.2.dr	false		unknown
https://serasa.certificadodigital.com.br	chromecache_721.2.dr	false		unknown
https://fundingchoicesmessages.google.com/i/$	chromecache_372.2.dr, chromecache_576.2.dr	false		unknown
https://support.google.com/recaptcha/#6175971	chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	false	URL Reputation: safe	unknown
http://receita.fazenda.rs.gov.br/lista/2933/nf-e-(nota-fiscal-eletronica)	chromecache_320.2.dr	false		unknown
https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&page=1&pagesize=5	chromecache_320.2.dr	false		unknown
https://support.google.com/recaptcha	chromecache_609.2.dr	false	URL Reputation: safe	unknown
https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=231	chromecache_701.2.dr	false		unknown
https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=232	chromecache_485.2.dr, chromecache_720.2.dr	false		unknown
https://googleads.g.doubleclick.net/pagead/images/mtad/back_blue.png	chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	false		unknown
https://googleads.g.doubleclick.net/pagead/images/mtad/abg_blue.png"	chromecache_337.2.dr, chromecache_729.2.dr, chromecache_516.2.dr, chromecache_718.2.dr, chromecache_429.2.dr, chromecache_683.2.dr, chromecache_747.2.dr, chromecache_371.2.dr, chromecache_750.2.dr	false		unknown
https://googleads.g.doubleclick.net/pagead/images/mtad/x_blue.png	chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	false		unknown
http://exslt.org/dates-and-times	chromecache_320.2.dr	false		unknown
https://schema.org/ListItem	chromecache_321.2.dr	false		unknown
http://mathiasbynens.be/	chromecache_372.2.dr, chromecache_576.2.dr	false	URL Reputation: safe	unknown
http://gmpg.org/xfn/11	chromecache_321.2.dr	false	URL Reputation: safe	unknown
http://www.sefa.pa.gov.br/	chromecache_320.2.dr	false		unknown
https://googleads.g.doubleclick.net/pagead/images/abg/iconx2-000000.png	chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	false		unknown
http://googleads.g.doubleclick.net	chromecache_372.2.dr, chromecache_697.2.dr, chromecache_576.2.dr, chromecache_374.2.dr	false		unknown
https://googleads.g.doubleclick.net/pagead/images/mtad/abg_blue.png	chromecache_315.2.dr, chromecache_469.2.dr, chromecache_604.2.dr	false		unknown
http://www.nfe.fazenda.gov.br/	chromecache_721.2.dr	false		unknown
https://www.fsist.com.br/videos/monitor-de-notas-download-xml-lote.mp4	chromecache_547.2.dr	true		unknown
https://ep2.adtrafficquality.google/sodar/$	chromecache_372.2.dr, chromecache_576.2.dr	false		unknown
http://www.sefaz.al.gov.br/nfe/	chromecache_320.2.dr	false		unknown
http://www.sefaz.ce.gov.br/	chromecache_320.2.dr	false		unknown
https://github.com/blueimp/JavaScript-MD5	chromecache_460.2.dr, chromecache_373.2.dr	false		unknown
https://serasa.certificadodigital.com.br/	chromecache_721.2.dr	false		unknown
https://www.sefin.ro.gov.br/	chromecache_320.2.dr	false		unknown
https://cloud.google.com/contact	chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	false	URL Reputation: safe	unknown
https://schema.org/Comment	chromecache_321.2.dr	false		unknown
http://nfe.sef.sc.gov.br/	chromecache_320.2.dr	false		unknown
http://pajhome.org.uk/crypt/md5	chromecache_460.2.dr, chromecache_373.2.dr	false		unknown
https://www.gstatic.c..?/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__.	chromecache_380.2.dr, chromecache_308.2.dr, chromecache_609.2.dr	false	URL Reputation: safe	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
91.228.74.200	unknown	United Kingdom	27281	QUANTCASTUS	false
51.89.9.251	onetag-sys.com	France	16276	OVHFR	false
18.244.18.94	d1dvhck2p605dz.cloudfront.net	United States	16509	AMAZON-02US	false
50.31.142.63	chidc2.outbrain.org	United States	22075	AS-OUTBRAINUS	false
35.71.131.137	match.adsrvr.org	United States	237	MERIT-AS-14US	false
200.98.81.192	server4.fsist.com.br	Brazil	7162	UniversoOnlineSABR	false
93.158.134.90	unknown	Russian Federation	13238	YANDEXRU	false
200.98.81.193	server5.fsist.com.br	Brazil	7162	UniversoOnlineSABR	false
172.217.18.4	www.google.com	United States	15169	GOOGLEUS	false
200.98.81.191	server3.fsist.com.br	Brazil	7162	UniversoOnlineSABR	false
142.250.185.238	unknown	United States	15169	GOOGLEUS	false
18.66.112.44	d162h6x3rxav67.cloudfront.net	United States	3	MIT-GATEWAYSUS	false
34.247.205.103	match.prod.bidr.io	United States	16509	AMAZON-02US	false
64.227.17.224	veryfast.io	United States	14061	DIGITALOCEAN-ASNUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
134.122.57.34	match.adsby.bidtheatre.com	United States	14061	DIGITALOCEAN-ASNUS	false
54.72.91.203	tag.device9.com	United States	16509	AMAZON-02US	false
216.58.206.34	unknown	United States	15169	GOOGLEUS	false
200.98.80.186	server2.fsist.com.br	Brazil	7162	UniversoOnlineSABR	false
46.228.164.11	presentation-ams1.turn.com	United Kingdom	56396	TURNGB	false
18.66.147.55	unknown	United States	3	MIT-GATEWAYSUS	false
13.227.219.67	d3fxn7cse5tdjr.cloudfront.net	United States	16509	AMAZON-02US	false
178.250.1.9	widget.nl3.vip.prod.criteo.com	France	44788	ASN-CRITEO-EUROPEFR	false
18.244.18.122	unknown	United States	16509	AMAZON-02US	false
200.198.239.19	www.nfe.fazenda.gov.br	Brazil	10954	SERVICOFEDERALDEPROCESSAMENTODEDADOS-SERPROBR	false
35.214.168.80	gtrace.mediago.io	United States	19527	GOOGLE-2US	false
142.250.185.174	mts.l.google.com	United States	15169	GOOGLEUS	false
54.157.70.218	sync.ipredictive.com	United States	14618	AMAZON-AESUS	false
54.196.10.149	sync.srv.stackadapt.com	United States	14618	AMAZON-AESUS	false
54.232.198.103	www.fsist.com.br	United States	16509	AMAZON-02US	false
35.190.0.66	ads.travelaudience.com	United States	15169	GOOGLEUS	false
91.228.74.244	global.px.quantserve.com	United Kingdom	27281	QUANTCASTUS	false
13.225.78.105	creative-adchoices.advertise.qcinternal.io	United States	16509	AMAZON-02US	false
35.204.158.49	um.simpli.fi	United States	15169	GOOGLEUS	false
104.18.37.193	unknown	United States	13335	CLOUDFLARENETUS	false
54.233.226.96	unknown	United States	16509	AMAZON-02US	false
18.239.36.45	d3f1y6rso5ozvw.cloudfront.net	United States	16509	AMAZON-02US	false
18.231.51.202	vlibras.gov.br	United States	16509	AMAZON-02US	false
44.206.32.49	rtb.adentifi.com	United States	14618	AMAZON-AESUS	false
174.137.133.49	dsp.adkernel.com	United States	27257	WEBAIR-INTERNETUS	false
142.250.184.196	unknown	United States	15169	GOOGLEUS	false
100.26.6.7	unknown	United States	14618	AMAZON-AESUS	false
172.64.150.63	a.tribalfusion.com	United States	13335	CLOUDFLARENETUS	false
52.19.215.7	firewall-external-2134955858.eu-west-1.elb.amazonaws.com	United States	16509	AMAZON-02US	false
37.19.194.80	1645886859.rsc.cdn77.org	Ukraine	31343	INTERTELECOMUA	false
82.145.213.8	outspot2-ams.adx.opera.com	United Kingdom	39832	NO-OPERANO	false
213.180.204.90	an.yandex.ru	Russian Federation	13238	YANDEXRU	false
35.214.136.108	user-data-eu.bidswitch.net	United States	19527	GOOGLE-2US	false
3.69.4.67	cdn.w55c.net	United States	16509	AMAZON-02US	false
15.229.72.199	a561c4ff9be424fabb2e7987f5c75dc3-57e4619c4bae0435.elb.sa-east-1.amazonaws.com	United States	16509	AMAZON-02US	false
142.250.74.194	cm.g.doubleclick.net	United States	15169	GOOGLEUS	false
34.96.105.8	tr.blismedia.com	United States	15169	GOOGLEUS	false
44.195.127.47	dt-external-217593033.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
52.49.160.216	ds-pr-bh.ybp.gysm.yahoodns.net	United States	16509	AMAZON-02US	false
74.119.117.16	widget.us5.vip.prod.criteo.com	United States	19750	AS-CRITEOUS	false
142.250.185.132	unknown	United States	15169	GOOGLEUS	false
20.157.119.2	gw-c-eu-isp.temu.com	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
161.148.231.100	receita.fazenda.gov.br	Brazil	10954	SERVICOFEDERALDEPROCESSAMENTODEDADOS-SERPROBR	false
91.228.72.81	edge.eu-central-1.rtb.quantserve.net	United Kingdom	16509	AMAZON-02US	false
18.245.60.26	d30hfjcp71s79q.cloudfront.net	United States	16509	AMAZON-02US	false
35.198.59.113	sslteste2.fsist.com.br	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.4

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1530112
Start date and time:	2024-10-09 18:11:57 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 5m 45s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://www.fsist.com.br
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	10
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal52.phis.win@39/823@226/62
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0
Cookbook Comments:	Browse: https://www.nfe.fazenda.gov.br/portal/informe.aspx?ehCTG=false&Informe=9ydmiExbDZM= Browse: https://www.fsist.com.br/#certificadonecessarios Browse: https://www.fsist.com.br/ajuda/artigos/instalar-certificado-digital-a1/ Browse: https://www.fsist.com.br/imgs/autxmlnfe.png Browse: https://www.fsist.com.br/contato Browse: https://www.fsist.com.br/monitor-de-notas

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.186.131, 66.102.1.84, 142.250.186.174, 34.104.35.123, 142.250.186.162, 142.250.185.67, 142.250.186.110, 172.217.18.10, 142.250.186.74, 172.217.16.202, 142.250.185.106, 142.250.185.74, 142.250.186.170, 216.58.206.42, 142.250.185.170, 142.250.185.202, 216.58.206.74, 142.250.181.234, 142.250.185.138, 142.250.184.234, 142.250.186.42, 142.250.184.202, 142.250.185.234, 142.250.186.163, 142.250.185.130, 142.250.186.72, 142.250.185.195, 142.250.185.227, 142.250.186.99, 142.250.185.168, 142.250.186.129, 172.217.16.130, 216.58.212.130, 142.250.186.34, 216.58.206.66, 20.109.210.53, 142.250.181.225, 199.232.210.172, 142.250.184.226, 192.229.221.95, 142.250.185.225, 20.242.39.171, 13.107.42.14, 37.157.6.231, 37.157.6.233, 37.157.6.232, 37.157.6.237, 37.157.6.254, 37.157.6.243, 23.32.185.35, 23.43.85.147, 23.43.85.156, 23.43.85.133, 23.43.85.148, 23.43.85.137, 23.43.85.149, 23.43.85.154, 23.43.85.155, 23.43.85.145, 139.162.78.222, 172.105.203.31, 172.105.221.29, 172.104.64.
Excluded domains from analysis (whitelisted): slscr.update.microsoft.com, clientservices.googleapis.com, l-0005.l-msedge.net, gocm-geo.c.appier.net.akadns.net, clients2.google.com, ocsp.digicert.com, a2047.w185.akamai.net, update.googleapis.com, www.gstatic.com, wu-b-net.trafficmanager.net, www.google-analytics.com, e9957.e4.akamaiedge.net, fonts.googleapis.com, fs.microsoft.com, content-autofill.googleapis.com, cdn.flashtalking.com.edgekey.net, a-emea.rfihub.com.akadns.net, pagead2.googlesyndication.com, edgedl.me.gvt1.com, servedby.flashtalking.com-v1.edgekey.net, clients.l.google.com, cdn.jsdelivr.net.cdn.cloudflare.net, www.googleadservices.com, wildcard.moatads.com.edgekey.net, otelrules.afd.azureedge.net, e4751.b.akamaiedge.net, track.adformnet.akadns.net, www.googletagmanager.com, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, sls.update.microsoft.com, a.rfihub.com.akadns.net, glb.sls.prod.dcat.dsp.trafficmanager.net, www-linkedin-com.l-0005.l-msedge.net, temu-gtm.trafficmanager.net,
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing network information.
Report size getting too big, too many NtCreateFile calls found.
Report size getting too big, too many NtOpenFile calls found.
Report size getting too big, too many NtSetInformationFile calls found.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: https://www.fsist.com.br

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	SVG Scalable Vector Graphics image
Category:	dropped
Size (bytes):	388
Entropy (8bit):	4.415803539341116
Encrypted:	false
SSDEEP:	12:tr3dq8e/Iwld2HUZvKVHUZUtIgvdBUIglnmhrmMywox:t7dq8EIt0S0q7rU7lCaBT
MD5:	9825F7D0FF164BAFF8F387ED3F0DB608
SHA1:	FD4D7CF351DE2C2FCD6DB84FE3878725D091D88E
SHA-256:	8D3FD9DB2CDD91CA62CE32B0367C4FF4654A80B13A7C3082CD5CDD64842B0E6F
SHA-512:	E0BFA41D07247B74F7D298296EA1E912B53A639F640ADE96B009FDA4B902B6F62B79814D0C42D6AB53564C16248B9E7B46C0E58F8A7D23C947FCEF184735ED65
Malicious:	false
Reputation:	low
Preview:	<svg width="1792" height="1792" viewBox="0 0 1792 1792" xmlns="http://www.w3.org/2000/svg" fill="#fff"><path d="M1490 1322q0 40-28 68l-136 136q-28 28-68 28t-68-28l-294-294-294 294q-28 28-68 28t-68-28l-136-136q-28-28-28-68t28-68l294-294-294-294q-28-28-28-68t28-68l136-136q28-28 68-28t68 28l294 294 294-294q28-28 68-28t68 28l136 136q28 28 28 68t-28 68l-294 294 294 294q28 28 28 68z"/></svg>

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:51 UTC	659	OUT	GET / HTTP/1.1 Host: www.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:51 UTC	280	IN	HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: FSist X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Wed, 09 Oct 2024 16:12:50 GMT Connection: close Content-Length: 111880
2024-10-09 16:12:51 UTC	16104	IN	Data Raw: 0d 0a 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 0d 0a 3c 68 74 6d 6c 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 68 74 6d 6c 22 3e 0d 0a 3c 68 65 61 64 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 20 2f 3e 3c 73 74 79 6c 65 3e 5b 63 6c 61 73 73 5e 3d 22 69 63 6f 6e 2d 22 5d 2c 5b 63 6c 61 73 73 2a 3d 22 20 69 63 6f 6e 2d 22 5d 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 36 70 78 7d 2e 6d 65 6e 75 7b 63 75 72 73 6f 72 3a 70 6f 69 6e 74 65 72 3b 70 61 64 64 69 6e 67 3a 37 70 78 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 31 30 30 25 3b 6d 61 Data Ascii: <!DOCTYPE html><html xmlns="http://www.w3.org/1999/xhtml"><head><meta name="viewport" content="width=device-width, initial-scale=1" /><style>[class^="icon-"],[class*=" icon-"]{font-size:26px}.menu{cursor:pointer;padding:7px;border-radius:100%;ma
2024-10-09 16:12:51 UTC	16384	IN	Data Raw: 45 55 4d 6a 30 42 4e 44 59 7a 49 54 49 57 46 52 45 55 42 69 73 42 4e 54 4d 79 4e 6a 30 42 4e 43 49 64 41 53 4d 31 4d 44 49 78 46 6a 59 33 50 67 45 6e 4a 6a 59 33 50 67 45 6e 4c 67 45 33 4e 69 59 48 49 69 59 6e 4a 69 49 48 44 67 45 6a 4a 67 59 58 46 67 59 48 42 68 51 58 48 67 45 48 42 68 59 33 46 53 45 52 49 52 45 55 4d 6a 55 52 4e 43 59 6a 49 53 49 47 46 52 45 55 46 6a 4d 68 46 53 45 69 4a 6a 55 52 4e 43 49 56 45 52 51 57 4d 79 45 56 48 67 45 2f 41 52 63 57 4e 6a 30 42 4d 7a 49 32 4e 52 45 30 4a 67 45 47 4a 6a 63 32 4a 69 63 6d 4e 44 63 2b 41 53 63 6d 4e 6a 4d 57 4e 6a 63 32 4d 68 63 65 41 54 63 79 46 67 63 47 46 68 63 57 46 41 63 4f 41 52 63 57 42 69 63 6d 49 67 63 4f 41 51 63 4f 41 51 63 75 41 53 63 75 41 53 63 75 41 52 63 6d 49 67 38 42 4e 52 34 42 4d Data Ascii: EUMj0BNDYzITIWFREUBisBNTMyNj0BNCIdASM1MDIxFjY3PgEnJjY3PgEnLgE3NiYHIiYnJiIHDgEjJgYXFgYHBhQXHgEHBhY3FSERIREUMjURNCYjISIGFREUFjMhFSEiJjURNCIVERQWMyEVHgE/ARcWNj0BMzI2NRE0JgEGJjc2JicmNDc+AScmNjMWNjc2MhceATcyFgcGFhcWFAcOARcWBicmIgcOAQcOAQcuAScuAScuARcmIg8BNR4BM
2024-10-09 16:12:52 UTC	16384	IN	Data Raw: 6b 58 47 76 36 30 52 4b 69 53 32 6b 7a 79 78 6d 6f 38 5a 74 45 53 6d 78 44 6f 4f 6c 30 45 42 4b 66 48 45 63 48 31 54 76 72 75 52 30 46 6d 70 36 73 43 4e 65 62 43 70 53 43 75 72 61 53 30 54 6b 66 73 6b 47 2f 41 38 52 65 59 79 71 76 71 4c 43 2f 6e 61 49 71 72 34 2f 39 67 33 6d 68 6d 4e 45 35 4d 45 69 38 74 4f 6c 54 66 78 56 56 62 31 53 6e 34 33 74 31 34 79 4c 51 44 59 70 6d 56 6b 30 58 6a 4d 44 44 4c 52 73 77 74 52 32 67 41 30 4a 6f 32 79 54 46 44 58 34 42 52 72 6a 38 54 65 51 6c 4d 44 35 42 6a 58 50 66 6f 36 71 58 6d 55 49 4c 69 58 31 63 45 64 45 6b 48 6a 34 33 55 5a 4f 73 52 39 72 6a 30 32 71 61 46 4f 51 6b 70 6c 64 4c 36 68 72 31 30 79 65 39 51 73 69 63 6b 39 56 2f 54 52 2f 4d 37 4d 4c 69 4d 68 58 52 4f 54 79 6f 63 2f 4c 56 50 55 52 51 64 58 37 58 52 47 Data Ascii: kXGv60RKiS2kzyxmo8ZtESmxDoOl0EBKfHEcH1TvruR0Fmp6sCNebCpSCuraS0TkfskG/A8ReYyqvqLC/naIqr4/9g3mhmNE5MEi8tOlTfxVVb1Sn43t14yLQDYpmVk0XjMDDLRswtR2gA0Jo2yTFDX4BRrj8TeQlMD5BjXPfo6qXmUILiX1cEdEkHj43UZOsR9rj02qaFOQkpldL6hr10ye9Qsick9V/TR/M7MLiMhXROTyoc/LVPURQdX7XRG
2024-10-09 16:12:52 UTC	16384	IN	Data Raw: 30 2c 30 2e 32 29 2c 30 20 30 20 30 20 31 70 78 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 30 38 29 7d 2e 62 75 74 3a 66 6f 63 75 73 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 33 38 64 37 35 36 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 33 70 78 20 38 70 78 20 30 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 32 29 2c 30 20 30 20 30 20 31 70 78 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 30 38 29 7d 2e 62 75 74 7b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 77 69 64 74 68 3a 31 30 30 25 7d 2e 62 75 74 20 69 6d 67 7b 62 6f 72 64 65 72 2d 73 74 79 6c 65 3a 6e 6f 6e 65 7d 2e 72 69 70 70 6c 65 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 Data Ascii: 0,0.2),0 0 0 1px rgba(0,0,0,0.08)}.but:focus{background-color:#38d756;box-shadow:0 3px 8px 0 rgba(0,0,0,0.2),0 0 0 1px rgba(0,0,0,0.08)}.but{display:block;position:relative;box-sizing:border-box;width:100%}.but img{border-style:none}.ripple{position:relat
2024-10-09 16:12:52 UTC	16384	IN	Data Raw: 74 65 2e 66 61 7a 65 6e 64 61 2e 67 6f 76 2e 62 72 2f 70 6f 72 74 61 6c 2f 63 6f 6e 73 75 6c 74 61 52 65 63 61 70 74 63 68 61 2e 61 73 70 78 3f 74 69 70 6f 43 6f 6e 73 75 6c 74 61 3d 63 6f 6d 70 6c 65 74 61 26 74 69 70 6f 43 6f 6e 74 65 75 64 6f 3d 6d 43 4b 2f 4b 6f 43 71 72 75 30 3d 26 63 74 65 3d 27 2b 43 68 61 76 65 4e 75 6d 28 29 2b 22 27 29 3b 5c 22 3e 68 74 74 70 3a 2f 2f 77 77 77 2e 63 74 65 2e 66 61 7a 65 6e 64 61 2e 67 6f 76 2e 62 72 2f 3c 2f 61 3e 22 3a 65 2e 69 6e 64 65 78 4f 66 28 22 45 72 72 6f 20 61 6f 20 63 6f 6e 73 75 6c 74 61 72 20 4e 6f 74 61 20 46 69 73 63 61 6c 20 65 6c 65 74 72 c3 b4 6e 69 63 61 22 29 3e 2d 31 26 26 28 74 3d 22 4f 20 70 6f 72 74 61 6c 20 6e 61 63 69 6f 6e 61 6c 20 64 61 20 66 61 7a 65 6e 64 61 20 72 65 74 6f 72 6e 6f Data Ascii: te.fazenda.gov.br/portal/consultaRecaptcha.aspx?tipoConsulta=completa&tipoConteudo=mCK/KoCqru0=&cte='+ChaveNum()+"');\">http://www.cte.fazenda.gov.br/</a>":e.indexOf("Erro ao consultar Nota Fiscal eletrnica")>-1&&(t="O portal nacional da fazenda retorno
2024-10-09 16:12:52 UTC	16384	IN	Data Raw: 20 20 20 20 20 20 27 26 6d 6f 74 69 76 6f 3d 27 20 2b 20 28 52 65 70 6f 73 74 61 53 69 6d 4d 6f 74 69 76 6f 20 3d 3d 20 6e 75 6c 6c 20 3f 20 27 27 20 3a 20 65 6e 63 6f 64 65 55 52 49 43 6f 6d 70 6f 6e 65 6e 74 28 52 65 70 6f 73 74 61 53 69 6d 4d 6f 74 69 76 6f 29 29 2c 20 66 75 6e 63 74 69 6f 6e 20 28 29 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 6c 6f 61 64 4d 6f 73 74 72 61 28 66 61 6c 73 65 29 3b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 4d 73 67 49 6e 66 28 27 4f 62 72 69 67 61 64 6f 20 70 65 6c 61 20 6f 70 69 6e 69 c3 a3 6f 2e 27 2c 20 66 75 6e 63 74 69 6f 6e 20 28 29 20 7b 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 Data Ascii: '&motivo=' + (RepostaSimMotivo == null ? '' : encodeURIComponent(RepostaSimMotivo)), function () { loadMostra(false); MsgInf('Obrigado pela opinio.', function () {
2024-10-09 16:12:52 UTC	13856	IN	Data Raw: 72 20 6f 75 20 74 65 72 63 65 69 72 6f 73 20 69 6e 66 6f 72 6d 61 64 6f 73 20 6e 61 20 74 61 67 20 61 75 74 58 4d 4c 2e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 4e 6f 20 63 61 73 6f 20 64 65 20 4e 46 65 20 63 75 6a 6f 20 64 65 73 74 69 6e 61 74 c3 a1 72 69 6f 20 6e c3 a3 6f 20 70 6f 73 73 75 69 72 20 69 6e 73 63 72 69 c3 a7 c3 a3 6f 20 65 73 74 61 64 75 61 6c 20 6e 61 20 6e 6f 74 61 2c 20 65 73 74 c3 a1 20 73 65 6e 64 6f 20 70 6f 73 73 c3 ad 76 65 6c 20 65 66 65 74 75 61 72 20 61 20 63 6f 6e 73 75 6c 74 61 20 73 65 6d 20 63 65 72 74 69 66 69 63 61 64 6f 20 64 69 67 69 74 61 6c 2e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 4f 62 73 65 72 76 65 20 71 75 65 20 6f 20 74 72 61 6e 73 70 6f 72 74 61 64 6f 72 20 70 Data Ascii: r ou terceiros informados na tag autXML. No caso de NFe cujo destinatrio no possuir inscrio estadual na nota, est sendo possvel efetuar a consulta sem certificado digital. Observe que o transportador p

