| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 | 91.241.94.8 | 200 OK | 0 B |
URL User Request GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3 |
GET /OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 302 Moved Temporarily
Location: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
Connection: Keep-Alive
Content-Length: 0
Set-Cookie: TS01c950bd=01b02e3e893b435504b707d4cec8afd6441add0e186c050953c4941eadff528105399049858e3250c2aa86e44b2fcc29a3d8c99970; Path=/; Domain=.www.timpromos.com.br
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 | 91.241.94.8 | 200 OK | 46 kB |
URL User Request GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
File typeHTML document, ASCII text, with very long lines (61289) Hashd84bec10452f4701b71c86ec5dcf3272 168977f5c3faff9d1f74d7e4e61a75eaf548c379 ec79377822378f148b227eb273f19ad467247ee8fb6b7ae28a0e0de53f1b6733
NIDS | Severity | Alert | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3 |
GET /OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: TS01c950bd=01b02e3e893b435504b707d4cec8afd6441add0e186c050953c4941eadff528105399049858e3250c2aa86e44b2fcc29a3d8c99970
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 15:39:23 GMT
Cache-Control: no-cache, private
Strict-Transport-Security: max-age=0; includeSubDomains
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
X-Varnish: 599935787
Age: 0
Via: 1.1 brtim1-varnish-5d85b7f48-6dnqh (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: MISS
Access-Control-Allow-Origin: *
Set-Cookie: ng_session=eyJpdiI6IkovUGIzUnJjNDV5dG9QNVErdnY3eFE9PSIsInZhbHVlIjoiU2ZudEVPR3dRb1ZiN0ptaEJOdE0vcnpzdTN1SnFWZnVhUEVsTEw4REkvVjI2MDkvbjB0TGFhaXVkUlRwSVlRZ1o0WjNtZE5TTUtQVlNkOGRWbUxyUm1FczB4a2FXc3NOZGJEMDk0M0FYb0ZHdXpRRGFwK1RHY3NIeWR5UHBOanIiLCJtYWMiOiI1MjE5Y2FjZmFiMWY5NTMwNmNmMzIyYjJhZDg3N2NmYTM4OGU1ZDllODNiZjkxYTNhMzMzMzllMmU4ZGVhYzQ1IiwidGFnIjoiIn0%3D; expires=Fri, 10 May 2024 21:39:23 GMT; Max-Age=21600; path=/; httponly; samesite=lax
ctxid=eyJpdiI6IkZLeEJFdGxXaUdDNUJORVhXSDJ4ZXc9PSIsInZhbHVlIjoiU0k0QnRrTG9iUDNGZkZMUFRVaVVyS2pPeDhLUU1WM0JlTFk3R0ZQWEc0ZlN6cnhoWU8zY0ZrYzlCNzN4VG44R2IxaHMwSTJTZklqZGdGS0xtTEpMRlVIc29Qd0ZjMngrOTNxS0hmY2JhVWM9IiwibWFjIjoiYTcwODhmYmI4NGYzNmRjYjk5MjNiMWY4OTBjNTA5OTVmM2RlYTA5MGU4YzIzMjgzYWNlNzY3MjEwZTJmMTU5YiIsInRhZyI6IiJ9; expires=Mon, 08 May 2034 15:39:23 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
rd=deleted; expires=Thu, 11 May 2023 15:39:22 GMT; Max-Age=0; path=/; httponly; samesite=lax