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:51 UTC	579	OUT	GET /PriPlugin/v4/css/min.css?CAF25CD5 HTTP/1.1 Host: www.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: UsuarioID2=TRgD5lCspYvH
2024-10-09 16:12:52 UTC	393	IN	HTTP/1.1 200 OK Cache-Control: max-age=2592000 Content-Type: text/css Last-Modified: Fri, 16 Oct 2020 18:31:48 GMT Accept-Ranges: bytes ETag: "ea9979beaa3d61:0" Server: Microsoft-IIS/10.0 Server: FSist X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Wed, 09 Oct 2024 16:12:50 GMT Connection: close Content-Length: 23698
2024-10-09 16:12:52 UTC	15991	IN	Data Raw: 5b 63 6c 61 73 73 5e 3d 22 69 63 6f 6e 2d 22 5d 2c 5b 63 6c 61 73 73 2a 3d 22 20 69 63 6f 6e 2d 22 5d 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 36 70 78 7d 2e 6d 65 6e 75 7b 63 75 72 73 6f 72 3a 70 6f 69 6e 74 65 72 3b 70 61 64 64 69 6e 67 3a 37 70 78 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 31 30 30 25 3b 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 70 78 3b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 39 70 78 7d 2e 6d 65 6e 75 3a 68 6f 76 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 36 61 63 61 37 63 7d 2a 7b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 27 52 6f 62 6f 74 6f 27 2c 73 61 6e 73 2d 73 65 72 69 66 7d 2e 64 69 76 2d 72 6f 77 7b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 35 30 70 78 7d 2e 6c 61 62 2d 74 69 74 75 6c 6f 7b 66 6f 6e 74 2d 73 69 7a 65 3a 34 Data Ascii: [class^="icon-"],[class=" icon-"]{font-size:26px}.menu{cursor:pointer;padding:7px;border-radius:100%;margin-top:2px;margin-left:9px}.menu:hover{background-color:#6aca7c}{font-family:'Roboto',sans-serif}.div-row{margin-bottom:50px}.lab-titulo{font-size:4
2024-10-09 16:12:52 UTC	7707	IN	Data Raw: 4d 44 49 78 46 6a 59 33 50 67 45 6e 4a 6a 59 33 50 67 45 6e 4c 67 45 33 4e 69 59 48 49 69 59 6e 4a 69 49 48 44 67 45 6a 4a 67 59 58 46 67 59 48 42 68 51 58 48 67 45 48 42 68 59 33 46 53 45 52 49 52 45 55 4d 6a 55 52 4e 43 59 6a 49 53 49 47 46 52 45 55 46 6a 4d 68 46 53 45 69 4a 6a 55 52 4e 43 49 56 45 52 51 57 4d 79 45 56 48 67 45 2f 41 52 63 57 4e 6a 30 42 4d 7a 49 32 4e 52 45 30 4a 67 45 47 4a 6a 63 32 4a 69 63 6d 4e 44 63 2b 41 53 63 6d 4e 6a 4d 57 4e 6a 63 32 4d 68 63 65 41 54 63 79 46 67 63 47 46 68 63 57 46 41 63 4f 41 52 63 57 42 69 63 6d 49 67 63 4f 41 51 63 4f 41 51 63 75 41 53 63 75 41 53 63 75 41 52 63 6d 49 67 38 42 4e 52 34 42 4d 7a 49 32 4e 78 55 42 49 54 49 30 49 79 45 69 46 44 4d 46 4e 43 59 6a 49 53 49 55 4d 79 45 79 4e 6a 55 46 4e 43 59 Data Ascii: MDIxFjY3PgEnJjY3PgEnLgE3NiYHIiYnJiIHDgEjJgYXFgYHBhQXHgEHBhY3FSERIREUMjURNCYjISIGFREUFjMhFSEiJjURNCIVERQWMyEVHgE/ARcWNj0BMzI2NRE0JgEGJjc2JicmNDc+AScmNjMWNjc2MhceATcyFgcGFhcWFAcOARcWBicmIgcOAQcOAQcuAScuAScuARcmIg8BNR4BMzI2NxUBITI0IyEiFDMFNCYjISIUMyEyNjUFNCY

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:52 UTC	675	OUT	GET /recaptcha/api.js?render=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf HTTP/1.1 Host: www.google.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:53 UTC	749	IN	HTTP/1.1 200 OK Content-Type: text/javascript; charset=utf-8 Expires: Wed, 09 Oct 2024 16:12:52 GMT Date: Wed, 09 Oct 2024 16:12:52 GMT Cache-Control: private, max-age=300 Cross-Origin-Resource-Policy: cross-origin Report-To: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]} Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d" Server: ESF X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked
2024-10-09 16:12:53 UTC	641	IN	Data Raw: 35 62 63 0d 0a 2f 2a 20 50 4c 45 41 53 45 20 44 4f 20 4e 4f 54 20 43 4f 50 59 20 41 4e 44 20 50 41 53 54 45 20 54 48 49 53 20 43 4f 44 45 2e 20 2a 2f 28 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 77 3d 77 69 6e 64 6f 77 2c 43 3d 27 5f 5f 5f 67 72 65 63 61 70 74 63 68 61 5f 63 66 67 27 2c 63 66 67 3d 77 5b 43 5d 3d 77 5b 43 5d 7c 7c 7b 7d 2c 4e 3d 27 67 72 65 63 61 70 74 63 68 61 27 3b 76 61 72 20 67 72 3d 77 5b 4e 5d 3d 77 5b 4e 5d 7c 7c 7b 7d 3b 67 72 2e 72 65 61 64 79 3d 67 72 2e 72 65 61 64 79 7c 7c 66 75 6e 63 74 69 6f 6e 28 66 29 7b 28 63 66 67 5b 27 66 6e 73 27 5d 3d 63 66 67 5b 27 66 6e 73 27 5d 7c 7c 5b 5d 29 2e 70 75 73 68 28 66 29 3b 7d 3b 77 5b 27 5f 5f 72 65 63 61 70 74 63 68 61 5f 61 70 69 27 5d 3d 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 Data Ascii: 5bc/* PLEASE DO NOT COPY AND PASTE THIS CODE. */(function(){var w=window,C='___grecaptcha_cfg',cfg=w[C]=w[C]\|\|{},N='grecaptcha';var gr=w[N]=w[N]\|\|{};gr.ready=gr.ready\|\|function(f){(cfg['fns']=cfg['fns']\|\|[]).push(f);};w['__recaptcha_api']='https://www.g
2024-10-09 16:12:53 UTC	834	IN	Data Raw: 59 66 66 78 72 4d 38 54 6d 5a 54 36 52 41 72 57 47 51 56 43 4a 30 4c 52 69 76 44 37 67 6c 63 41 55 41 41 41 43 51 65 79 4a 76 63 6d 6c 6e 61 57 34 69 4f 69 4a 6f 64 48 52 77 63 7a 6f 76 4c 32 64 76 62 32 64 73 5a 53 35 6a 62 32 30 36 4e 44 51 7a 49 69 77 69 5a 6d 56 68 64 48 56 79 5a 53 49 36 49 6b 52 70 63 32 46 69 62 47 56 55 61 47 6c 79 5a 46 42 68 63 6e 52 35 55 33 52 76 63 6d 46 6e 5a 56 42 68 63 6e 52 70 64 47 6c 76 62 6d 6c 75 5a 7a 49 69 4c 43 4a 6c 65 48 42 70 63 6e 6b 69 4f 6a 45 33 4e 44 49 7a 4e 44 49 7a 4f 54 6b 73 49 6d 6c 7a 55 33 56 69 5a 47 39 74 59 57 6c 75 49 6a 70 30 63 6e 56 6c 4c 43 4a 70 63 31 52 6f 61 58 4a 6b 55 47 46 79 64 48 6b 69 4f 6e 52 79 64 57 56 39 27 3b 69 66 28 76 26 26 76 2e 63 6f 6f 6b 69 65 44 65 70 72 65 63 61 74 69 Data Ascii: YffxrM8TmZT6RArWGQVCJ0LRivD7glcAUAAACQeyJvcmlnaW4iOiJodHRwczovL2dvb2dsZS5jb206NDQzIiwiZmVhdHVyZSI6IkRpc2FibGVUaGlyZFBhcnR5U3RvcmFnZVBhcnRpdGlvbmluZzIiLCJleHBpcnkiOjE3NDIzNDIzOTksImlzU3ViZG9tYWluIjp0cnVlLCJpc1RoaXJkUGFydHkiOnRydWV9';if(v&&v.cookieDeprecati
2024-10-09 16:12:53 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:52 UTC	577	OUT	GET /PriPlugin/v4/js/min.js?CAF25CD5 HTTP/1.1 Host: www.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: UsuarioID2=TRgD5lCspYvH
2024-10-09 16:12:53 UTC	406	IN	HTTP/1.1 200 OK Cache-Control: max-age=2592000 Content-Type: application/javascript Last-Modified: Fri, 24 Nov 2023 16:34:04 GMT Accept-Ranges: bytes ETag: "4272da9f41eda1:0" Server: Microsoft-IIS/10.0 Server: FSist X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Wed, 09 Oct 2024 16:12:51 GMT Connection: close Content-Length: 6083
2024-10-09 16:12:53 UTC	6083	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 20 6d 65 6e 75 28 29 7b 76 61 72 20 65 3d 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 22 6d 65 6e 75 2d 6c 65 66 74 22 29 2c 74 3d 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 42 79 49 64 28 22 63 6f 6e 74 65 6e 74 22 29 3b 22 6d 65 6e 75 2d 6c 65 66 74 2d 61 62 65 72 74 6f 22 3d 3d 65 2e 63 6c 61 73 73 4e 61 6d 65 3f 28 65 2e 63 6c 61 73 73 4e 61 6d 65 3d 22 6d 65 6e 75 2d 6c 65 66 74 2d 66 65 63 68 61 64 6f 22 2c 74 2e 63 6c 61 73 73 4e 61 6d 65 3d 22 63 6f 6e 74 65 6e 74 2d 66 65 63 68 61 64 6f 22 29 3a 28 65 2e 63 6c 61 73 73 4e 61 6d 65 3d 22 6d 65 6e 75 2d 6c 65 66 74 2d 61 62 65 72 74 6f 22 2c 74 2e 63 6c 61 73 73 4e 61 6d 65 3d 22 63 6f 6e 74 65 6e 74 2d 61 62 65 72 74 6f 22 29 7d 66 Data Ascii: function menu(){var e=document.getElementById("menu-left"),t=document.getElementById("content");"menu-left-aberto"==e.className?(e.className="menu-left-fechado",t.className="content-fechado"):(e.className="menu-left-aberto",t.className="content-aberto")}f

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:52 UTC	633	OUT	GET /imgs/site%203.0/pdf.png HTTP/1.1 Host: www.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: UsuarioID2=TRgD5lCspYvH
2024-10-09 16:12:53 UTC	394	IN	HTTP/1.1 200 OK Cache-Control: max-age=2592000 Content-Type: image/png Last-Modified: Sat, 10 Feb 2018 02:40:33 GMT Accept-Ranges: bytes ETag: "97d6cd8518a2d31:0" Server: Microsoft-IIS/10.0 Server: FSist X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Wed, 09 Oct 2024 16:12:51 GMT Connection: close Content-Length: 1209
2024-10-09 16:12:53 UTC	1209	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 30 00 00 00 30 08 06 00 00 00 57 02 f9 87 00 00 00 04 73 42 49 54 08 08 08 08 7c 08 64 88 00 00 00 09 70 48 59 73 00 00 0d 4a 00 00 0d 4a 01 27 3f 6a b2 00 00 00 19 74 45 58 74 53 6f 66 74 77 61 72 65 00 77 77 77 2e 69 6e 6b 73 63 61 70 65 2e 6f 72 67 9b ee 3c 1a 00 00 04 36 49 44 41 54 68 81 ed 98 5d 4c 1c 55 14 c7 7f 67 18 58 40 8a 05 85 34 92 58 24 c4 c6 1a 1a 0c 01 8a 58 bb 29 52 59 02 8d 92 2c f4 cb d4 07 f5 a1 0f da 07 63 34 69 95 87 be 1b f5 c5 1a 93 9a 34 5a 84 d8 d6 52 a1 42 4b 89 41 22 20 d1 68 fa a6 2d 36 7e 00 1a d1 00 4b c3 ee cc f1 61 0b 52 14 58 66 67 d8 36 e9 3f d9 e4 ce dd 73 ce ff fc 72 ef cc de 59 b8 cd 25 4b 7d 51 52 5f 9f 6e d8 29 1b dc 36 1c 2a 2d 1a a1 b9 d9 76 ab de 92 00 a5 Data Ascii: PNGIHDR00WsBIT\|dpHYsJJ'?jtEXtSoftwarewww.inkscape.org<6IDATh]LUgX@4X$X)RY,c4i4ZRBKA" h-6~KaRXfg6?srY%K}QR_n)6*-v

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:52 UTC	641	OUT	GET /imgs/site%203.0/certificate.png HTTP/1.1 Host: www.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: UsuarioID2=TRgD5lCspYvH
2024-10-09 16:12:53 UTC	394	IN	HTTP/1.1 200 OK Cache-Control: max-age=2592000 Content-Type: image/png Last-Modified: Sat, 10 Feb 2018 02:39:02 GMT Accept-Ranges: bytes ETag: "ba26ed4f18a2d31:0" Server: Microsoft-IIS/10.0 Server: FSist X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Wed, 09 Oct 2024 16:12:51 GMT Connection: close Content-Length: 1108
2024-10-09 16:12:53 UTC	1108	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 30 00 00 00 30 08 06 00 00 00 57 02 f9 87 00 00 00 04 73 42 49 54 08 08 08 08 7c 08 64 88 00 00 00 09 70 48 59 73 00 00 0d 4a 00 00 0d 4a 01 27 3f 6a b2 00 00 00 19 74 45 58 74 53 6f 66 74 77 61 72 65 00 77 77 77 2e 69 6e 6b 73 63 61 70 65 2e 6f 72 67 9b ee 3c 1a 00 00 03 d1 49 44 41 54 68 81 ed 99 5b 68 1c 65 14 c7 7f 67 66 37 4d d2 68 d2 68 11 ad 10 05 91 b6 60 51 42 36 0d 2a 14 d1 9a 6d 8d a4 c2 6c 6a 55 5a 5f da 07 1f 44 10 7d 15 44 1f 7c 69 14 45 14 51 44 10 92 11 6b d1 64 db 58 54 14 1a 77 63 0a 4d c5 4a 29 98 aa f1 86 17 d0 12 93 ee cc 77 7c 48 0c 9b 65 6f 7e 3b 24 44 f6 07 03 73 39 e7 7c ff ff cc 7c 97 dd 81 3a 75 6a 42 2a 05 24 76 7a d7 4b 9c f6 95 10 53 88 e6 f8 3d 3b e6 7f 53 2e a6 ac 81 Data Ascii: PNGIHDR00WsBIT\|dpHYsJJ'?jtEXtSoftwarewww.inkscape.org<IDATh[hegf7Mhh`QB6mljUZ_D}D\|iEQDkdXTwcMJ)w\|Heo~;$Ds9\|\|:ujB$vzKS=;S.

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:54 UTC	636	OUT	GET /sslteste.ashx HTTP/1.1 Host: www.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-type: application/x-www-form-urlencoded Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0
2024-10-09 16:12:54 UTC	276	IN	HTTP/1.1 200 OK Cache-Control: private Content-Type: text/plain; charset=utf-8 Server: FSist X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Wed, 09 Oct 2024 16:12:53 GMT Connection: close Content-Length: 2
2024-10-09 16:12:54 UTC	2	IN	Data Raw: 4f 4b Data Ascii: OK

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:54 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-10-09 16:12:54 UTC	465	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF67) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Cache-Control: public, max-age=1987 Date: Wed, 09 Oct 2024 16:12:54 GMT Connection: close X-CID: 2

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:54 UTC	600	OUT	GET / HTTP/1.1 Host: sslteste2.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-type: application/x-www-form-urlencoded Accept: / Origin: https://www.fsist.com.br Sec-Fetch-Site: same-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:55 UTC	206	IN	HTTP/1.1 200 OK Server: nginx/1.14.0 (Ubuntu) Date: Wed, 09 Oct 2024 16:12:54 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Access-Control-Allow-Origin: *
2024-10-09 16:12:55 UTC	12	IN	Data Raw: 32 0d 0a 4f 4b 0d 0a 30 0d 0a 0d 0a Data Ascii: 2OK0

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:55 UTC	638	OUT	GET /baixarxml.ashx?m=WEB&t=teste&r=615292075 HTTP/1.1 Host: server4.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-type: application/x-www-form-urlencoded Accept: / Origin: https://www.fsist.com.br Sec-Fetch-Site: same-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:55 UTC	237	IN	HTTP/1.1 200 OK Cache-Control: private Content-Type: text/plain; charset=utf-8 Access-Control-Allow-Origin: https://www.fsist.com.br X-Powered-By: ASP.NET Date: Wed, 09 Oct 2024 16:13:19 GMT Connection: close Content-Length: 2
2024-10-09 16:12:55 UTC	2	IN	Data Raw: 4f 4b Data Ascii: OK

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (3515)
Category:	dropped
Size (bytes):	211298
Entropy (8bit):	5.434411940022077
Encrypted:	false
SSDEEP:	6144:6BlfMmPe6JLCBlSRsJrNZNK9GeMxyW+Uz:wfaBIdUz
MD5:	13A1FFD3CD55B5190099ABD43F852E3F
SHA1:	806CF9D1FD4EB9D8E7252742D3763BC36AC28601
SHA-256:	4BBF8D79E9316F74717CEFA88DE54ADDEDD9BC1B95F21E3B239BC287C5B44F67
SHA-512:	FC49667697E34376CBA81E87E52CA2F9FC36330929A3B3E4E2042074C8027151B93A5D1D87094AF600143504870EE2F66DC04BA879A921B89088BC0A7FC30D7A
Malicious:	false
Reputation:	low
Preview:	(function(){var n,aa=function(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}}},ba=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,c){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=c.value;return a},ca=function(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("a");},p=ca(this),.u=function(a,b){if(b)a:{var c=p;a=a.split(".");for(var d=0;d<a.length-1;d++){var e=a[d];if(!(e in c))break a;c=c[e]}a=a[a.length-1];d=c[a];b=b(d);b!=d&&b!=null&&ba(c,a,{configurable:!0,writable:!0,value:b})}};.u("Symbol",function(a){if(a)return a;var b=function(f,g){this.sg=f;ba(this,"description",{configurable:!0,writable:!0,value:g})};b.prototype.toString=function(){return this.sg};var c="jscomp_symbol_"+(Math.random()*1E9>>>0)+"_",d=0,e=function(f){if(this instanceof e)t

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:55 UTC	638	OUT	GET /baixarxml.ashx?m=WEB&t=teste&r=456401537 HTTP/1.1 Host: server3.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-type: application/x-www-form-urlencoded Accept: / Origin: https://www.fsist.com.br Sec-Fetch-Site: same-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:55 UTC	237	IN	HTTP/1.1 200 OK Cache-Control: private Content-Type: text/plain; charset=utf-8 Access-Control-Allow-Origin: https://www.fsist.com.br X-Powered-By: ASP.NET Date: Wed, 09 Oct 2024 16:12:46 GMT Connection: close Content-Length: 2
2024-10-09 16:12:55 UTC	2	IN	Data Raw: 4f 4b Data Ascii: OK

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:55 UTC	638	OUT	GET /baixarxml.ashx?m=WEB&t=teste&r=928007208 HTTP/1.1 Host: server2.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-type: application/x-www-form-urlencoded Accept: / Origin: https://www.fsist.com.br Sec-Fetch-Site: same-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:55 UTC	237	IN	HTTP/1.1 200 OK Cache-Control: private Content-Type: text/plain; charset=utf-8 Access-Control-Allow-Origin: https://www.fsist.com.br X-Powered-By: ASP.NET Date: Wed, 09 Oct 2024 16:12:54 GMT Connection: close Content-Length: 2
2024-10-09 16:12:55 UTC	2	IN	Data Raw: 4f 4b Data Ascii: OK

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:55 UTC	638	OUT	GET /baixarxml.ashx?m=WEB&t=teste&r=946028603 HTTP/1.1 Host: server5.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-type: application/x-www-form-urlencoded Accept: / Origin: https://www.fsist.com.br Sec-Fetch-Site: same-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:55 UTC	237	IN	HTTP/1.1 200 OK Cache-Control: private Content-Type: text/plain; charset=utf-8 Access-Control-Allow-Origin: https://www.fsist.com.br X-Powered-By: ASP.NET Date: Wed, 09 Oct 2024 16:12:55 GMT Connection: close Content-Length: 2
2024-10-09 16:12:55 UTC	2	IN	Data Raw: 4f 4b Data Ascii: OK

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:55 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-10-09 16:12:56 UTC	514	IN	HTTP/1.1 200 OK ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF06) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Cache-Control: public, max-age=25923 Date: Wed, 09 Oct 2024 16:12:56 GMT Content-Length: 55 Connection: close X-CID: 2
2024-10-09 16:12:56 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:56 UTC	951	OUT	GET /recaptcha/api2/anchor?ar=1&k=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=w23a324qou9v HTTP/1.1 Host: www.google.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:56 UTC	1161	IN	HTTP/1.1 200 OK Content-Type: text/html; charset=utf-8 Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Embedder-Policy: require-corp Report-To: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} Report-To: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]} Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: Mon, 01 Jan 1990 00:00:00 GMT Date: Wed, 09 Oct 2024 16:12:56 GMT Content-Security-Policy: script-src 'report-sample' 'nonce-RW2jsyuTwiLURnTx0TQL2g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1 Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d" Server: ESF X-XSS-Protection: 0 X-Content-Type-Options: nosniff Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked
2024-10-09 16:12:56 UTC	229	IN	Data Raw: 35 37 34 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 3e 3c 68 74 6d 6c 20 64 69 72 3d 22 6c 74 72 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 22 3e 0a 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 22 3e 0a 3c 74 69 74 6c 65 3e 72 65 43 41 50 54 43 48 41 3c 2f 74 69 74 6c 65 3e 0a 3c 73 74 79 6c 65 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 3e 0a 2f 2a 20 63 79 Data Ascii: 5745<!DOCTYPE HTML><html dir="ltr" lang="en"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=edge"><title>reCAPTCHA</title><style type="text/css">/* cy
2024-10-09 16:12:56 UTC	1390	IN	Data Raw: 72 69 6c 6c 69 63 2d 65 78 74 20 2a 2f 0a 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 27 52 6f 62 6f 74 6f 27 3b 0a 20 20 66 6f 6e 74 2d 73 74 79 6c 65 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 34 30 30 3b 0a 20 20 73 72 63 3a 20 75 72 6c 28 2f 2f 66 6f 6e 74 73 2e 67 73 74 61 74 69 63 2e 63 6f 6d 2f 73 2f 72 6f 62 6f 74 6f 2f 76 31 38 2f 4b 46 4f 6d 43 6e 71 45 75 39 32 46 72 31 4d 75 37 32 78 4b 4f 7a 59 2e 77 6f 66 66 32 29 20 66 6f 72 6d 61 74 28 27 77 6f 66 66 32 27 29 3b 0a 20 20 75 6e 69 63 6f 64 65 2d 72 61 6e 67 65 3a 20 55 2b 30 34 36 30 2d 30 35 32 46 2c 20 55 2b 31 43 38 30 2d 31 43 38 38 2c 20 55 2b 32 30 42 34 2c 20 55 2b 32 44 45 30 2d 32 44 46 46 2c 20 55 2b 41 36 34 Data Ascii: rillic-ext */@font-face { font-family: 'Roboto'; font-style: normal; font-weight: 400; src: url(//fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu72xKOzY.woff2) format('woff2'); unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A64
2024-10-09 16:12:56 UTC	1390	IN	Data Raw: 30 41 42 3b 0a 7d 0a 2f 2a 20 6c 61 74 69 6e 2d 65 78 74 20 2a 2f 0a 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 27 52 6f 62 6f 74 6f 27 3b 0a 20 20 66 6f 6e 74 2d 73 74 79 6c 65 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 34 30 30 3b 0a 20 20 73 72 63 3a 20 75 72 6c 28 2f 2f 66 6f 6e 74 73 2e 67 73 74 61 74 69 63 2e 63 6f 6d 2f 73 2f 72 6f 62 6f 74 6f 2f 76 31 38 2f 4b 46 4f 6d 43 6e 71 45 75 39 32 46 72 31 4d 75 37 47 78 4b 4f 7a 59 2e 77 6f 66 66 32 29 20 66 6f 72 6d 61 74 28 27 77 6f 66 66 32 27 29 3b 0a 20 20 75 6e 69 63 6f 64 65 2d 72 61 6e 67 65 3a 20 55 2b 30 31 30 30 2d 30 32 41 46 2c 20 55 2b 30 33 30 34 2c 20 55 2b 30 33 30 38 2c 20 55 2b 30 33 32 39 2c 20 55 2b 31 45 30 30 Data Ascii: 0AB;}/* latin-ext */@font-face { font-family: 'Roboto'; font-style: normal; font-weight: 400; src: url(//fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu7GxKOzY.woff2) format('woff2'); unicode-range: U+0100-02AF, U+0304, U+0308, U+0329, U+1E00
2024-10-09 16:12:56 UTC	1390	IN	Data Raw: 73 2e 67 73 74 61 74 69 63 2e 63 6f 6d 2f 73 2f 72 6f 62 6f 74 6f 2f 76 31 38 2f 4b 46 4f 6c 43 6e 71 45 75 39 32 46 72 31 4d 6d 45 55 39 66 43 42 63 34 45 73 41 2e 77 6f 66 66 32 29 20 66 6f 72 6d 61 74 28 27 77 6f 66 66 32 27 29 3b 0a 20 20 75 6e 69 63 6f 64 65 2d 72 61 6e 67 65 3a 20 55 2b 31 46 30 30 2d 31 46 46 46 3b 0a 7d 0a 2f 2a 20 67 72 65 65 6b 20 2a 2f 0a 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 27 52 6f 62 6f 74 6f 27 3b 0a 20 20 66 6f 6e 74 2d 73 74 79 6c 65 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 35 30 30 3b 0a 20 20 73 72 63 3a 20 75 72 6c 28 2f 2f 66 6f 6e 74 73 2e 67 73 74 61 74 69 63 2e 63 6f 6d 2f 73 2f 72 6f 62 6f 74 6f 2f 76 31 38 2f 4b 46 4f 6c 43 6e 71 45 Data Ascii: s.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2) format('woff2'); unicode-range: U+1F00-1FFF;}/* greek */@font-face { font-family: 'Roboto'; font-style: normal; font-weight: 500; src: url(//fonts.gstatic.com/s/roboto/v18/KFOlCnqE
2024-10-09 16:12:56 UTC	1390	IN	Data Raw: 30 33 32 39 2c 20 55 2b 32 30 30 30 2d 32 30 36 46 2c 20 55 2b 32 30 37 34 2c 20 55 2b 32 30 41 43 2c 20 55 2b 32 31 32 32 2c 20 55 2b 32 31 39 31 2c 20 55 2b 32 31 39 33 2c 20 55 2b 32 32 31 32 2c 20 55 2b 32 32 31 35 2c 20 55 2b 46 45 46 46 2c 20 55 2b 46 46 46 44 3b 0a 7d 0a 2f 2a 20 63 79 72 69 6c 6c 69 63 2d 65 78 74 20 2a 2f 0a 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 27 52 6f 62 6f 74 6f 27 3b 0a 20 20 66 6f 6e 74 2d 73 74 79 6c 65 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 39 30 30 3b 0a 20 20 73 72 63 3a 20 75 72 6c 28 2f 2f 66 6f 6e 74 73 2e 67 73 74 61 74 69 63 2e 63 6f 6d 2f 73 2f 72 6f 62 6f 74 6f 2f 76 31 38 2f 4b 46 4f 6c 43 6e 71 45 75 39 32 46 72 31 4d 6d 59 55 74 Data Ascii: 0329, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;}/* cyrillic-ext */@font-face { font-family: 'Roboto'; font-style: normal; font-weight: 900; src: url(//fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUt
2024-10-09 16:12:56 UTC	1390	IN	Data Raw: 38 2d 30 31 32 39 2c 20 55 2b 30 31 36 38 2d 30 31 36 39 2c 20 55 2b 30 31 41 30 2d 30 31 41 31 2c 20 55 2b 30 31 41 46 2d 30 31 42 30 2c 20 55 2b 30 33 30 30 2d 30 33 30 31 2c 20 55 2b 30 33 30 33 2d 30 33 30 34 2c 20 55 2b 30 33 30 38 2d 30 33 30 39 2c 20 55 2b 30 33 32 33 2c 20 55 2b 30 33 32 39 2c 20 55 2b 31 45 41 30 2d 31 45 46 39 2c 20 55 2b 32 30 41 42 3b 0a 7d 0a 2f 2a 20 6c 61 74 69 6e 2d 65 78 74 20 2a 2f 0a 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 27 52 6f 62 6f 74 6f 27 3b 0a 20 20 66 6f 6e 74 2d 73 74 79 6c 65 3a 20 6e 6f 72 6d 61 6c 3b 0a 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 39 30 30 3b 0a 20 20 73 72 63 3a 20 75 72 6c 28 2f 2f 66 6f 6e 74 73 2e 67 73 74 61 74 69 63 2e 63 6f 6d 2f 73 2f 72 Data Ascii: 8-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+0300-0301, U+0303-0304, U+0308-0309, U+0323, U+0329, U+1EA0-1EF9, U+20AB;}/* latin-ext */@font-face { font-family: 'Roboto'; font-style: normal; font-weight: 900; src: url(//fonts.gstatic.com/s/r
2024-10-09 16:12:56 UTC	1390	IN	Data Raw: 22 68 69 64 64 65 6e 22 20 69 64 3d 22 72 65 63 61 70 74 63 68 61 2d 74 6f 6b 65 6e 22 20 76 61 6c 75 65 3d 22 30 33 41 46 63 57 65 41 36 4e 78 4d 73 74 4c 46 54 57 6a 76 62 62 73 73 49 6e 6a 34 64 45 32 6f 55 5a 7a 5f 47 48 6c 62 62 55 68 44 39 7a 63 78 6d 68 2d 4d 30 6c 4c 32 65 57 4d 37 5f 46 53 33 71 36 56 5a 57 4d 4f 43 47 4b 30 37 65 58 49 37 71 47 35 65 55 56 4a 48 39 62 31 55 57 63 68 6b 30 6e 76 67 74 50 55 6a 4d 4a 33 45 58 37 4f 4c 75 61 6d 37 4b 6b 42 49 6c 34 4a 34 33 78 51 69 32 55 36 57 49 43 50 66 58 47 71 6f 4c 51 71 46 68 36 78 43 4d 33 4c 5f 73 77 65 66 69 62 4e 35 67 37 41 34 46 33 63 31 4b 67 79 48 4f 41 39 52 44 32 6e 66 76 54 68 4c 36 44 69 48 32 33 6b 63 77 72 53 79 73 43 57 2d 4c 62 32 6a 74 35 58 71 52 6a 2d 45 51 7a 43 70 72 6f Data Ascii: "hidden" id="recaptcha-token" value="03AFcWeA6NxMstLFTWjvbbssInj4dE2oUZz_GHlbbUhD9zcxmh-M0lL2eWM7_FS3q6VZWMOCGK07eXI7qG5eUVJH9b1UWchk0nvgtPUjMJ3EX7OLuam7KkBIl4J43xQi2U6WICPfXGqoLQqFh6xCM3L_swefibN5g7A4F3c1KgyHOA9RD2nfvThL6DiH23kcwrSysCW-Lb2jt5XqRj-EQzCpro
2024-10-09 16:12:56 UTC	1390	IN	Data Raw: 72 4a 47 4c 6e 68 74 54 58 50 6d 64 78 41 57 46 43 31 53 54 6e 67 79 49 37 49 70 44 36 50 6f 73 61 39 6d 36 72 45 32 2d 72 4b 55 56 56 79 63 7a 6c 33 52 63 7a 4c 45 45 54 6d 63 61 4a 4d 6d 37 64 35 52 6f 5a 51 41 48 42 6e 72 49 41 70 54 62 39 33 59 43 46 53 39 78 6a 36 75 74 55 4a 62 62 50 4e 5a 44 76 47 39 4e 55 41 76 62 63 53 42 63 58 6e 65 52 42 65 76 73 56 6e 57 38 33 58 4e 67 39 38 73 39 64 63 79 57 33 41 67 4c 55 6e 38 52 75 4e 4e 56 4d 57 79 76 41 51 56 6e 52 5f 4a 73 74 41 71 4e 73 41 48 56 4d 45 77 6e 75 75 45 34 43 42 35 6d 4a 63 4f 43 48 36 46 56 5a 75 41 45 64 57 6d 4c 55 45 56 56 4f 64 2d 5f 63 7a 41 59 51 6c 2d 69 44 53 44 6e 36 51 49 4a 54 51 48 71 4f 77 45 35 41 6f 4c 6a 5a 4b 69 31 6f 46 42 41 6e 44 49 79 51 48 6f 4e 54 4b 68 7a 79 75 56 Data Ascii: rJGLnhtTXPmdxAWFC1STngyI7IpD6Posa9m6rE2-rKUVVyczl3RczLEETmcaJMm7d5RoZQAHBnrIApTb93YCFS9xj6utUJbbPNZDvG9NUAvbcSBcXneRBevsVnW83XNg98s9dcyW3AgLUn8RuNNVMWyvAQVnR_JstAqNsAHVMEwnuuE4CB5mJcOCH6FVZuAEdWmLUEVVOd-_czAYQl-iDSDn6QIJTQHqOwE5AoLjZKi1oFBAnDIyQHoNTKhzyuV
2024-10-09 16:12:56 UTC	1390	IN	Data Raw: 4c 30 64 6f 65 6b 74 46 56 31 64 6b 4d 55 35 68 54 48 59 34 53 57 63 30 65 6b 78 46 4e 30 55 32 59 6b 38 7a 4d 48 49 7a 59 6c 64 33 4f 46 68 6b 54 30 49 77 63 6c 4a 33 65 44 6c 77 59 54 4e 44 57 46 4a 52 4f 43 39 48 61 6e 52 31 53 31 63 30 51 32 4e 51 4c 31 46 78 55 6d 4a 31 52 33 46 47 4f 48 6c 75 53 32 39 55 55 33 52 56 62 6c 64 54 56 32 30 30 62 58 42 70 52 46 42 42 65 45 35 4b 4d 30 39 4f 64 6d 52 71 62 56 68 30 4e 57 6b 34 62 6e 5a 4f 54 53 38 77 4e 6b 4e 73 4d 6d 64 31 53 6b 70 4c 5a 6d 68 6f 63 6c 4e 30 54 6b 35 77 63 6e 56 75 52 6b 35 4f 5a 55 4e 5a 5a 6b 35 59 57 57 39 4b 4e 31 67 77 4e 47 4e 7a 57 6b 35 68 52 79 39 75 4f 57 52 30 62 79 39 43 51 69 74 4c 5a 54 56 58 64 6d 39 35 64 45 31 4e 61 32 31 74 62 47 52 6c 4f 56 5a 69 55 6e 46 4f 4f 46 70 Data Ascii: L0doektFV1dkMU5hTHY4SWc0ekxFN0U2Yk8zMHIzYld3OFhkT0IwclJ3eDlwYTNDWFJROC9HanR1S1c0Q2NQL1FxUmJ1R3FGOHluS29UU3RVbldTV200bXBpRFBBeE5KM09OdmRqbVh0NWk4bnZOTS8wNkNsMmd1SkpLZmhoclN0Tk5wcnVuRk5OZUNZZk5YWW9KN1gwNGNzWk5hRy9uOWR0by9CQitLZTVXdm95dE1Na21tbGRlOVZiUnFOOFp
2024-10-09 16:12:56 UTC	1390	IN	Data Raw: 73 31 54 55 4a 70 62 44 56 51 52 55 6c 6d 4f 58 64 71 5a 32 64 4d 4d 6d 70 57 63 33 63 78 51 31 68 6b 65 45 74 55 54 57 4e 4e 4e 30 74 6f 4c 32 39 58 55 6b 4e 42 57 57 70 72 4d 6d 78 54 59 33 4e 47 63 7a 52 53 4e 58 4e 68 4f 58 59 79 4e 31 46 32 59 33 51 76 63 58 70 56 4b 30 35 74 53 69 74 42 56 6d 68 4d 61 32 70 33 64 46 6f 78 51 6d 35 58 59 56 6c 32 4f 56 42 74 4e 31 46 69 52 6e 42 75 51 6e 4a 61 4f 56 70 47 52 6c 64 6e 64 55 5a 4b 59 6b 68 72 5a 57 70 70 54 57 56 52 52 32 5a 73 52 44 68 55 59 30 78 4f 51 6d 35 53 53 57 56 4a 63 54 4a 47 4b 33 52 73 56 32 34 35 4c 33 4a 6b 4e 44 4a 57 53 57 64 53 52 6b 78 31 59 6d 78 6c 53 44 6c 47 59 58 5a 79 62 33 56 6f 62 46 4e 74 55 31 52 55 65 6e 6c 31 4e 6e 59 78 5a 6c 56 4f 56 58 46 42 53 45 39 77 65 47 73 79 56 Data Ascii: s1TUJpbDVQRUlmOXdqZ2dMMmpWc3cxQ1hkeEtUTWNNN0toL29XUkNBWWprMmxTY3NGczRSNXNhOXYyN1F2Y3QvcXpVK05tSitBVmhMa2p3dFoxQm5XYVl2OVBtN1FiRnBuQnJaOVpGRldndUZKYkhrZWppTWVRR2ZsRDhUY0xOQm5SSWVJcTJGK3RsV245L3JkNDJWSWdSRkx1YmxlSDlGYXZyb3VobFNtU1RUenl1NnYxZlVOVXFBSE9weGsyV

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:56 UTC	771	OUT	GET /sslteste.ashx?ssllocal=OK&sslexterno=OK&iduser=319771858 HTTP/1.1 Host: www.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-type: application/x-www-form-urlencoded Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1
2024-10-09 16:12:56 UTC	235	IN	HTTP/1.1 200 OK Cache-Control: private Server: FSist X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Wed, 09 Oct 2024 16:12:55 GMT Connection: close Content-Length: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:57 UTC	506	OUT	GET /sslteste.ashx HTTP/1.1 Host: www.fsist.com.br Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1
2024-10-09 16:12:58 UTC	276	IN	HTTP/1.1 200 OK Cache-Control: private Content-Type: text/plain; charset=utf-8 Server: FSist X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Wed, 09 Oct 2024 16:12:56 GMT Connection: close Content-Length: 2
2024-10-09 16:12:58 UTC	2	IN	Data Raw: 4f 4b Data Ascii: OK

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:58 UTC	841	OUT	GET /pagead/html/r20241007/r20190131/zrt_lookup_fy2021.html HTTP/1.1 Host: googleads.g.doubleclick.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:59 UTC	639	IN	HTTP/1.1 200 OK P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Timing-Allow-Origin: * Cross-Origin-Resource-Policy: cross-origin X-Content-Type-Options: nosniff Server: cafe Content-Length: 9031 X-XSS-Protection: 0 Date: Tue, 08 Oct 2024 17:07:56 GMT Expires: Tue, 22 Oct 2024 17:07:56 GMT Cache-Control: public, max-age=1209600 ETag: 13108003645644964576 Content-Type: text/html; charset=UTF-8 Vary: Accept-Encoding Age: 83102 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-10-09 16:12:59 UTC	751	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 73 63 72 69 70 74 3e 0a 28 66 75 6e 63 74 69 6f 6e 28 29 7b 27 75 73 65 20 73 74 72 69 63 74 27 3b 2f 2a 0a 0a 20 43 6f 70 79 72 69 67 68 74 20 54 68 65 20 43 6c 6f 73 75 72 65 20 4c 69 62 72 61 72 79 20 41 75 74 68 6f 72 73 2e 0a 20 53 50 44 58 2d 4c 69 63 65 6e 73 65 2d 49 64 65 6e 74 69 66 69 65 72 3a 20 41 70 61 63 68 65 2d 32 2e 30 0a 2a 2f 0a 76 61 72 20 6c 3d 74 68 69 73 7c 7c 73 65 6c 66 3b 76 61 72 20 6d 2c 6e 3b 61 3a 7b 66 6f 72 28 76 61 72 20 61 61 3d 5b 22 43 4c 4f 53 55 52 45 5f 46 4c 41 47 53 22 5d 2c 76 3d 6c 2c 7a 3d 30 3b 7a 3c 61 61 2e 6c 65 6e 67 74 68 3b 7a 2b 2b 29 69 66 28 76 3d 76 5b 61 61 5b 7a 5d 5d 2c 76 3d 3d 6e 75 6c 6c 29 7b 6e 3d 6e 75 6c 6c 3b 62 72 65 61 6b 20 61 7d 6e 3d 76 Data Ascii: <!DOCTYPE html><script>(function(){'use strict';/* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0*/var l=this\|\|self;var m,n;a:{for(var aa=["CLOSURE_FLAGS"],v=l,z=0;z<aa.length;z++)if(v=v[aa[z]],v==null){n=null;break a}n=v
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 20 47 28 61 29 7b 47 5b 22 20 22 5d 28 61 29 3b 72 65 74 75 72 6e 20 61 7d 47 5b 22 20 22 5d 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 7d 3b 76 61 72 20 66 61 3d 63 61 28 29 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 2e 69 6e 64 65 78 4f 66 28 22 77 65 62 6b 69 74 22 29 21 3d 2d 31 26 26 21 43 28 22 45 64 67 65 22 29 3b 21 43 28 22 41 6e 64 72 6f 69 64 22 29 7c 7c 46 28 29 3b 46 28 29 3b 43 28 22 53 61 66 61 72 69 22 29 26 26 28 46 28 29 7c 7c 28 45 28 29 3f 30 3a 43 28 22 43 6f 61 73 74 22 29 29 7c 7c 28 45 28 29 3f 30 3a 43 28 22 4f 70 65 72 61 22 29 29 7c 7c 28 45 28 29 3f 30 3a 43 28 22 45 64 67 65 22 29 29 7c 7c 28 45 28 29 3f 42 28 22 4d 69 63 72 6f 73 6f 66 74 20 45 64 67 65 22 29 3a 43 28 22 45 64 67 2f 22 29 29 7c 7c 45 28 29 26 26 42 28 22 4f 70 65 72 Data Ascii: G(a){G[" "](a);return a}G[" "]=function(){};var fa=ca().toLowerCase().indexOf("webkit")!=-1&&!C("Edge");!C("Android")\|\|F();F();C("Safari")&&(F()\|\|(E()?0:C("Coast"))\|\|(E()?0:C("Opera"))\|\|(E()?0:C("Edge"))\|\|(E()?B("Microsoft Edge"):C("Edg/"))\|\|E()&&B("Oper
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 5f 72 65 71 75 65 73 74 73 3d 5b 5d 29 3b 63 6f 6e 73 74 20 62 3d 70 61 28 6c 2e 64 6f 63 75 6d 65 6e 74 29 3b 62 2e 73 72 63 3d 61 3b 6c 2e 67 6f 6f 67 6c 65 5f 69 6d 61 67 65 5f 72 65 71 75 65 73 74 73 2e 70 75 73 68 28 62 29 7d 3b 6c 65 74 20 4a 3d 6e 75 6c 6c 3b 76 61 72 20 72 61 3d 28 29 3d 3e 7b 69 66 28 21 4a 29 62 3a 7b 76 61 72 20 61 3d 6e 61 28 29 3b 66 6f 72 28 76 61 72 20 62 3d 30 3b 62 3c 61 2e 6c 65 6e 67 74 68 3b 62 2b 2b 29 74 72 79 7b 63 6f 6e 73 74 20 63 3d 61 5b 62 5d 2e 66 72 61 6d 65 73 2e 67 6f 6f 67 6c 65 5f 65 73 66 3b 69 66 28 63 26 26 49 28 63 29 29 7b 4a 3d 63 3b 62 72 65 61 6b 20 62 7d 7d 63 61 74 63 68 28 63 29 7b 7d 4a 3d 6e 75 6c 6c 7d 28 61 3d 4a 29 3f 28 28 62 3d 61 2e 65 73 66 5f 70 72 6f 70 41 72 72 61 79 29 7c 7c 28 62 Data Ascii: _requests=[]);const b=pa(l.document);b.src=a;l.google_image_requests.push(b)};let J=null;var ra=()=>{if(!J)b:{var a=na();for(var b=0;b<a.length;b++)try{const c=a[b].frames.google_esf;if(c&&I(c)){J=c;break b}}catch(c){}J=null}(a=J)?((b=a.esf_propArray)\|\|(b
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 71 75 65 49 64 3d 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 7d 7d 3b 63 6f 6e 73 74 20 4f 3d 6c 2e 70 65 72 66 6f 72 6d 61 6e 63 65 2c 46 61 3d 21 21 28 4f 26 26 4f 2e 6d 61 72 6b 26 26 4f 2e 6d 65 61 73 75 72 65 26 26 4f 2e 63 6c 65 61 72 4d 61 72 6b 73 29 2c 50 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 6c 65 74 20 62 3d 21 31 2c 63 3b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 29 7b 62 7c 7c 28 63 3d 61 28 29 2c 62 3d 21 30 29 3b 72 65 74 75 72 6e 20 63 7d 7d 28 28 29 3d 3e 7b 76 61 72 20 61 3b 69 66 28 61 3d 46 61 29 7b 76 61 72 20 62 3b 69 66 28 4d 3d 3d 3d 6e 75 6c 6c 29 7b 4d 3d 22 22 3b 74 72 79 7b 61 3d 22 22 3b 74 72 79 7b 61 3d 6c 2e 74 6f 70 2e 6c 6f 63 61 74 69 6f 6e 2e 68 61 73 68 7d 63 61 74 63 68 28 63 29 7b 61 3d 6c 2e 6c 6f 63 61 74 69 6f Data Ascii: queId=Math.random()}};const O=l.performance,Fa=!!(O&&O.mark&&O.measure&&O.clearMarks),P=function(a){let b=!1,c;return function(){b\|\|(c=a(),b=!0);return c}}(()=>{var a;if(a=Fa){var b;if(M===null){M="";try{a="";try{a=l.top.location.hash}catch(c){a=l.locatio
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 63 2c 64 2b 31 2c 66 29 29 3b 72 65 74 75 72 6e 20 65 2e 6a 6f 69 6e 28 63 5b 64 5d 29 7d 7d 65 6c 73 65 20 69 66 28 74 79 70 65 6f 66 20 61 3d 3d 3d 22 6f 62 6a 65 63 74 22 29 72 65 74 75 72 6e 20 66 7c 7c 28 66 3d 30 29 2c 66 3c 32 3f 65 6e 63 6f 64 65 55 52 49 43 6f 6d 70 6f 6e 65 6e 74 28 49 61 28 61 2c 62 2c 63 2c 64 2c 66 2b 31 29 29 3a 22 2e 2e 2e 22 3b 72 65 74 75 72 6e 20 65 6e 63 6f 64 65 55 52 49 43 6f 6d 70 6f 6e 65 6e 74 28 53 74 72 69 6e 67 28 61 29 29 7d 66 75 6e 63 74 69 6f 6e 20 4b 61 28 61 29 7b 6c 65 74 20 62 3d 31 3b 66 6f 72 28 63 6f 6e 73 74 20 63 20 69 6e 20 61 2e 68 29 63 2e 6c 65 6e 67 74 68 3e 62 26 26 28 62 3d 63 2e 6c 65 6e 67 74 68 29 3b 72 65 74 75 72 6e 20 33 39 39 37 2d 62 2d 61 2e 69 2e 6c 65 6e 67 74 68 2d 31 7d 0a 66 75 Data Ascii: c,d+1,f));return e.join(c[d])}}else if(typeof a==="object")return f\|\|(f=0),f<2?encodeURIComponent(Ia(a,b,c,d,f+1)):"...";return encodeURIComponent(String(a))}function Ka(a){let b=1;for(const c in a.h)c.length>b&&(b=c.length);return 3997-b-a.i.length-1}fu
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 6f 6e 2e 61 6e 63 65 73 74 6f 72 4f 72 69 67 69 6e 73 26 26 67 2e 6c 6f 63 61 74 69 6f 6e 2e 61 6e 63 65 73 74 6f 72 4f 72 69 67 69 6e 73 2e 6c 65 6e 67 74 68 3d 3d 6b 2e 6c 65 6e 67 74 68 2d 31 29 66 6f 72 28 71 3d 31 3b 71 3c 6b 2e 6c 65 6e 67 74 68 3b 2b 2b 71 29 7b 76 61 72 20 78 3d 6b 5b 71 5d 3b 78 2e 75 72 6c 7c 7c 28 78 2e 75 72 6c 3d 67 2e 6c 6f 63 61 74 69 6f 6e 2e 61 6e 63 65 73 74 6f 72 4f 72 69 67 69 6e 73 5b 71 2d 31 5d 7c 7c 22 22 2c 78 2e 6c 3d 21 30 29 7d 76 61 72 20 74 3d 6b 3b 6c 65 74 20 4e 3d 6e 65 77 20 42 61 28 6c 2e 6c 6f 63 61 74 69 6f 6e 2e 68 72 65 66 2c 21 31 29 3b 67 3d 6e 75 6c 6c 3b 63 6f 6e 73 74 20 58 3d 74 2e 6c 65 6e 67 74 68 2d 31 3b 66 6f 72 28 78 3d 58 3b 78 3e 3d 30 3b 2d 2d 78 29 7b 76 61 72 20 75 3d 74 5b 78 5d 3b Data Ascii: on.ancestorOrigins&&g.location.ancestorOrigins.length==k.length-1)for(q=1;q<k.length;++q){var x=k[q];x.url\|\|(x.url=g.location.ancestorOrigins[q-1]\|\|"",x.l=!0)}var t=k;let N=new Ba(l.location.href,!1);g=null;const X=t.length-1;for(x=X;x>=0;--x){var u=t[x];
2024-10-09 16:12:59 UTC	1330	IN	Data Raw: 6e 74 2e 72 65 61 64 79 53 74 61 74 65 3d 3d 22 63 6f 6d 70 6c 65 74 65 22 3f 51 61 28 29 3a 55 2e 67 26 26 68 61 28 28 29 3d 3e 7b 51 61 28 29 7d 29 7d 29 28 29 3b 76 61 72 20 52 61 3d 61 3d 3e 7b 54 2e 67 3d 62 3d 3e 7b 65 61 28 61 2c 63 3d 3e 7b 63 28 62 29 7d 29 7d 7d 3b 66 75 6e 63 74 69 6f 6e 20 53 61 28 61 29 7b 61 3d 61 3d 3d 3d 6e 75 6c 6c 3f 22 6e 75 6c 6c 22 3a 61 3d 3d 3d 76 6f 69 64 20 30 3f 22 75 6e 64 65 66 69 6e 65 64 22 3a 61 3b 48 3d 3d 3d 76 6f 69 64 20 30 26 26 28 48 3d 6a 61 28 29 29 3b 76 61 72 20 62 3d 48 3b 72 65 74 75 72 6e 20 6e 65 77 20 6b 61 28 62 3f 62 2e 63 72 65 61 74 65 48 54 4d 4c 28 61 29 3a 61 29 7d 3b 76 61 72 20 54 61 3b 69 66 28 54 61 3d 66 61 29 7b 76 61 72 20 56 3d 22 49 46 52 41 4d 45 22 2c 56 61 3d 64 6f 63 75 6d Data Ascii: nt.readyState=="complete"?Qa():U.g&&ha(()=>{Qa()})})();var Ra=a=>{T.g=b=>{ea(a,c=>{c(b)})}};function Sa(a){a=a===null?"null":a===void 0?"undefined":a;H===void 0&&(H=ja());var b=H;return new ka(b?b.createHTML(a):a)};var Ta;if(Ta=fa){var V="IFRAME",Va=docum

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:58 UTC	1920	OUT	GET /pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490377&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373594&bpp=7&bdt=2220&idt=4021&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&correlator=3717780412659&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=350&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087700%2C44795921%2C95343454%2C95344187%2C95340253%2C95340255&oid=2&pvsid=3387663613290942&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C [TRUNCATED] Host: googleads.g.doubleclick.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:59 UTC	788	IN	HTTP/1.1 200 OK P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Timing-Allow-Origin: * Cross-Origin-Resource-Policy: cross-origin Observe-Browsing-Topics: ?1 Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Wed, 09 Oct 2024 16:12:59 GMT Server: cafe Cache-Control: private X-XSS-Protection: 0 Set-Cookie: test_cookie=CheckForPermission; expires=Wed, 09-Oct-2024 16:27:58 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Expires: Wed, 09 Oct 2024 16:12:59 GMT Connection: close Transfer-Encoding: chunked
2024-10-09 16:12:59 UTC	602	IN	Data Raw: 38 30 30 30 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 65 6e 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 65 6c 6f 61 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 73 74 61 74 69 63 2e 63 6f 6d 2f 6d 79 73 69 64 69 61 2f 30 64 31 31 33 39 63 32 63 65 34 65 38 33 34 37 65 31 39 66 33 37 31 35 35 36 35 37 31 61 37 32 2e 6a 73 3f 74 61 67 3d 65 6e 67 69 6e 65 2f 63 6c 69 65 6e 74 5f 66 61 73 74 2f 63 6c 69 65 6e 74 5f 66 61 73 74 5f 65 6e 67 69 6e 65 22 20 61 73 3d 22 73 63 72 69 70 74 22 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 70 72 65 6c 6f 61 64 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 73 74 61 74 Data Ascii: 8000<!DOCTYPE html><html lang=en><head><meta charset="UTF-8"><link rel="preload" href="https://www.gstatic.com/mysidia/0d1139c2ce4e8347e19f371556571a72.js?tag=engine/client_fast/client_fast_engine" as="script"><link rel="preload" href="https://www.gstat
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 2d 69 74 65 6d 73 3a 20 63 65 6e 74 65 72 3b 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 63 65 6e 74 65 72 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 6e 6f 72 6d 61 6c 3b 7d 23 6d 79 73 2d 6f 76 65 72 6c 61 79 7b 68 65 69 67 68 74 3a 31 30 30 25 3b 77 69 64 74 68 3a 31 30 30 25 3b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 74 6f 70 3a 30 3b 6c 65 66 74 3a 30 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 70 6f 69 6e 74 65 72 2d 65 76 65 6e 74 73 3a 6e 6f 6e 65 3b 7a 2d 69 6e 64 65 78 3a 31 3b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 7d 2e 6d 79 73 2d 77 72 61 70 70 65 72 20 41 2c 2e 6d 79 73 2d 77 72 61 70 70 65 72 20 41 3a 76 69 73 69 74 Data Ascii: -items: center;display:flex;justify-content:center;line-height:normal;}#mys-overlay{height:100%;width:100%;overflow:hidden;position:absolute;top:0;left:0;box-sizing:border-box;pointer-events:none;z-index:1;display:none;}.mys-wrapper A,.mys-wrapper A:visit
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 43 75 73 74 6f 6d 45 76 65 6e 74 3d 66 7d 3b 7d 29 2e 63 61 6c 6c 28 74 68 69 73 29 3b 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 73 74 61 74 69 63 2e 63 6f 6d 2f 6d 79 73 69 64 69 61 2f 30 64 31 31 33 39 63 32 63 65 34 65 38 33 34 37 65 31 39 66 33 37 31 35 35 36 35 37 31 61 37 32 2e 6a 73 3f 74 61 67 3d 65 6e 67 69 6e 65 2f 63 6c 69 65 6e 74 5f 66 61 73 74 2f 63 6c 69 65 6e 74 5f 66 61 73 74 5f 65 6e 67 69 6e 65 22 3e 3c 2f 73 63 72 69 70 74 3e 3c 73 74 79 6c 65 20 64 61 74 61 2d 6e 6c 3d 22 62 61 6e 6e 65 72 2d 6c 61 72 67 65 2d 76 61 6e 69 6c 6c 61 22 20 64 61 74 61 2d 6e 73 3d 22 6e 73 2d 73 63 78 33 31 22 20 78 2d 70 68 61 73 65 3d 22 61 73 73 65 6d 62 6c 65 22 3e 2e 6e 73 2d 73 63 78 33 Data Ascii: CustomEvent=f};}).call(this);</script><script src="https://www.gstatic.com/mysidia/0d1139c2ce4e8347e19f371556571a72.js?tag=engine/client_fast/client_fast_engine"></script><style data-nl="banner-large-vanilla" data-ns="ns-scx31" x-phase="assemble">.ns-scx3
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 6c 65 74 74 65 72 2d 73 70 61 63 69 6e 67 3a 30 2e 30 32 65 6d 3b 70 61 64 64 69 6e 67 2d 74 6f 70 3a 30 3b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 74 6f 70 3a 30 3b 77 69 64 74 68 3a 31 30 30 25 3b 7d 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 31 30 2c 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 31 32 7b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 33 3b 2d 6d 79 73 2d 6f 76 65 72 66 6c 6f 77 2d 6c 69 6d 69 74 3a 30 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 66 6c 65 78 2d 67 72 6f 77 3a 31 3b 7d 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 31 31 7b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e Data Ascii: letter-spacing:0.02em;padding-top:0;position:absolute;top:0;width:100%;}.ns-scx31-e-10,.ns-scx31-e-12{line-height:1.3;-mys-overflow-limit:0;box-sizing:border-box;display:flex;align-items:center;flex-direction:row;flex-grow:1;}.ns-scx31-e-11{line-height:1.
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 3a 6e 6f 6e 65 3b 6d 61 78 2d 68 65 69 67 68 74 3a 31 2e 33 65 6d 3b 7d 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 32 33 7b 2d 6d 79 73 2d 73 63 6f 72 65 3a 31 3b 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 3b 7d 2e 6e 73 2d 73 63 78 33 31 2d 76 2d 30 20 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 32 7b 6d 61 72 67 69 6e 3a 32 35 2e 32 70 78 20 38 38 2e 34 38 70 78 3b 7d 2e 6e 73 2d 73 63 78 33 31 2d 76 2d 30 20 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 33 2c 2e 6e 73 2d 73 63 78 33 31 2d 76 2d 30 20 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 31 31 7b 70 61 64 64 69 6e 67 3a 32 32 2e 34 70 78 20 33 31 2e 36 70 78 3b 7d 2e 6e 73 2d 73 63 78 33 31 2d 76 2d 30 20 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 35 2c 2e 6e 73 2d 73 63 78 33 31 2d 76 2d 30 20 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 37 7b Data Ascii: :none;max-height:1.3em;}.ns-scx31-e-23{-mys-score:1;display:inline;}.ns-scx31-v-0 .ns-scx31-e-2{margin:25.2px 88.48px;}.ns-scx31-v-0 .ns-scx31-e-3,.ns-scx31-v-0 .ns-scx31-e-11{padding:22.4px 31.6px;}.ns-scx31-v-0 .ns-scx31-e-5,.ns-scx31-v-0 .ns-scx31-e-7{
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 6f 70 61 63 69 74 79 28 31 30 30 25 29 20 62 6c 75 72 28 30 70 78 29 3b 7d 7d 20 40 6b 65 79 66 72 61 6d 65 73 20 66 6c 61 73 68 7b 66 72 6f 6d 7b 74 72 61 6e 73 66 6f 72 6d 2d 6f 72 69 67 69 6e 3a 22 35 30 25 20 35 30 25 22 3b 74 72 61 6e 73 66 6f 72 6d 3a 73 63 61 6c 65 28 32 29 3b 66 69 6c 74 65 72 3a 6f 70 61 63 69 74 79 28 30 25 29 3b 7d 74 6f 7b 74 72 61 6e 73 66 6f 72 6d 3a 73 63 61 6c 65 28 31 29 3b 66 69 6c 74 65 72 3a 6f 70 61 63 69 74 79 28 31 30 30 25 29 3b 7d 7d 20 40 6b 65 79 66 72 61 6d 65 73 20 66 61 64 65 2d 69 6e 2d 61 6e 69 6d 61 74 69 6f 6e 7b 30 25 7b 6f 70 61 63 69 74 79 3a 30 3b 7d 31 30 30 25 7b 6f 70 61 63 69 74 79 3a 31 3b 7d 7d 20 40 6b 65 79 66 72 61 6d 65 73 20 62 75 74 74 6f 6e 2d 65 78 70 61 6e 64 2d 61 6e 69 6d 61 74 69 6f Data Ascii: opacity(100%) blur(0px);}} @keyframes flash{from{transform-origin:"50% 50%";transform:scale(2);filter:opacity(0%);}to{transform:scale(1);filter:opacity(100%);}} @keyframes fade-in-animation{0%{opacity:0;}100%{opacity:1;}} @keyframes button-expand-animatio
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 6e 73 2d 73 63 78 33 31 2d 6c 2d 62 61 6e 6e 65 72 2d 6c 61 72 67 65 2d 76 61 6e 69 6c 6c 61 20 2e 77 65 62 2d 6f 6e 2d 73 68 6f 77 20 2e 63 6f 6d 6d 6f 6e 2d 61 6e 69 6d 61 74 69 6f 6e 2d 70 61 74 74 65 72 6e 2e 63 74 61 2d 74 65 78 74 2d 61 6e 69 6d 61 74 65 64 7b 61 6e 69 6d 61 74 69 6f 6e 2d 6e 61 6d 65 3a 6e 6f 6e 65 3b 7d 2e 63 74 61 2d 74 65 78 74 2e 61 6e 69 6d 61 74 65 64 2e 63 74 61 2d 74 65 78 74 2d 61 6e 69 6d 61 74 65 64 2e 63 6f 6d 6d 6f 6e 2d 61 6e 69 6d 61 74 69 6f 6e 2d 70 61 74 74 65 72 6e 7b 63 6f 6c 6f 72 3a 23 66 66 66 3b 6f 70 61 63 69 74 79 3a 31 3b 7d 2e 63 74 61 2d 6f 75 74 65 72 2e 63 6f 6d 6d 6f 6e 2d 61 6e 69 6d 61 74 69 6f 6e 2d 70 61 74 74 65 72 6e 2e 63 74 61 2d 6f 75 74 65 72 2d 61 6e 69 6d 61 74 65 64 7b 62 6f 78 2d 73 68 Data Ascii: ns-scx31-l-banner-large-vanilla .web-on-show .common-animation-pattern.cta-text-animated{animation-name:none;}.cta-text.animated.cta-text-animated.common-animation-pattern{color:#fff;opacity:1;}.cta-outer.common-animation-pattern.cta-outer-animated{box-sh
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 2d 72 61 64 69 75 73 3a 30 20 30 20 35 70 78 20 35 70 78 3b 7d 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 31 33 7b 63 6f 6c 6f 72 3a 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 34 29 3b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 22 47 6f 6f 67 6c 65 20 53 61 6e 73 22 2c 20 22 52 6f 62 6f 74 6f 22 2c 47 6f 6f 67 6c 65 20 53 61 6e 73 2c 73 61 6e 73 2d 73 65 72 69 66 3b 7d 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 31 37 7b 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 6e 6f 6e 65 3b 62 61 63 6b 67 72 6f 75 6e 64 3a 74 72 61 6e 73 70 61 72 65 6e 74 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 6e 6f 6e 65 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 5a 28 30 29 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 36 33 32 70 78 3b 7d 2e 6e 73 2d 73 63 78 33 31 2d 65 2d 31 38 7b 62 61 Data Ascii: -radius:0 0 5px 5px;}.ns-scx31-e-13{color:rgba(0,0,0,0.4);font-family:"Google Sans", "Roboto",Google Sans,sans-serif;}.ns-scx31-e-17{text-decoration:none;background:transparent;box-shadow:none;transform:translateZ(0);border-radius:632px;}.ns-scx31-e-18{ba
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 29 3a 28 76 28 22 43 68 72 6f 6d 65 22 29 7c 7c 76 28 22 43 72 69 4f 53 22 29 29 26 26 21 28 77 28 29 3f 30 3a 76 28 22 45 64 67 65 22 29 29 7c 7c 76 28 22 53 69 6c 6b 22 29 7d 3b 21 76 28 22 41 6e 64 72 6f 69 64 22 29 7c 7c 78 28 29 3b 78 28 29 3b 76 28 22 53 61 66 61 72 69 22 29 26 26 28 78 28 29 7c 7c 28 77 28 29 3f 30 3a 76 28 22 43 6f 61 73 74 22 29 29 7c 7c 28 77 28 29 3f 30 3a 76 28 22 4f 70 65 72 61 22 29 29 7c 7c 28 77 28 29 3f 30 3a 76 28 22 45 64 67 65 22 29 29 7c 7c 28 77 28 29 3f 75 28 22 4d 69 63 72 6f 73 6f 66 74 20 45 64 67 65 22 29 3a 76 28 22 45 64 67 2f 22 29 29 7c 7c 77 28 29 26 26 75 28 22 4f 70 65 72 61 22 29 29 3b 2f 2a 20 20 43 6f 70 79 72 69 67 68 74 20 47 6f 6f 67 6c 65 20 4c 4c 43 20 53 50 44 58 2d 4c 69 63 65 6e 73 65 2d 49 64 Data Ascii: ):(v("Chrome")\|\|v("CriOS"))&&!(w()?0:v("Edge"))\|\|v("Silk")};!v("Android")\|\|x();x();v("Safari")&&(x()\|\|(w()?0:v("Coast"))\|\|(w()?0:v("Opera"))\|\|(w()?0:v("Edge"))\|\|(w()?u("Microsoft Edge"):v("Edg/"))\|\|w()&&u("Opera"));/* Copyright Google LLC SPDX-License-Id
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 29 7b 63 6f 6e 73 74 20 61 3d 65 2e 70 65 72 66 6f 72 6d 61 6e 63 65 3b 72 65 74 75 72 6e 20 61 26 26 61 2e 6e 6f 77 3f 61 2e 6e 6f 77 28 29 3a 6e 75 6c 6c 7d 3b 76 61 72 20 52 3d 63 6c 61 73 73 7b 63 6f 6e 73 74 72 75 63 74 6f 72 28 61 2c 62 29 7b 76 61 72 20 63 3d 51 28 29 7c 7c 50 28 29 3b 74 68 69 73 2e 6c 61 62 65 6c 3d 61 3b 74 68 69 73 2e 74 79 70 65 3d 62 3b 74 68 69 73 2e 76 61 6c 75 65 3d 63 3b 74 68 69 73 2e 64 75 72 61 74 69 6f 6e 3d 30 3b 74 68 69 73 2e 74 61 73 6b 49 64 3d 74 68 69 73 2e 73 6c 6f 74 49 64 3d 76 6f 69 64 20 30 3b 74 68 69 73 2e 75 6e 69 71 75 65 49 64 3d 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 7d 7d 3b 63 6f 6e 73 74 20 53 3d 65 2e 70 65 72 66 6f 72 6d 61 6e 63 65 2c 54 3d 21 21 28 53 26 26 53 2e 6d 61 72 6b 26 26 53 2e 6d 65 Data Ascii: ){const a=e.performance;return a&&a.now?a.now():null};var R=class{constructor(a,b){var c=Q()\|\|P();this.label=a;this.type=b;this.value=c;this.duration=0;this.taskId=this.slotId=void 0;this.uniqueId=Math.random()}};const S=e.performance,T=!!(S&&S.mark&&S.me

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:58 UTC	1936	OUT	GET /pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2729452301&adk=478090332&adf=2045730728&pi=t.ma~as.2729452301&w=340&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490377&rafmt=1&format=340x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373601&bpp=1&bdt=2227&idt=4072&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=632x280&correlator=3717780412659&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=913&ady=89&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087700%2C44795921%2C95343454%2C95344187%2C95340253%2C95340255&oid=2&pvsid=3387663613290942&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C9 [TRUNCATED] Host: googleads.g.doubleclick.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:13:00 UTC	788	IN	HTTP/1.1 200 OK P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Timing-Allow-Origin: * Cross-Origin-Resource-Policy: cross-origin Observe-Browsing-Topics: ?1 Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Wed, 09 Oct 2024 16:12:59 GMT Server: cafe Cache-Control: private X-XSS-Protection: 0 Set-Cookie: test_cookie=CheckForPermission; expires=Wed, 09-Oct-2024 16:27:59 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Expires: Wed, 09 Oct 2024 16:12:59 GMT Connection: close Transfer-Encoding: chunked
2024-10-09 16:13:00 UTC	602	IN	Data Raw: 38 30 30 30 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 65 6e 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 3e 3c 73 63 72 69 70 74 3e 76 61 72 20 6a 73 63 56 65 72 73 69 6f 6e 20 3d 20 27 72 32 30 32 34 31 30 30 37 27 3b 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 3e 76 61 72 20 67 6f 6f 67 6c 65 5f 63 61 73 6d 3d 5b 5d 3b 3c 2f 73 63 72 69 70 74 3e 3c 73 74 79 6c 65 3e 48 54 4d 4c 2c 42 4f 44 59 7b 68 65 69 67 68 74 3a 31 30 30 25 3b 77 69 64 74 68 3a 31 30 30 25 3b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 3b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 7d 23 6d 79 73 2d 77 72 61 70 70 65 72 7b 68 65 69 67 68 74 3a 20 31 30 30 25 3b 77 69 64 74 68 3a 31 30 Data Ascii: 8000<!DOCTYPE html><html lang=en><head><meta charset="UTF-8"><script>var jscVersion = 'r20241007';</script><script>var google_casm=[];</script><style>HTML,BODY{height:100%;width:100%;margin:0;padding:0;overflow:hidden;}#mys-wrapper{height: 100%;width:10
2024-10-09 16:13:00 UTC	1390	IN	Data Raw: 2e 6d 79 73 2d 77 72 61 70 70 65 72 20 41 3a 61 63 74 69 76 65 7b 63 6f 6c 6f 72 3a 69 6e 68 65 72 69 74 3b 63 75 72 73 6f 72 3a 70 6f 69 6e 74 65 72 3b 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 69 6e 68 65 72 69 74 3b 7d 5b 64 69 72 3d 72 74 6c 5d 20 2e 66 6c 69 70 2d 6f 6e 2d 72 74 6c 7b 74 72 61 6e 73 66 6f 72 6d 3a 73 63 61 6c 65 28 2d 31 2c 31 29 3b 74 72 61 6e 73 66 6f 72 6d 2d 6f 72 69 67 69 6e 3a 63 65 6e 74 65 72 3b 7d 23 6d 79 73 2d 63 6f 6e 74 65 6e 74 7b 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 30 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 7a 2d 69 6e 64 65 78 3a 30 3b 7d 3c 2f 73 74 79 6c 65 3e 3c 73 74 79 6c 65 20 64 61 74 61 2d 6e 6c 3d 22 73 71 75 61 72 65 44 57 69 74 68 6f 75 Data Ascii: .mys-wrapper A:active{color:inherit;cursor:pointer;text-decoration:inherit;}[dir=rtl] .flip-on-rtl{transform:scale(-1,1);transform-origin:center;}#mys-content{flex-shrink:0;position:relative;overflow:hidden;z-index:0;}</style><style data-nl="squareDWithou
2024-10-09 16:13:00 UTC	1390	IN	Data Raw: 6b 3a 30 3b 7d 2e 6e 73 2d 6c 78 34 63 61 2d 65 2d 31 32 7b 2d 6d 79 73 2d 73 63 6f 72 65 3a 31 3b 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 30 3b 66 6c 65 78 2d 67 72 6f 77 3a 30 3b 68 65 69 67 68 74 3a 34 34 2e 38 70 78 3b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 7d 2e 6e 73 2d 6c 78 34 63 61 2d 65 2d 31 33 7b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 68 65 69 67 68 74 3a 38 2e 34 70 78 3b 77 69 64 74 68 3a 31 70 78 3b 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 30 3b 7d 2e 6e 73 2d 6c 78 34 63 61 2d 76 2d 30 20 2e 6e 73 2d 6c 78 34 63 61 2d 65 2d 30 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 30 70 78 3b 7d 2e 6e 73 2d 6c 78 34 63 61 2d 76 2d 30 20 2e 6e 73 2d 6c 78 34 63 61 2d 65 2d 32 7b 6d 61 78 2d 68 65 69 67 68 74 3a 31 38 32 70 78 3b 7d 2e 6e Data Ascii: k:0;}.ns-lx4ca-e-12{-mys-score:1;flex-shrink:0;flex-grow:0;height:44.8px;display:block;}.ns-lx4ca-e-13{box-sizing:border-box;height:8.4px;width:1px;flex-shrink:0;}.ns-lx4ca-v-0 .ns-lx4ca-e-0{font-size:20px;}.ns-lx4ca-v-0 .ns-lx4ca-e-2{max-height:182px;}.n
2024-10-09 16:13:00 UTC	1390	IN	Data Raw: 6f 6d 2f 73 69 6d 67 61 64 2f 32 34 39 39 36 32 38 35 34 35 33 39 33 37 31 32 36 33 39 2f 31 34 37 36 33 30 30 34 36 35 38 31 31 37 37 38 39 35 33 37 3f 77 3d 34 30 30 26 68 3d 32 30 39 26 74 77 3d 31 26 71 3d 37 35 29 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 72 65 70 65 61 74 3a 6e 6f 2d 72 65 70 65 61 74 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 73 69 7a 65 3a 63 6f 6e 74 61 69 6e 3b 61 6e 69 6d 61 74 69 6f 6e 3a 66 61 64 65 69 6e 5f 6b 65 79 66 72 61 6d 65 73 20 2e 39 73 20 62 6f 74 68 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 70 6f 73 69 74 69 6f 6e 3a 63 65 6e 74 65 72 3b 7d 2e 6e 73 2d 6c 78 34 63 61 2d 65 2d 36 7b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 22 52 6f 62 6f 74 6f 22 2c 52 6f 62 6f 74 6f 2c 41 72 69 61 6c 2c 73 61 6e 73 2d 73 65 72 69 66 3b 7d 2e 6e 73 2d 6c Data Ascii: om/simgad/2499628545393712639/14763004658117789537?w=400&h=209&tw=1&q=75);background-repeat:no-repeat;background-size:contain;animation:fadein_keyframes .9s both;background-position:center;}.ns-lx4ca-e-6{font-family:"Roboto",Roboto,Arial,sans-serif;}.ns-l
2024-10-09 16:13:00 UTC	1390	IN	Data Raw: 2d 31 7d 3b 66 75 6e 63 74 69 6f 6e 20 77 28 29 7b 72 65 74 75 72 6e 20 66 3f 21 21 70 26 26 70 2e 62 72 61 6e 64 73 2e 6c 65 6e 67 74 68 3e 30 3a 21 31 7d 66 75 6e 63 74 69 6f 6e 20 78 28 29 7b 72 65 74 75 72 6e 20 77 28 29 3f 75 28 22 43 68 72 6f 6d 69 75 6d 22 29 3a 28 76 28 22 43 68 72 6f 6d 65 22 29 7c 7c 76 28 22 43 72 69 4f 53 22 29 29 26 26 21 28 77 28 29 3f 30 3a 76 28 22 45 64 67 65 22 29 29 7c 7c 76 28 22 53 69 6c 6b 22 29 7d 3b 21 76 28 22 41 6e 64 72 6f 69 64 22 29 7c 7c 78 28 29 3b 78 28 29 3b 76 28 22 53 61 66 61 72 69 22 29 26 26 28 78 28 29 7c 7c 28 77 28 29 3f 30 3a 76 28 22 43 6f 61 73 74 22 29 29 7c 7c 28 77 28 29 3f 30 3a 76 28 22 4f 70 65 72 61 22 29 29 7c 7c 28 77 28 29 3f 30 3a 76 28 22 45 64 67 65 22 29 29 7c 7c 28 77 28 29 3f 75 Data Ascii: -1};function w(){return f?!!p&&p.brands.length>0:!1}function x(){return w()?u("Chromium"):(v("Chrome")\|\|v("CriOS"))&&!(w()?0:v("Edge"))\|\|v("Silk")};!v("Android")\|\|x();x();v("Safari")&&(x()\|\|(w()?0:v("Coast"))\|\|(w()?0:v("Opera"))\|\|(w()?0:v("Edge"))\|\|(w()?u
2024-10-09 16:13:00 UTC	1390	IN	Data Raw: 6e 20 61 26 26 61 2e 6e 6f 77 26 26 61 2e 74 69 6d 69 6e 67 3f 4d 61 74 68 2e 66 6c 6f 6f 72 28 61 2e 6e 6f 77 28 29 2b 61 2e 74 69 6d 69 6e 67 2e 6e 61 76 69 67 61 74 69 6f 6e 53 74 61 72 74 29 3a 44 61 74 65 2e 6e 6f 77 28 29 7d 66 75 6e 63 74 69 6f 6e 20 51 28 29 7b 63 6f 6e 73 74 20 61 3d 65 2e 70 65 72 66 6f 72 6d 61 6e 63 65 3b 72 65 74 75 72 6e 20 61 26 26 61 2e 6e 6f 77 3f 61 2e 6e 6f 77 28 29 3a 6e 75 6c 6c 7d 3b 76 61 72 20 52 3d 63 6c 61 73 73 7b 63 6f 6e 73 74 72 75 63 74 6f 72 28 61 2c 62 29 7b 76 61 72 20 63 3d 51 28 29 7c 7c 50 28 29 3b 74 68 69 73 2e 6c 61 62 65 6c 3d 61 3b 74 68 69 73 2e 74 79 70 65 3d 62 3b 74 68 69 73 2e 76 61 6c 75 65 3d 63 3b 74 68 69 73 2e 64 75 72 61 74 69 6f 6e 3d 30 3b 74 68 69 73 2e 74 61 73 6b 49 64 3d 74 68 69 Data Ascii: n a&&a.now&&a.timing?Math.floor(a.now()+a.timing.navigationStart):Date.now()}function Q(){const a=e.performance;return a&&a.now?a.now():null};var R=class{constructor(a,b){var c=Q()\|\|P();this.label=a;this.type=b;this.value=c;this.duration=0;this.taskId=thi
2024-10-09 16:13:00 UTC	1390	IN	Data Raw: 6e 20 62 61 28 29 7b 76 61 72 20 61 3d 60 24 7b 4e 2e 6c 6f 63 61 74 69 6f 6e 2e 70 72 6f 74 6f 63 6f 6c 3d 3d 3d 22 68 74 74 70 3a 22 3f 22 68 74 74 70 3a 22 3a 22 68 74 74 70 73 3a 22 7d 2f 2f 24 7b 22 70 61 67 65 61 64 32 2e 67 6f 6f 67 6c 65 73 79 6e 64 69 63 61 74 69 6f 6e 2e 63 6f 6d 22 7d 2f 70 61 67 65 61 64 2f 67 65 6e 5f 32 30 34 60 3b 72 65 74 75 72 6e 20 62 3d 3e 7b 62 3d 7b 69 64 3a 22 75 6e 73 61 66 65 75 72 6c 22 2c 63 74 78 3a 36 30 30 2c 75 72 6c 3a 62 7d 3b 76 61 72 20 63 3d 5b 5d 3b 66 6f 72 28 64 20 69 6e 20 62 29 4c 28 64 2c 62 5b 64 5d 2c 63 29 3b 76 61 72 20 64 3d 63 2e 6a 6f 69 6e 28 22 26 22 29 3b 69 66 28 64 29 7b 62 3d 61 2e 69 6e 64 65 78 4f 66 28 22 23 22 29 3b 62 3c 30 26 26 28 62 3d 61 2e 6c 65 6e 67 74 68 29 3b 63 3d 61 2e Data Ascii: n ba(){var a=`${N.location.protocol==="http:"?"http:":"https:"}//${"pagead2.googlesyndication.com"}/pagead/gen_204`;return b=>{b={id:"unsafeurl",ctx:600,url:b};var c=[];for(d in b)L(d,b[d],c);var d=c.join("&");if(d){b=a.indexOf("#");b<0&&(b=a.length);c=a.
2024-10-09 16:13:00 UTC	1390	IN	Data Raw: 3d 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 26 26 67 6c 6f 62 61 6c 54 68 69 73 2c 61 2c 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 77 69 6e 64 6f 77 2c 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 73 65 6c 66 26 26 73 65 6c 66 2c 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 26 26 67 6c 6f 62 61 6c 5d 3b 66 6f 72 28 76 61 72 20 62 3d 30 3b 62 3c 61 2e 6c 65 6e 67 74 68 3b 2b 2b 62 29 7b 76 61 72 20 63 3d 61 5b 62 5d 3b 69 66 28 63 26 26 63 2e 4d 61 74 68 3d 3d 4d 61 74 68 29 72 65 74 75 72 6e 20 63 7d 74 68 72 6f 77 20 45 72 72 6f 72 28 22 43 61 6e 6e 6f 74 20 66 69 6e 64 20 67 6c 6f 62 61 6c 20 6f 62 6a 65 63 74 22 29 3b 7d 76 61 72 20 63 61 3d 62 61 28 74 68 69 73 29 3b 20 66 75 Data Ascii: ==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("Cannot find global object");}var ca=ba(this); fu
2024-10-09 16:13:00 UTC	1390	IN	Data Raw: 61 3f 6b 61 2e 75 73 65 72 41 67 65 6e 74 44 61 74 61 7c 7c 6e 75 6c 6c 3a 6e 75 6c 6c 3b 66 75 6e 63 74 69 6f 6e 20 6c 61 28 61 29 7b 72 65 74 75 72 6e 20 66 61 3f 77 3f 77 2e 62 72 61 6e 64 73 2e 73 6f 6d 65 28 28 7b 62 72 61 6e 64 3a 62 7d 29 3d 3e 62 26 26 62 2e 69 6e 64 65 78 4f 66 28 61 29 21 3d 2d 31 29 3a 21 31 3a 21 31 7d 66 75 6e 63 74 69 6f 6e 20 78 28 61 29 7b 76 61 72 20 62 3b 61 3a 7b 69 66 28 62 3d 6d 2e 6e 61 76 69 67 61 74 6f 72 29 69 66 28 62 3d 62 2e 75 73 65 72 41 67 65 6e 74 29 62 72 65 61 6b 20 61 3b 62 3d 22 22 7d 72 65 74 75 72 6e 20 62 2e 69 6e 64 65 78 4f 66 28 61 29 21 3d 2d 31 7d 3b 66 75 6e 63 74 69 6f 6e 20 79 28 29 7b 72 65 74 75 72 6e 20 66 61 3f 21 21 77 26 26 77 2e 62 72 61 6e 64 73 2e 6c 65 6e 67 74 68 3e 30 3a 21 31 7d Data Ascii: a?ka.userAgentData\|\|null:null;function la(a){return fa?w?w.brands.some(({brand:b})=>b&&b.indexOf(a)!=-1):!1:!1}function x(a){var b;a:{if(b=m.navigator)if(b=b.userAgent)break a;b=""}return b.indexOf(a)!=-1};function y(){return fa?!!w&&w.brands.length>0:!1}
2024-10-09 16:13:00 UTC	1390	IN	Data Raw: 74 65 20 61 2e 67 5b 63 5d 2c 61 2e 68 2d 2d 29 29 7d 7d 20 66 75 6e 63 74 69 6f 6e 20 75 61 28 61 2c 62 2c 63 2c 64 29 7b 66 6f 72 28 76 61 72 20 66 3d 30 3b 66 3c 61 2e 6c 65 6e 67 74 68 3b 2b 2b 66 29 7b 76 61 72 20 65 3d 61 5b 66 5d 3b 69 66 28 21 65 2e 6d 26 26 65 2e 6c 69 73 74 65 6e 65 72 3d 3d 62 26 26 65 2e 63 61 70 74 75 72 65 3d 3d 21 21 63 26 26 65 2e 73 3d 3d 64 29 72 65 74 75 72 6e 20 66 7d 72 65 74 75 72 6e 2d 31 7d 3b 76 61 72 20 77 61 3d 22 63 6c 6f 73 75 72 65 5f 6c 6d 5f 22 2b 28 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2a 31 45 36 7c 30 29 2c 78 61 3d 7b 7d 2c 79 61 3d 30 3b 20 66 75 6e 63 74 69 6f 6e 20 7a 61 28 61 2c 62 2c 63 2c 64 2c 66 29 7b 69 66 28 41 72 72 61 79 2e 69 73 41 72 72 61 79 28 62 29 29 66 6f 72 28 76 61 72 20 65 3d 30 Data Ascii: te a.g[c],a.h--))}} function ua(a,b,c,d){for(var f=0;f<a.length;++f){var e=a[f];if(!e.m&&e.listener==b&&e.capture==!!c&&e.s==d)return f}return-1};var wa="closure_lm_"+(Math.random()*1E6\|0),xa={},ya=0; function za(a,b,c,d,f){if(Array.isArray(b))for(var e=0

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://www.fsist.com.br

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

Phishing

Compliance

Networking

System Summary

Persistence and Installation Behavior

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 235

Chrome Cache Entry: 236

Chrome Cache Entry: 237

Chrome Cache Entry: 238

Chrome Cache Entry: 239

Chrome Cache Entry: 240

Chrome Cache Entry: 241

Chrome Cache Entry: 242

Chrome Cache Entry: 243

Chrome Cache Entry: 244

Chrome Cache Entry: 245

Chrome Cache Entry: 246

Chrome Cache Entry: 247

Chrome Cache Entry: 248

Chrome Cache Entry: 249

Chrome Cache Entry: 250

Chrome Cache Entry: 251

Chrome Cache Entry: 252

Chrome Cache Entry: 253

Chrome Cache Entry: 254

Chrome Cache Entry: 255

Chrome Cache Entry: 256

Chrome Cache Entry: 257

Chrome Cache Entry: 258

Chrome Cache Entry: 259

Chrome Cache Entry: 260

Chrome Cache Entry: 261

Windows Analysis Report
https://www.fsist.com.br

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:58 UTC	2225	OUT	GET /pagead/ads?client=ca-pub-1112480324821546&output=html&adk=1812271804&adf=3025194257&abgtt=3&lmt=1728490377&plaf=1%3A2%2C7%3A2&plat=1%3A128%2C2%3A128%2C3%3A128%2C4%3A128%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.fsist.com.br%2F&pra=7&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373603&bpp=7&bdt=2229&idt=4087&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=632x280%2C340x280&nras=1&correlator=3717780412659&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1 [TRUNCATED] Host: googleads.g.doubleclick.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:59 UTC	788	IN	HTTP/1.1 200 OK P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Timing-Allow-Origin: * Cross-Origin-Resource-Policy: cross-origin Observe-Browsing-Topics: ?1 Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Wed, 09 Oct 2024 16:12:59 GMT Server: cafe Cache-Control: private X-XSS-Protection: 0 Set-Cookie: test_cookie=CheckForPermission; expires=Wed, 09-Oct-2024 16:27:59 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Expires: Wed, 09 Oct 2024 16:12:59 GMT Connection: close Transfer-Encoding: chunked
2024-10-09 16:12:59 UTC	602	IN	Data Raw: 38 30 30 30 0d 0a 3c 73 63 72 69 70 74 3e 77 69 6e 64 6f 77 2e 73 72 61 5f 6c 61 74 65 72 5f 62 6c 6f 63 6b 73 20 3d 20 5b 5d 3b 3c 2f 73 63 72 69 70 74 3e 3c 73 63 72 69 70 74 3e 77 69 6e 64 6f 77 2e 73 72 61 5f 6c 61 74 65 72 5f 62 6c 6f 63 6b 73 2e 70 75 73 68 28 7b 63 72 65 61 74 69 76 65 3a 27 5c 78 33 63 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 5c 78 33 65 5c 78 33 63 68 74 6d 6c 20 5c 78 33 65 5c 78 33 63 68 65 61 64 5c 78 33 65 5c 78 33 63 73 74 79 6c 65 5c 78 33 65 2a 20 7b 6d 61 72 67 69 6e 3a 20 30 3b 70 61 64 64 69 6e 67 3a 20 30 3b 6f 75 74 6c 69 6e 65 3a 20 6e 6f 6e 65 3b 7d 62 6f 64 79 20 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 20 72 67 62 61 28 35 32 2c 20 35 38 2c 20 36 35 2c 20 30 2e 36 30 30 30 30 30 29 3b 62 61 63 6b 64 72 6f 70 2d 66 69 6c Data Ascii: 8000<script>window.sra_later_blocks = [];</script><script>window.sra_later_blocks.push({creative:'\x3c!doctype html\x3e\x3chtml \x3e\x3chead\x3e\x3cstyle\x3e* {margin: 0;padding: 0;outline: none;}body {background: rgba(52, 58, 65, 0.600000);backdrop-fil
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 66 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 36 70 78 3b 70 61 64 64 69 6e 67 3a 20 30 20 36 70 78 20 31 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 20 72 65 6c 61 74 69 76 65 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 20 30 70 78 20 38 70 78 20 31 32 70 78 20 72 67 62 61 28 36 30 2c 20 36 34 2c 20 36 37 2c 20 30 2e 31 35 29 2c 20 30 70 78 20 34 70 78 20 34 70 78 20 72 67 62 61 28 36 30 2c 20 36 34 2c 20 36 37 2c 20 30 2e 33 29 3b 7d 68 74 6d 6c 20 7b 68 65 69 67 68 74 3a 20 31 30 30 25 3b 7d 2e 74 6f 70 72 6f 77 20 7b 77 69 64 74 68 3a 20 31 30 30 25 3b 64 69 73 70 6c 61 79 3a 20 74 61 62 6c 65 3b 68 65 69 67 68 74 3a 20 32 34 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 7d 2e 62 74 6e 20 7b 64 69 73 70 6c 61 79 3a 20 74 61 62 6c Data Ascii: f;border-radius: 6px;padding: 0 6px 1px;position: relative;box-shadow: 0px 8px 12px rgba(60, 64, 67, 0.15), 0px 4px 4px rgba(60, 64, 67, 0.3);}html {height: 100%;}.toprow {width: 100%;display: table;height: 24px;background-color: #fff;}.btn {display: tabl
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 66 2d 38 39 39 38 5c 78 32 32 5c 78 33 65 5c 78 33 63 64 69 76 20 69 64 5c 78 33 64 5c 78 32 32 63 61 72 64 5c 78 32 32 5c 78 33 65 5c 78 33 63 64 69 76 20 63 6c 61 73 73 5c 78 33 64 5c 78 32 32 74 6f 70 72 6f 77 5c 78 32 32 5c 78 33 65 5c 78 33 63 64 69 76 20 69 64 5c 78 33 64 5c 78 32 32 68 65 61 64 69 6e 67 5c 78 32 32 20 63 6c 61 73 73 5c 78 33 64 5c 78 32 32 62 74 6e 20 68 65 61 64 69 6e 67 5c 78 32 32 5c 78 33 65 5c 78 33 63 64 69 76 20 63 6c 61 73 73 5c 78 33 64 5c 78 32 32 74 65 78 74 5c 78 32 32 5c 78 33 65 41 6e c3 ba 6e 63 69 6f 5c 78 33 63 2f 64 69 76 5c 78 33 65 5c 78 33 63 2f 64 69 76 5c 78 33 65 5c 78 33 63 64 69 76 20 69 64 5c 78 33 64 5c 78 32 32 72 65 70 6f 72 74 2d 62 75 74 74 6f 6e 5c 78 32 32 20 63 6c 61 73 73 5c 78 33 64 5c 78 32 32 Data Ascii: f-8998\x22\x3e\x3cdiv id\x3d\x22card\x22\x3e\x3cdiv class\x3d\x22toprow\x22\x3e\x3cdiv id\x3d\x22heading\x22 class\x3d\x22btn heading\x22\x3e\x3cdiv class\x3d\x22text\x22\x3eAnncio\x3c/div\x3e\x3c/div\x3e\x3cdiv id\x3d\x22report-button\x22 class\x3d\x22
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 61 20 63 68 61 72 73 65 74 5c 5c 78 33 64 5c 5c 78 32 32 55 54 46 2d 38 5c 5c 78 32 32 5c 5c 78 33 65 5c 5c 78 33 63 73 63 72 69 70 74 5c 5c 78 33 65 76 61 72 20 6a 73 63 56 65 72 73 69 6f 6e 20 5c 5c 78 33 64 20 5c 5c 78 32 37 72 32 30 32 34 31 30 30 37 5c 5c 78 32 37 3b 5c 5c 78 33 63 2f 73 63 72 69 70 74 5c 5c 78 33 65 5c 5c 78 33 63 73 63 72 69 70 74 5c 5c 78 33 65 76 61 72 20 67 6f 6f 67 6c 65 5f 63 61 73 6d 5c 5c 78 33 64 5b 5d 3b 5c 5c 78 33 63 2f 73 63 72 69 70 74 5c 5c 78 33 65 5c 5c 78 33 63 73 74 79 6c 65 5c 5c 78 33 65 48 54 4d 4c 2c 42 4f 44 59 7b 68 65 69 67 68 74 3a 31 30 30 25 3b 77 69 64 74 68 3a 31 30 30 25 3b 6d 61 72 67 69 6e 3a 30 3b 70 61 64 64 69 6e 67 3a 30 3b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 7d 23 6d 79 73 2d 77 72 Data Ascii: a charset\\x3d\\x22UTF-8\\x22\\x3e\\x3cscript\\x3evar jscVersion \\x3d \\x27r20241007\\x27;\\x3c/script\\x3e\\x3cscript\\x3evar google_casm\\x3d[];\\x3c/script\\x3e\\x3cstyle\\x3eHTML,BODY{height:100%;width:100%;margin:0;padding:0;overflow:hidden;}#mys-wr
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 3b 66 6c 65 78 2d 67 72 6f 77 3a 31 3b 68 65 69 67 68 74 3a 31 30 30 25 3b 7d 2e 6e 73 2d 71 67 70 36 79 2d 65 2d 32 7b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 33 3b 2d 6d 79 73 2d 6f 76 65 72 66 6c 6f 77 2d 6c 69 6d 69 74 3a 30 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 3b 66 6c 65 78 2d 67 72 6f 77 3a 31 3b 7d 2e 6e 73 2d 71 67 70 36 79 2d 65 2d 33 7b 2d 6d 79 73 2d 6f 76 65 72 66 6c 6f 77 2d 6c 69 6d 69 74 3a 30 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 33 3b 6c 65 74 74 65 72 2d 73 70 61 63 69 6e 67 3a 30 2e 30 32 Data Ascii: rection:column;flex-grow:1;height:100%;}.ns-qgp6y-e-2{line-height:1.3;-mys-overflow-limit:0;box-sizing:border-box;display:flex;flex-direction:column;flex-grow:1;}.ns-qgp6y-e-3{-mys-overflow-limit:0;box-sizing:border-box;line-height:1.3;letter-spacing:0.02
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 36 79 2d 65 2d 31 38 2c 2e 6e 73 2d 71 67 70 36 79 2d 65 2d 32 32 7b 2d 6d 79 73 2d 73 63 6f 72 65 3a 31 3b 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 3b 7d 2e 6e 73 2d 71 67 70 36 79 2d 65 2d 31 39 7b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 2e 33 3b 2d 6d 79 73 2d 6f 76 65 72 66 6c 6f 77 2d 6c 69 6d 69 74 3a 30 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 6d 69 6e 2d 77 69 64 74 68 3a 32 30 70 78 3b 7d 2e 6e 73 2d 71 67 70 36 79 2d 65 2d 32 30 7b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 34 30 30 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 2d 6d 79 73 2d 6f 76 65 72 66 6c 6f 77 2d 6c 69 6d 69 74 3a 30 3b 77 69 64 74 68 3a 35 30 25 3b 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 Data Ascii: 6y-e-18,.ns-qgp6y-e-22{-mys-score:1;display:inline;}.ns-qgp6y-e-19{line-height:1.3;-mys-overflow-limit:0;box-sizing:border-box;min-width:20px;}.ns-qgp6y-e-20{font-weight:400;text-align:center;-mys-overflow-limit:0;width:50%;display:flex;align-items:center
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 61 6e 73 6c 61 74 65 59 28 30 25 29 3b 66 69 6c 74 65 72 3a 6f 70 61 63 69 74 79 28 31 30 30 25 29 3b 7d 7d 20 40 6b 65 79 66 72 61 6d 65 73 20 73 6c 69 64 65 2d 69 6e 7b 66 72 6f 6d 7b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 2d 31 30 30 25 29 3b 66 69 6c 74 65 72 3a 6f 70 61 63 69 74 79 28 30 25 29 3b 7d 74 6f 7b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 30 25 29 3b 66 69 6c 74 65 72 3a 6f 70 61 63 69 74 79 28 31 30 30 25 29 3b 7d 7d 20 40 6b 65 79 66 72 61 6d 65 73 20 73 6c 69 64 65 2d 69 6e 2d 72 69 67 68 74 7b 66 72 6f 6d 7b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 58 28 31 30 30 25 29 3b 66 69 6c 74 65 72 3a 6f 70 61 63 69 74 79 28 30 25 29 3b 7d 74 6f 7b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 Data Ascii: anslateY(0%);filter:opacity(100%);}} @keyframes slide-in{from{transform:translateX(-100%);filter:opacity(0%);}to{transform:translateX(0%);filter:opacity(100%);}} @keyframes slide-in-right{from{transform:translateX(100%);filter:opacity(0%);}to{transform:tr
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 65 2d 32 32 7b 77 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 77 72 61 70 3b 7d 2e 6e 73 2d 71 67 70 36 79 2d 65 2d 32 30 7b 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 6e 6f 6e 65 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 34 32 32 70 78 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 36 70 78 20 31 32 70 78 20 72 67 62 61 28 31 33 34 2c 31 34 30 2c 31 35 30 2c 30 2e 36 35 29 3b 63 75 72 73 6f 72 3a 70 6f 69 6e 74 65 72 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 38 38 66 66 3b 7d 2e 6e 73 2d 71 67 70 36 79 2d 65 2d 32 31 7b 63 6f 6c 6f 72 3a 23 66 66 66 3b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 5c 5c 78 32 32 47 6f 6f 67 6c 65 20 53 61 6e 73 5c 5c 78 32 32 2c 20 5c 5c 78 32 32 52 6f 62 6f 74 6f 5c 5c 78 32 32 2c 47 6f 6f 67 6c 65 20 53 61 6e Data Ascii: e-22{white-space:nowrap;}.ns-qgp6y-e-20{text-decoration:none;border-radius:422px;box-shadow:0 6px 12px rgba(134,140,150,0.65);cursor:pointer;background-color:#0088ff;}.ns-qgp6y-e-21{color:#fff;font-family:\\x22Google Sans\\x22, \\x22Roboto\\x22,Google San
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 67 65 5c 5c 78 32 32 29 29 7c 7c 76 28 5c 5c 78 32 32 53 69 6c 6b 5c 5c 78 32 32 29 7d 3b 21 76 28 5c 5c 78 32 32 41 6e 64 72 6f 69 64 5c 5c 78 32 32 29 7c 7c 78 28 29 3b 78 28 29 3b 76 28 5c 5c 78 32 32 53 61 66 61 72 69 5c 5c 78 32 32 29 5c 5c 78 32 36 5c 5c 78 32 36 28 78 28 29 7c 7c 28 77 28 29 3f 30 3a 76 28 5c 5c 78 32 32 43 6f 61 73 74 5c 5c 78 32 32 29 29 7c 7c 28 77 28 29 3f 30 3a 76 28 5c 5c 78 32 32 4f 70 65 72 61 5c 5c 78 32 32 29 29 7c 7c 28 77 28 29 3f 30 3a 76 28 5c 5c 78 32 32 45 64 67 65 5c 5c 78 32 32 29 29 7c 7c 28 77 28 29 3f 75 28 5c 5c 78 32 32 4d 69 63 72 6f 73 6f 66 74 20 45 64 67 65 5c 5c 78 32 32 29 3a 76 28 5c 5c 78 32 32 45 64 67 2f 5c 5c 78 32 32 29 29 7c 7c 77 28 29 5c 5c 78 32 36 5c 5c 78 32 36 75 28 5c 5c 78 32 32 4f 70 65 Data Ascii: ge\\x22))\|\|v(\\x22Silk\\x22)};!v(\\x22Android\\x22)\|\|x();x();v(\\x22Safari\\x22)\\x26\\x26(x()\|\|(w()?0:v(\\x22Coast\\x22))\|\|(w()?0:v(\\x22Opera\\x22))\|\|(w()?0:v(\\x22Edge\\x22))\|\|(w()?u(\\x22Microsoft Edge\\x22):v(\\x22Edg/\\x22))\|\|w()\\x26\\x26u(\\x22Ope
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 5c 78 33 64 5c 5c 78 32 32 3b 6c 65 74 20 72 5c 5c 78 33 64 61 2e 69 6e 64 65 78 4f 66 28 6d 29 3b 72 5c 5c 78 33 63 30 3f 63 5c 5c 78 33 64 61 2b 6d 2b 63 3a 28 72 2b 5c 5c 78 33 64 6d 2e 6c 65 6e 67 74 68 2c 6d 5c 5c 78 33 64 61 2e 69 6e 64 65 78 4f 66 28 5c 5c 78 32 32 5c 5c 78 32 36 5c 5c 78 32 32 2c 72 29 2c 63 5c 5c 78 33 64 6d 5c 5c 78 33 65 5c 5c 78 33 64 30 3f 61 2e 73 75 62 73 74 72 69 6e 67 28 30 2c 72 29 2b 63 2b 61 2e 73 75 62 73 74 72 69 6e 67 28 6d 29 3a 61 2e 73 75 62 73 74 72 69 6e 67 28 30 2c 72 29 2b 63 29 7d 72 65 74 75 72 6e 20 63 2e 6c 65 6e 67 74 68 5c 5c 78 33 65 36 45 34 3f 64 21 5c 5c 78 33 64 5c 5c 78 33 64 76 6f 69 64 20 30 3f 4d 28 61 2c 62 2c 64 2c 76 6f 69 64 20 30 2c 71 29 3a 61 3a 63 7d 3b 76 61 72 20 4e 5c 5c 78 33 64 77 Data Ascii: \x3d\\x22;let r\\x3da.indexOf(m);r\\x3c0?c\\x3da+m+c:(r+\\x3dm.length,m\\x3da.indexOf(\\x22\\x26\\x22,r),c\\x3dm\\x3e\\x3d0?a.substring(0,r)+c+a.substring(m):a.substring(0,r)+c)}return c.length\\x3e6E4?d!\\x3d\\x3dvoid 0?M(a,b,d,void 0,q):a:c};var N\\x3dw

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:59 UTC	851	OUT	GET /recaptcha/api2/webworker.js?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY HTTP/1.1 Host: www.google.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: same-origin Sec-Fetch-Mode: same-origin Sec-Fetch-Dest: worker Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=w23a324qou9v Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:59 UTC	917	IN	HTTP/1.1 200 OK Content-Type: text/javascript; charset=utf-8 Cross-Origin-Embedder-Policy: require-corp Report-To: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} Report-To: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]} Expires: Wed, 09 Oct 2024 16:12:59 GMT Date: Wed, 09 Oct 2024 16:12:59 GMT Cache-Control: private, max-age=300 Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d" Cross-Origin-Resource-Policy: same-site Server: ESF X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked
2024-10-09 16:12:59 UTC	108	IN	Data Raw: 36 36 0d 0a 69 6d 70 6f 72 74 53 63 72 69 70 74 73 28 27 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 73 74 61 74 69 63 2e 63 6f 6d 2f 72 65 63 61 70 74 63 68 61 2f 72 65 6c 65 61 73 65 73 2f 78 64 73 30 72 7a 47 72 6b 74 52 38 38 75 45 5a 32 4a 55 76 64 67 4f 59 2f 72 65 63 61 70 74 63 68 61 5f 5f 65 6e 2e 6a 73 27 29 3b 0d 0a Data Ascii: 66importScripts('https://www.gstatic.com/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__en.js');
2024-10-09 16:12:59 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:12:59 UTC	839	OUT	GET /js/bg/zEg4NaMiOUeKKZ2pqXY4HMvMf5VCq4avNU_6WgNs2Cw.js HTTP/1.1 Host: www.google.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdMiaEUAAAAAFAkiK8dBv08u5jE6PHeAMa-qmyf&co=aHR0cHM6Ly93d3cuZnNpc3QuY29tLmJyOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=w23a324qou9v Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:12:59 UTC	812	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="botguard-scs" Report-To: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]} Content-Length: 18702 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Tue, 08 Oct 2024 07:52:48 GMT Expires: Wed, 08 Oct 2025 07:52:48 GMT Cache-Control: public, max-age=31536000 Last-Modified: Tue, 17 Sep 2024 15:00:00 GMT Content-Type: text/javascript Vary: Accept-Encoding Age: 116411 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-10-09 16:12:59 UTC	578	IN	Data Raw: 2f 2a 20 41 6e 74 69 2d 73 70 61 6d 2e 20 57 61 6e 74 20 74 6f 20 73 61 79 20 68 65 6c 6c 6f 3f 20 43 6f 6e 74 61 63 74 20 28 62 61 73 65 36 34 29 20 59 6d 39 30 5a 33 56 68 63 6d 51 74 59 32 39 75 64 47 46 6a 64 45 42 6e 62 32 39 6e 62 47 55 75 59 32 39 74 20 2a 2f 20 28 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 50 3d 66 75 6e 63 74 69 6f 6e 28 56 2c 41 29 7b 69 66 28 21 28 41 3d 28 56 3d 6e 75 6c 6c 2c 4c 29 2e 74 72 75 73 74 65 64 54 79 70 65 73 2c 41 29 7c 7c 21 41 2e 63 72 65 61 74 65 50 6f 6c 69 63 79 29 72 65 74 75 72 6e 20 56 3b 74 72 79 7b 56 3d 41 2e 63 72 65 61 74 65 50 6f 6c 69 63 79 28 22 62 67 22 2c 7b 63 72 65 61 74 65 48 54 4d 4c 3a 6b 2c 63 72 65 61 74 65 53 63 72 69 70 74 3a 6b 2c 63 72 65 61 74 65 53 63 72 69 70 74 55 52 4c 3a 6b 7d Data Ascii: /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */ (function(){var P=function(V,A){if(!(A=(V=null,L).trustedTypes,A)\|\|!A.createPolicy)return V;try{V=A.createPolicy("bg",{createHTML:k,createScript:k,createScriptURL:k}
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 44 58 2d 4c 69 63 65 6e 73 65 2d 49 64 65 6e 74 69 66 69 65 72 3a 20 41 70 61 63 68 65 2d 32 2e 30 27 2c 0a 27 2a 2f 27 2c 0a 27 76 61 72 20 6f 6b 3d 66 75 6e 63 74 69 6f 6e 28 56 2c 41 2c 67 29 7b 69 66 28 56 2e 6c 65 6e 67 74 68 3d 3d 33 29 7b 66 6f 72 28 67 3d 30 3b 67 3c 33 3b 67 2b 2b 29 41 5b 67 5d 2b 3d 56 5b 67 5d 3b 66 6f 72 28 67 3d 28 56 3d 5b 31 33 2c 38 2c 31 33 2c 31 32 2c 31 36 2c 35 2c 33 2c 31 30 2c 31 35 5d 2c 30 29 3b 67 3c 39 3b 67 2b 2b 29 41 5b 33 5d 28 41 2c 67 25 33 2c 56 5b 67 5d 29 7d 7d 2c 59 3d 66 75 6e 63 74 69 6f 6e 28 56 2c 41 2c 67 29 7b 69 66 28 56 3d 3d 34 37 36 7c 7c 56 3d 3d 31 36 36 29 41 2e 54 5b 56 5d 3f 41 2e 54 5b 56 5d 2e 63 6f 6e 63 61 74 28 67 29 3a 41 2e 54 5b 56 5d 3d 56 7a 28 67 2c 41 29 3b 65 6c 73 65 7b 69 Data Ascii: DX-License-Identifier: Apache-2.0','*/','var ok=function(V,A,g){if(V.length==3){for(g=0;g<3;g++)A[g]+=V[g];for(g=(V=[13,8,13,12,16,5,3,10,15],0);g<9;g++)A[3](A,g%3,V[g])}},Y=function(V,A,g){if(V==476\|\|V==166)A.T[V]?A.T[V].concat(g):A.T[V]=Vz(g,A);else{i
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 3d 76 6f 69 64 20 30 2c 42 29 2c 28 56 2e 44 3d 66 61 6c 73 65 2c 56 29 2e 73 3d 31 2c 5b 5d 29 2c 56 2e 67 3d 5b 5d 2c 56 2e 4f 3d 76 6f 69 64 20 30 2c 56 2e 58 3d 76 6f 69 64 20 30 2c 28 56 2e 49 3d 28 56 2e 42 3d 66 61 6c 73 65 2c 56 2e 54 3d 28 56 2e 53 3d 30 2c 56 2e 4e 5f 3d 30 2c 5b 5d 29 2c 56 2e 6b 69 3d 66 61 6c 73 65 2c 56 2e 4a 3d 30 2c 28 56 2e 6c 3d 56 2c 56 29 2e 47 3d 30 2c 30 29 2c 56 29 2e 58 71 3d 32 35 2c 28 28 56 2e 52 30 3d 28 28 56 2e 6c 5a 3d 5b 5d 2c 56 29 2e 70 71 3d 67 2c 66 61 6c 73 65 29 2c 56 29 2e 43 3d 30 2c 56 29 2e 55 3d 28 56 2e 48 42 3d 38 30 30 31 2c 56 2e 46 3d 30 2c 56 2e 41 3d 6e 75 6c 6c 2c 28 56 2e 6a 3d 5b 5d 2c 56 2e 6f 30 3d 5b 5d 2c 56 2e 4e 3d 28 56 2e 48 3d 76 6f 69 64 20 30 2c 30 29 2c 56 29 2e 68 3d 76 6f Data Ascii: =void 0,B),(V.D=false,V).s=1,[]),V.g=[],V.O=void 0,V.X=void 0,(V.I=(V.B=false,V.T=(V.S=0,V.N_=0,[]),V.ki=false,V.J=0,(V.l=V,V).G=0,0),V).Xq=25,((V.R0=((V.lZ=[],V).pq=g,false),V).C=0,V).U=(V.HB=8001,V.F=0,V.A=null,(V.j=[],V.o0=[],V.N=(V.H=void 0,0),V).h=vo
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 28 50 2c 4c 2e 6c 29 29 29 29 29 7d 29 2c 56 29 2c 66 75 6e 63 74 69 6f 6e 28 4c 2c 50 29 7b 28 4c 3d 28 50 3d 4f 28 4c 29 2c 78 28 50 2c 4c 2e 6c 29 29 2c 4c 29 5b 30 5d 2e 72 65 6d 6f 76 65 45 76 65 6e 74 4c 69 73 74 65 6e 65 72 28 4c 5b 31 5d 2c 4c 5b 32 5d 2c 77 29 7d 29 2c 66 75 6e 63 74 69 6f 6e 28 4c 2c 50 2c 49 2c 53 29 7b 21 64 28 74 72 75 65 2c 66 61 6c 73 65 2c 4c 2c 50 29 26 26 28 50 3d 46 47 28 4c 29 2c 49 3d 50 2e 71 5f 2c 53 3d 50 2e 64 56 2c 4c 2e 6c 3d 3d 4c 7c 7c 53 3d 3d 4c 2e 6e 71 26 26 49 3d 3d 4c 29 26 26 28 59 28 50 2e 4d 5f 2c 4c 2c 53 2e 61 70 70 6c 79 28 49 2c 50 2e 4b 29 29 2c 4c 2e 55 3d 4c 2e 52 28 29 29 7d 29 29 2c 66 75 6e 63 74 69 6f 6e 28 4c 2c 50 2c 49 2c 53 29 7b 28 50 3d 28 49 3d 28 53 3d 28 50 3d 28 49 3d 4f 28 4c 29 Data Ascii: (P,L.l)))))}),V),function(L,P){(L=(P=O(L),x(P,L.l)),L)[0].removeEventListener(L[1],L[2],w)}),function(L,P,I,S){!d(true,false,L,P)&&(P=FG(L),I=P.q_,S=P.dV,L.l==L\|\|S==L.nq&&I==L)&&(Y(P.M_,L,S.apply(I,P.K)),L.U=L.R())})),function(L,P,I,S){(P=(I=(S=(P=(I=O(L)
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 29 29 2c 32 35 34 29 2c 56 2c 66 75 6e 63 74 69 6f 6e 28 4c 29 7b 59 4f 28 4c 2c 33 29 7d 29 2c 56 29 2c 5b 5d 29 2c 32 36 32 29 2c 56 2c 66 75 6e 63 74 69 6f 6e 28 4c 2c 50 2c 49 2c 53 29 7b 59 28 28 50 3d 4f 28 28 53 3d 4f 28 4c 29 2c 4c 29 29 2c 49 3d 4f 28 4c 29 2c 49 29 2c 4c 2c 78 28 53 2c 4c 29 7c 7c 78 28 50 2c 4c 29 29 7d 29 2c 30 29 2c 56 29 2c 36 37 35 29 2c 56 29 2c 66 75 6e 63 74 69 6f 6e 28 4c 2c 50 2c 49 2c 53 29 7b 59 28 28 50 3d 28 49 3d 28 53 3d 28 49 3d 4f 28 4c 29 2c 4f 28 4c 29 29 2c 78 28 49 2c 4c 29 29 2c 78 29 28 53 2c 4c 29 2c 53 29 2c 4c 2c 50 2b 49 29 7d 29 2c 66 75 6e 63 74 69 6f 6e 28 4c 2c 50 2c 49 29 7b 59 28 28 49 3d 28 50 3d 4f 28 4c 29 2c 4f 28 4c 29 29 2c 49 29 2c 4c 2c 22 22 2b 78 28 50 2c 4c 29 29 7d 29 29 2c 56 29 2c Data Ascii: )),254),V,function(L){YO(L,3)}),V),[]),262),V,function(L,P,I,S){Y((P=O((S=O(L),L)),I=O(L),I),L,x(S,L)\|\|x(P,L))}),0),V),675),V),function(L,P,I,S){Y((P=(I=(S=(I=O(L),O(L)),x(I,L)),x)(S,L),S),L,P+I)}),function(L,P,I){Y((I=(P=O(L),O(L)),I),L,""+x(P,L))})),V),
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 28 56 2c 41 29 7b 72 65 74 75 72 6e 20 41 3d 5a 28 56 29 2c 41 26 31 32 38 26 26 28 41 3d 41 26 31 32 37 7c 5a 28 56 29 3c 3c 37 29 2c 41 7d 2c 46 3d 66 75 6e 63 74 69 6f 6e 28 56 2c 41 2c 67 2c 6b 2c 4a 2c 42 2c 66 2c 62 2c 4c 2c 50 2c 49 2c 53 2c 70 2c 4b 29 7b 69 66 28 70 3d 78 28 34 37 36 2c 67 29 2c 70 3e 3d 67 2e 47 29 74 68 72 6f 77 5b 43 2c 33 31 5d 3b 66 6f 72 28 66 3d 28 42 3d 28 6b 3d 30 2c 67 2e 73 62 2e 6c 65 6e 67 74 68 29 2c 49 3d 41 2c 70 29 3b 49 3e 30 3b 29 53 3d 66 3e 3e 33 2c 62 3d 66 25 38 2c 4a 3d 67 2e 67 5b 53 5d 2c 4c 3d 38 2d 28 62 7c 30 29 2c 4c 3d 4c 3c 49 3f 4c 3a 49 2c 56 26 26 28 4b 3d 67 2c 50 3d 66 2c 4b 2e 48 21 3d 50 3e 3e 36 26 26 28 4b 2e 48 3d 50 3e 3e 36 2c 50 3d 78 28 31 38 33 2c 4b 29 2c 4b Data Ascii: function(V,A){return A=Z(V),A&128&&(A=A&127\|Z(V)<<7),A},F=function(V,A,g,k,J,B,f,b,L,P,I,S,p,K){if(p=x(476,g),p>=g.G)throw[C,31];for(f=(B=(k=0,g.sb.length),I=A,p);I>0;)S=f>>3,b=f%8,J=g.g[S],L=8-(b\|0),L=L<I?L:I,V&&(K=g,P=f,K.H!=P>>6&&(K.H=P>>6,P=x(183,K),K
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 28 41 7c 30 29 2b 32 29 25 33 5d 2c 56 5b 41 5d 3d 28 56 5b 41 5d 7c 30 29 2d 28 56 5b 28 28 41 7c 30 29 2b 31 29 25 33 5d 7c 30 29 2d 28 6b 7c 30 29 5e 28 41 3d 3d 31 3f 6b 3c 3c 67 3a 6b 3e 3e 3e 67 29 7d 63 61 74 63 68 28 4a 29 7b 74 68 72 6f 77 20 4a 3b 7d 7d 2c 57 3d 66 75 6e 63 74 69 6f 6e 28 56 2c 41 2c 67 2c 6b 2c 4a 2c 42 29 7b 69 66 28 56 2e 56 2e 6c 65 6e 67 74 68 29 7b 56 2e 42 3d 28 56 2e 42 26 26 22 3a 54 51 52 3a 54 51 52 3a 22 28 29 2c 74 72 75 65 29 2c 56 2e 51 32 3d 41 3b 74 72 79 7b 4a 3d 56 2e 52 28 29 2c 56 2e 4a 3d 30 2c 56 2e 55 3d 4a 2c 56 2e 53 3d 4a 2c 56 2e 57 3d 30 2c 6b 3d 58 47 28 56 2c 41 29 2c 41 3d 67 3f 30 3a 31 30 2c 42 3d 56 2e 52 28 29 2d 56 2e 53 2c 56 2e 49 2b 3d 42 2c 56 2e 56 32 26 26 56 2e 56 32 28 42 2d 56 2e 46 Data Ascii: (A\|0)+2)%3],V[A]=(V[A]\|0)-(V[((A\|0)+1)%3]\|0)-(k\|0)^(A==1?k<<g:k>>>g)}catch(J){throw J;}},W=function(V,A,g,k,J,B){if(V.V.length){V.B=(V.B&&":TQR:TQR:"(),true),V.Q2=A;try{J=V.R(),V.J=0,V.U=J,V.S=J,V.W=0,k=XG(V,A),A=g?0:10,B=V.R()-V.S,V.I+=B,V.V2&&V.V2(B-V.F
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 69 73 2e 6e 2b 2b 2c 74 68 69 73 2e 6f 2e 6c 65 6e 67 74 68 3c 35 30 29 3f 74 68 69 73 2e 6f 2e 70 75 73 68 28 6b 29 3a 28 4a 3d 4d 61 74 68 2e 66 6c 6f 6f 72 28 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2a 74 68 69 73 2e 6e 29 2c 4a 3c 35 30 26 26 28 74 68 69 73 2e 6f 5b 4a 5d 3d 6b 29 29 7d 2c 67 29 2e 70 72 6f 74 6f 74 79 70 65 2e 47 58 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 74 68 69 73 2e 6e 3d 3d 3d 30 29 72 65 74 75 72 6e 5b 30 2c 30 5d 3b 72 65 74 75 72 6e 20 74 68 69 73 2e 6f 2e 73 6f 72 74 28 66 75 6e 63 74 69 6f 6e 28 6b 2c 4a 29 7b 72 65 74 75 72 6e 20 6b 2d 4a 7d 29 2c 5b 74 68 69 73 2e 6e 2c 74 68 69 73 2e 6f 5b 74 68 69 73 2e 6f 2e 6c 65 6e 67 74 68 3e 3e 31 5d 5d 7d 2c 6e 65 77 20 67 29 2c 6e 65 77 20 67 29 2c 66 75 6e 63 74 69 6f 6e 28 Data Ascii: is.n++,this.o.length<50)?this.o.push(k):(J=Math.floor(Math.random()*this.n),J<50&&(this.o[J]=k))},g).prototype.GX=function(){if(this.n===0)return[0,0];return this.o.sort(function(k,J){return k-J}),[this.n,this.o[this.o.length>>1]]},new g),new g),function(
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 56 7d 2c 67 2e 63 6f 6e 63 61 74 3d 66 75 6e 63 74 69 6f 6e 28 6b 29 7b 56 3d 6b 7d 2c 67 7d 2c 79 7a 3d 66 75 6e 63 74 69 6f 6e 28 56 2c 41 2c 67 2c 6b 29 7b 6c 28 28 67 3d 4f 28 28 6b 3d 4f 28 56 29 2c 56 29 29 2c 67 29 2c 7a 28 78 28 6b 2c 56 29 2c 41 29 2c 56 29 7d 2c 75 51 3d 66 75 6e 63 74 69 6f 6e 28 56 2c 41 2c 67 2c 6b 29 7b 72 65 74 75 72 6e 28 59 28 34 37 36 2c 56 2c 28 51 7a 28 56 2c 28 28 6b 3d 78 28 34 37 36 2c 56 29 2c 56 2e 67 26 26 6b 3c 56 2e 47 29 3f 28 59 28 34 37 36 2c 56 2c 56 2e 47 29 2c 50 34 28 56 2c 41 29 29 3a 59 28 34 37 36 2c 56 2c 41 29 2c 67 29 29 2c 6b 29 29 2c 78 29 28 35 34 2c 56 29 7d 2c 77 61 3d 66 75 6e 63 74 69 6f 6e 28 56 2c 41 29 7b 72 65 74 75 72 6e 20 56 28 66 75 Data Ascii: unction(){return V},g.concat=function(k){V=k},g},yz=function(V,A,g,k){l((g=O((k=O(V),V)),g),z(x(k,V),A),V)},uQ=function(V,A,g,k){return(Y(476,V,(Qz(V,((k=x(476,V),V.g&&k<V.G)?(Y(476,V,V.G),P4(V,A)):Y(476,V,A),g)),k)),x)(54,V)},wa=function(V,A){return V(fu
2024-10-09 16:12:59 UTC	1390	IN	Data Raw: 35 2c 4c 7d 2c 66 7d 2c 4e 78 3d 66 75 6e 63 74 69 6f 6e 28 56 2c 41 2c 67 2c 6b 2c 4a 29 7b 66 6f 72 28 56 3d 28 6b 3d 28 4a 3d 56 5b 32 5d 7c 30 2c 30 29 2c 56 5b 33 5d 7c 30 29 3b 6b 3c 31 35 3b 6b 2b 2b 29 41 3d 41 3e 3e 3e 38 7c 41 3c 3c 32 34 2c 56 3d 56 3e 3e 3e 38 7c 56 3c 3c 32 34 2c 41 2b 3d 67 7c 30 2c 41 5e 3d 4a 2b 32 31 33 31 2c 67 3d 67 3c 3c 33 7c 67 3e 3e 3e 32 39 2c 56 2b 3d 4a 7c 30 2c 4a 3d 4a 3c 3c 33 7c 4a 3e 3e 3e 32 39 2c 67 5e 3d 41 2c 56 5e 3d 6b 2b 32 31 33 31 2c 4a 5e 3d 56 3b 72 65 74 75 72 6e 5b 67 3e 3e 3e 32 34 26 32 35 35 2c 67 3e 3e 3e 31 36 26 32 35 35 2c 67 3e 3e 3e 38 26 32 35 35 2c 67 3e 3e 3e 30 26 32 35 35 2c 41 3e 3e 3e 32 34 26 32 35 35 2c 41 3e 3e 3e 31 36 26 32 35 35 2c 41 3e 3e 3e 38 26 32 35 35 2c 41 3e 3e 3e Data Ascii: 5,L},f},Nx=function(V,A,g,k,J){for(V=(k=(J=V[2]\|0,0),V[3]\|0);k<15;k++)A=A>>>8\|A<<24,V=V>>>8\|V<<24,A+=g\|0,A^=J+2131,g=g<<3\|g>>>29,V+=J\|0,J=J<<3\|J>>>29,g^=A,V^=k+2131,J^=V;return[g>>>24&255,g>>>16&255,g>>>8&255,g>>>0&255,A>>>24&255,A>>>16&255,A>>>8&255,A>>>

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:13:01 UTC	1996	OUT	GET /pagead/drt/s?v=r20120211 HTTP/1.1 Host: googleads.g.doubleclick.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: same-origin Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490377&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373594&bpp=7&bdt=2220&idt=4021&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&correlator=3717780412659&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=350&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087700%2C44795921%2C95343454%2C95344187%2C95340253%2C95340255&oid=2&pvsid=3387663613290942&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0 [TRUNCATED] Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: test_cookie=CheckForPermission
2024-10-09 16:13:01 UTC	427	IN	HTTP/1.1 200 OK Timing-Allow-Origin: * Cross-Origin-Resource-Policy: cross-origin X-Content-Type-Options: nosniff Server: cafe X-XSS-Protection: 0 Date: Wed, 09 Oct 2024 16:09:14 GMT Cache-Control: public, max-age=3600 Content-Type: text/html; charset=UTF-8 Age: 227 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked
2024-10-09 16:13:01 UTC	154	IN	Data Raw: 38 66 0d 0a 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 3e 0a 3c 68 74 6d 6c 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 2f 70 61 67 65 61 64 2f 64 72 74 2f 75 69 22 20 2f 3e 0a 20 20 3c 2f 68 65 61 64 3e 0a 3c 2f 68 74 6d 6c 3e 0d 0a 30 0d 0a 0d 0a Data Ascii: 8f<!DOCTYPE HTML PUBLIC><html> <head> <meta http-equiv="refresh" content="0;url=https://www.google.com/pagead/drt/ui" /> </head></html>0

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:13:01 UTC	2938	OUT	GET /pagead/adview?ai=CLTW2i6sGZ6PTD6O0vPIPhMebsAfI4qDneZexre-PEpud9f0IEAEg7JXMEmDJBqAB0v6XmQPIAQmoAwHIA8sEqgTpAU_Q7ftT7bMaD3dknSey1Y_abBgdNmr8eT3vFaWxejVkIKARYKUo4iN1bheooeA3vzlv6lfi_AwWESJ5RVCCp3pbpiSxrB8MBEzxWPJ4CJYBS6SWjjtL0jUAQ1zCgRlBB6scPg6XQ-ZXntnzo6hoL9CLJv_l0-cmQLTVFQYsgcqNGTKQwX-sOuC8gPForP68vt0RUXQJFQvkEK1yyXNi-QNNog-ICXIr4OHTkVFqNnjGhf-t_ytmyksO6y9Ge5LYKvy7JQB2Haez2Ik7vEmgVQHma0dlellgb_XZk_of4zQ4fSILvyl25VgNwAT6jcuJyASIBY_aw7hNkgUECAQYAZIFBAgFGASgBi6AB5aB6GaoB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAf3wrEC2AcA8gcEEIePB9IIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WJCwsrjYgYkDmglZaHR0cHM6Ly92ZXJ5ZmFzdC5pby8_YXA9YWR3JmFzPWdfZF9mYXN0X2luJmRtW2Fkc109b2xkX2FkYXB0aXZlJmRtW3R5cGVdPWRpcyZnYWRfc291cmNlPTWACgHICwHaDBEKCxDgn9H0t5_CgYwBEgIBA7gT5APYEwyIFAHQFQGYFgGAFwGyFx4KGggAEhRwdWItMTExMjQ4MDMyNDgyMTU0NhgAGAG6FwI4AbIYBRguIgEA0BgB6BgB&sigh=qbJyYs89t8o&uach_m=%5BUACH%5D&ase=2&cid=CAQSTwDpaXnffSGglvXajMBiiuqjET8IlTglUO_xUJZy9OLgcQS5cca-I09KoRjmFGaY98KoN7GZpd59RNA7D3Fetg5hNz-PSfma5qZjCHIdRuk [TRUNCATED] Host: googleads.g.doubleclick.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: same-origin Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Attribution-Reporting-Eligible: event-source, trigger;navigation-source Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2729452301&adk=478090332&adf=2045730728&pi=t.ma~as.2729452301&w=340&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490377&rafmt=1&format=340x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373601&bpp=1&bdt=2227&idt=4072&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=632x280&correlator=3717780412659&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=913&ady=89&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087700%2C44795921%2C95343454%2C95344187%2C95340253%2C95340255&oid=2&pvsid=3387663613290942&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C [TRUNCATED] Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: test_cookie=CheckForPermission
2024-10-09 16:13:01 UTC	1532	IN	HTTP/1.1 302 Found P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Timing-Allow-Origin: * Cross-Origin-Resource-Policy: cross-origin Content-Security-Policy: script-src 'none'; object-src 'none' Location: https://www.googleadservices.com/pagead/ar-adview/?nrh={"aggregation_keys":{"1":"0x640d0b56d858ab7a0000000000000000","2":"0x9287e9b3699c67ec0000000000000000","3":"0x5d5a458ec563cba70000000000000000","4":"0x1bd28245f76793860000000000000000","5":"0xfc830e82d0666a180000000000000000"},"debug_key":"2479776657994952427","debug_reporting":true,"destination":"https://veryfast.io","event_report_window":"259200","expiry":"2592000","filter_data":{"2":["858128210"],"22":["true"],"4":["10-09"],"6":["true"]},"priority":"500","source_event_id":"13165955329465578129"}&andc=true Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Wed, 09 Oct 2024 16:13:01 GMT Server: cafe Content-Length: 0 X-XSS-Protection: 0 Set-Cookie: IDE=AHWqTUklxxDBufsV0VBsKFtARTLIlSFeBLdQ2rt5XxhLN_RC9uoDAw0pEUR7lHp4Iq8; expires=Fri, 09-Oct-2026 16:13:01 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none Set-Cookie: test_cookie=; expires=Fri, 01-Aug-2008 22:45:55 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:13:01 UTC	2900	OUT	GET /pagead/adview?ai=CXD_Gi6sGZ8HlAZz1xtYP5fLv2ArI4qDnea7_y_SMEpud9f0IEAEg7JXMEmDJBqAB0v6XmQPIAQGoAwHIA8sEqgTsAU_Q6WqEUoy1qnL0OxaOitF7swr85dLKaf-9hpvHt2oNmTkOGzoESjytbrcIH7UMo6MVaAwbVmv_W1-09Oh_-8oE02SKeKSy8M2u7tt3Qyzkgo7HQJF05Npwrlllh5mJa3hrxdxDjndoIYIk2NVEfIb1xkOgiuMHDWvy0zogHwF7Ob7ZfMLSai9kc6chwytF7a66T68f7HUxddKSE1qNDQ37rMXovPgXBWkaWIIbADNV2vbKK_ztuFXJtVX58nOI5i58-wE9efja5J2a4LVsyp0biaopOJUOKOmsdaGdXD8hjxjTAkB4hu-YmgpwwAT6jcuJyASIBY_aw7hNkgUECAQYAZIFBAgFGASAB5aB6GaoB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAf3wrEC2AcB8gcEEM3aA9IIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WNu5pLjYgYkDmglaaHR0cHM6Ly92ZXJ5ZmFzdC5pby8_YXA9YWR3JmFzPWdfZF9mYXN0X2luJmRtW2Fkc109bmV3X2FkYXB0aXZlMSZkbVt0eXBlXT1kaXMmZ2FkX3NvdXJjZT01gAoByAsB2gwRCgsQsOHPhNLoiMafARICAQPYEwyIFAHQFQGYFgGAFwGyFx4KGggAEhRwdWItMTExMjQ4MDMyNDgyMTU0NhgAGAG6FwI4AbIYBRgBIgEA0BgB6BgB&sigh=--3SeGG9aLg&uach_m=%5BUACH%5D&ase=2&cid=CAQSTgDpaXnfZnIVk-fOIQaupnusu55DVVZBG6suq82BGPPiFM2BoaD5neYItQT-jAilcBWk_uEXEGhbsQdsOybLj1lgRxJACTv97UGsuOCdGBgB&ni [TRUNCATED] Host: googleads.g.doubleclick.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: same-origin Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Attribution-Reporting-Eligible: event-source, trigger;navigation-source Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1112480324821546&output=html&h=280&slotname=2292748629&adk=1425304730&adf=3140933869&pi=t.ma~as.2292748629&w=632&abgtt=3&fwrn=4&fwrnh=100&lmt=1728490377&rafmt=1&format=632x280&url=https%3A%2F%2Fwww.fsist.com.br%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1728490373594&bpp=7&bdt=2220&idt=4021&shv=r20241007&mjsv=m202410030101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&correlator=3717780412659&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=271&ady=350&biw=1280&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087700%2C44795921%2C95343454%2C95344187%2C95340253%2C95340255&oid=2&pvsid=3387663613290942&tmod=1031379896&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0 [TRUNCATED] Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: test_cookie=CheckForPermission
2024-10-09 16:13:01 UTC	1532	IN	HTTP/1.1 302 Found P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Timing-Allow-Origin: * Cross-Origin-Resource-Policy: cross-origin Content-Security-Policy: script-src 'none'; object-src 'none' Location: https://www.googleadservices.com/pagead/ar-adview/?nrh={"aggregation_keys":{"1":"0x640d0b56d858ab7a0000000000000000","2":"0x9287e9b3699c67ec0000000000000000","3":"0x5d5a458ec563cba70000000000000000","4":"0x1bd28245f76793860000000000000000","5":"0xfc830e82d0666a180000000000000000"},"debug_key":"5987496929793797500","debug_reporting":true,"destination":"https://veryfast.io","event_report_window":"259200","expiry":"2592000","filter_data":{"2":["858128210"],"22":["true"],"4":["10-09"],"6":["true"]},"priority":"500","source_event_id":"11115375212546558961"}&andc=true Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Wed, 09 Oct 2024 16:13:01 GMT Server: cafe Content-Length: 0 X-XSS-Protection: 0 Set-Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; expires=Fri, 09-Oct-2026 16:13:01 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none Set-Cookie: test_cookie=; expires=Fri, 01-Aug-2008 22:45:55 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:13:02 UTC	798	OUT	GET /pagead/drt/ui HTTP/1.1 Host: www.google.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: https://googleads.g.doubleclick.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-09 16:13:02 UTC	426	IN	HTTP/1.1 302 Found Timing-Allow-Origin: * Cross-Origin-Resource-Policy: cross-origin Location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA Cache-Control: private Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Wed, 09 Oct 2024 16:13:02 GMT Server: cafe Content-Length: 0 X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:13:03 UTC	903	OUT	GET /pagead/drt/si?st=NO_DATA HTTP/1.1 Host: googleads.g.doubleclick.net Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Referer: https://googleads.g.doubleclick.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg
2024-10-09 16:13:03 UTC	664	IN	HTTP/1.1 200 OK Cross-Origin-Resource-Policy: cross-origin P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Wed, 09 Oct 2024 16:13:03 GMT Server: cafe Content-Length: 0 X-XSS-Protection: 0 Set-Cookie: DSID=NO_DATA; expires=Wed, 09-Oct-2024 17:13:03 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Expires: Wed, 09 Oct 2024 16:13:03 GMT Cache-Control: private Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:13:04 UTC	917	OUT	GET /pagead/drt/si?st=NO_DATA HTTP/1.1 Host: googleads.g.doubleclick.net Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiUocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUX Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Referer: https://googleads.g.doubleclick.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: IDE=AHWqTUlFyoLquwEhxS5IgrtWK_r9TWXHlcHyWeGmiQbH5WpmOgeQezICEeNk01pDuQg; DSID=NO_DATA
2024-10-09 16:13:04 UTC	664	IN	HTTP/1.1 200 OK Cross-Origin-Resource-Policy: cross-origin P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Wed, 09 Oct 2024 16:13:04 GMT Server: cafe Content-Length: 0 X-XSS-Protection: 0 Set-Cookie: DSID=NO_DATA; expires=Wed, 09-Oct-2024 17:13:04 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Expires: Wed, 09 Oct 2024 16:13:04 GMT Cache-Control: private Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-10-09 16:13:07 UTC	1064	OUT	GET /favicon.ico HTTP/1.1 Host: www.fsist.com.br Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://www.fsist.com.br/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: UsuarioID2=TRgD5lCspYvH; UsuarioID=319771858; qtd=0; jscspri=CAF25CD5; _ga=GA1.3.343168682.1728490375; _gid=GA1.3.2065232189.1728490375; _gat=1; _ga_S81MMC8J4C=GS1.3.1728490378.1.0.1728490378.0.0.0; __gads=ID=0a826a3351289280:T=1728490378:RT=1728490378:S=ALNI_MbE24fYRB6KuYly9gWtJIdFEg0xhQ; __gpi=UID=00000f05e6b2da9f:T=1728490378:RT=1728490378:S=ALNI_MZ2zH-pNufkyQyS4Y1qysUniRyiCQ; __eoi=ID=032924807577f1f5:T=1728490378:RT=1728490378:S=AA-AfjY8glguKwKrF5oT01NjKnLk
2024-10-09 16:13:07 UTC	396	IN	HTTP/1.1 200 OK Cache-Control: max-age=2592000 Content-Type: image/x-icon Last-Modified: Wed, 30 Dec 2015 16:55:32 GMT Accept-Ranges: bytes ETag: "01afae42243d11:0" Server: Microsoft-IIS/10.0 Server: FSist X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Wed, 09 Oct 2024 16:13:06 GMT Connection: close Content-Length: 1150
2024-10-09 16:13:07 UTC	1150	IN	Data Raw: 00 00 01 00 01 00 10 10 00 00 01 00 20 00 68 04 00 00 16 00 00 00 28 00 00 00 10 00 00 00 20 00 00 00 01 00 20 00 00 00 00 00 00 04 00 00 23 2e 00 00 23 2e 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 4d c1 31 01 4d c1 31 91 4d c1 31 db 4b c0 2f a8 46 be 28 72 43 be 26 42 43 be 26 1d 45 be 27 06 4d c1 31 00 4d c1 31 00 4d c1 31 00 4d c1 31 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 4d c1 31 16 4c c1 30 d0 51 c2 35 ff 93 d9 82 fb 91 d9 80 f9 74 cf 5e ec 5f c7 46 d4 51 c2 35 af 49 bf 2c 82 44 be 27 54 48 bf 2b 2c 4e c1 32 09 4d c1 31 00 00 00 00 00 00 00 00 00 4d c1 31 00 4b c0 2e 4a 58 c5 3e f5 63 c9 4a fa b8 e6 ad fa ff ff ff fe f4 fa f2 fe e0 f4 db fe c4 ea bb ff a4 df 96 fe 85 d4 72 f8 5c c6 43 e9 4b c0 2f 61 4c c1 30 00 00 00 00 00 00 Data Ascii: h( #.#.M1M1M1K/F(rC&BC&E'M1M1M1M1M1L0Q5t^_FQ5I,D'TH+,N2M1M1K.JX>cJr\CK/aL0