userSessionID=eyJpdiI6ImU3YW5qUUtsYXVXTVFyUlo2MmRTdnc9PSIsInZhbHVlIjoibW1GYWY0dTZoV3hsRTBjT2tYdGhLejV2WGtsVzNySHc2TkNiZjE3TlJReStFSDR4QitvUEJIeUJjdk1pN2FHUkJ5NUtXODJVTVYzSDlJSFEyZzVCdEJIY2hzSGtBeEZIbWt2dXNRRXV4dFk9IiwibWFjIjoiYjg3NmE4ZDliMzY1MWFkZWJlNjgyMzViZTMzN2IzZjJiY2U3ODZiYTZmYzkyM2NjOGQ0ZGZiZjU1OWEwZDY0MSIsInRhZyI6IiJ9; expires=Fri, 10 May 2024 16:09:23 GMT; Max-Age=1800; path=/; httponly; samesite=lax
userPermID=eyJpdiI6IlpJVFdBRjc4T0R2aUJhaVZtZ0hYOVE9PSIsInZhbHVlIjoiWXkxYWt2SUtVd1llUEUva2hnSmtqRGExRzVLcUFFLzlKRDBRWGtGaFQrNXdIT0NwUCtYdEQvajJTN3VhckxQZUc2OFNtMTlWS25qRERRdHNEVGQ0Y3AyVW9sOXo0VTBna3FiNTBqR0tNcGs9IiwibWFjIjoiNDRhMmI5ZmQ5MTA2YmE1MDgyYzU1OWVlMzk2OGVlMzVmN2I5ZmQ3OTg1M2YwOGE3NGViNGZhYTk1YTMwOTc4YiIsInRhZyI6IiJ9; expires=Mon, 08 May 2034 15:39:23 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
TS01c950bd=01b02e3e893b435504b707d4cec8afd6441add0e186c050953c4941eadff528105399049858e3250c2aa86e44b2fcc29a3d8c99970; Path=/; Domain=.www.timpromos.com.br
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52 | 91.241.94.8 | 200 OK | 3.1 kB |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52 IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
File typeASCII text, with CRLF, LF line terminators Hash5c68dc7f869919ea52fff1ca7b59900d 54f044e2490c433b166e822f0c794d32ddafc638 02403d4dc531f5ed01df67faa19ec3c8b96a290b8b916668684e6357ad7365a0
GET /OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52 HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
Cookie: TS01c950bd=01b02e3e893b435504b707d4cec8afd6441add0e186c050953c4941eadff528105399049858e3250c2aa86e44b2fcc29a3d8c99970; ng_session=eyJpdiI6IkovUGIzUnJjNDV5dG9QNVErdnY3eFE9PSIsInZhbHVlIjoiU2ZudEVPR3dRb1ZiN0ptaEJOdE0vcnpzdTN1SnFWZnVhUEVsTEw4REkvVjI2MDkvbjB0TGFhaXVkUlRwSVlRZ1o0WjNtZE5TTUtQVlNkOGRWbUxyUm1FczB4a2FXc3NOZGJEMDk0M0FYb0ZHdXpRRGFwK1RHY3NIeWR5UHBOanIiLCJtYWMiOiI1MjE5Y2FjZmFiMWY5NTMwNmNmMzIyYjJhZDg3N2NmYTM4OGU1ZDllODNiZjkxYTNhMzMzMzllMmU4ZGVhYzQ1IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkZLeEJFdGxXaUdDNUJORVhXSDJ4ZXc9PSIsInZhbHVlIjoiU0k0QnRrTG9iUDNGZkZMUFRVaVVyS2pPeDhLUU1WM0JlTFk3R0ZQWEc0ZlN6cnhoWU8zY0ZrYzlCNzN4VG44R2IxaHMwSTJTZklqZGdGS0xtTEpMRlVIc29Qd0ZjMngrOTNxS0hmY2JhVWM9IiwibWFjIjoiYTcwODhmYmI4NGYzNmRjYjk5MjNiMWY4OTBjNTA5OTVmM2RlYTA5MGU4YzIzMjgzYWNlNzY3MjEwZTJmMTU5YiIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImU3YW5qUUtsYXVXTVFyUlo2MmRTdnc9PSIsInZhbHVlIjoibW1GYWY0dTZoV3hsRTBjT2tYdGhLejV2WGtsVzNySHc2TkNiZjE3TlJReStFSDR4QitvUEJIeUJjdk1pN2FHUkJ5NUtXODJVTVYzSDlJSFEyZzVCdEJIY2hzSGtBeEZIbWt2dXNRRXV4dFk9IiwibWFjIjoiYjg3NmE4ZDliMzY1MWFkZWJlNjgyMzViZTMzN2IzZjJiY2U3ODZiYTZmYzkyM2NjOGQ0ZGZiZjU1OWEwZDY0MSIsInRhZyI6IiJ9; userPermID=eyJpdiI6IlpJVFdBRjc4T0R2aUJhaVZtZ0hYOVE9PSIsInZhbHVlIjoiWXkxYWt2SUtVd1llUEUva2hnSmtqRGExRzVLcUFFLzlKRDBRWGtGaFQrNXdIT0NwUCtYdEQvajJTN3VhckxQZUc2OFNtMTlWS25qRERRdHNEVGQ0Y3AyVW9sOXo0VTBna3FiNTBqR0tNcGs9IiwibWFjIjoiNDRhMmI5ZmQ5MTA2YmE1MDgyYzU1OWVlMzk2OGVlMzVmN2I5ZmQ3OTg1M2YwOGE3NGViNGZhYTk1YTMwOTc4YiIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 15:38:37 GMT
Last-Modified: Tue, 11 Jul 2023 09:00:37 GMT
ETag: "56be-600325524041f-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3052
Content-Type: text/css
X-Varnish: 605691995 607398725
Age: 46
Via: 1.1 brtim1-varnish-5d85b7f48-lwm6b (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=999
Connection: Keep-Alive
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/images/Bemobi/OTA-timgameskids1-logoHeader.png | 91.241.94.8 | 200 OK | 9.7 kB |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/images/Bemobi/OTA-timgameskids1-logoHeader.png IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
File typePNG image data, 111 x 70, 8-bit/color RGBA, non-interlaced Hash6da9ebdc999edd3ba3c5e2cde0b01d61 54078e9fa6d1e26ce41028f5057bcc80f031f41e 141c0d48f06736237ded509d4df01a20418e34e54fc5ae4351090ed9dc1570a8
GET /OTA-BRTIM-BEMOBKIDS/assets/images/Bemobi/OTA-timgameskids1-logoHeader.png HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
Cookie: TS01c950bd=01b02e3e893b435504b707d4cec8afd6441add0e186c050953c4941eadff528105399049858e3250c2aa86e44b2fcc29a3d8c99970; ng_session=eyJpdiI6IkovUGIzUnJjNDV5dG9QNVErdnY3eFE9PSIsInZhbHVlIjoiU2ZudEVPR3dRb1ZiN0ptaEJOdE0vcnpzdTN1SnFWZnVhUEVsTEw4REkvVjI2MDkvbjB0TGFhaXVkUlRwSVlRZ1o0WjNtZE5TTUtQVlNkOGRWbUxyUm1FczB4a2FXc3NOZGJEMDk0M0FYb0ZHdXpRRGFwK1RHY3NIeWR5UHBOanIiLCJtYWMiOiI1MjE5Y2FjZmFiMWY5NTMwNmNmMzIyYjJhZDg3N2NmYTM4OGU1ZDllODNiZjkxYTNhMzMzMzllMmU4ZGVhYzQ1IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkZLeEJFdGxXaUdDNUJORVhXSDJ4ZXc9PSIsInZhbHVlIjoiU0k0QnRrTG9iUDNGZkZMUFRVaVVyS2pPeDhLUU1WM0JlTFk3R0ZQWEc0ZlN6cnhoWU8zY0ZrYzlCNzN4VG44R2IxaHMwSTJTZklqZGdGS0xtTEpMRlVIc29Qd0ZjMngrOTNxS0hmY2JhVWM9IiwibWFjIjoiYTcwODhmYmI4NGYzNmRjYjk5MjNiMWY4OTBjNTA5OTVmM2RlYTA5MGU4YzIzMjgzYWNlNzY3MjEwZTJmMTU5YiIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImU3YW5qUUtsYXVXTVFyUlo2MmRTdnc9PSIsInZhbHVlIjoibW1GYWY0dTZoV3hsRTBjT2tYdGhLejV2WGtsVzNySHc2TkNiZjE3TlJReStFSDR4QitvUEJIeUJjdk1pN2FHUkJ5NUtXODJVTVYzSDlJSFEyZzVCdEJIY2hzSGtBeEZIbWt2dXNRRXV4dFk9IiwibWFjIjoiYjg3NmE4ZDliMzY1MWFkZWJlNjgyMzViZTMzN2IzZjJiY2U3ODZiYTZmYzkyM2NjOGQ0ZGZiZjU1OWEwZDY0MSIsInRhZyI6IiJ9; userPermID=eyJpdiI6IlpJVFdBRjc4T0R2aUJhaVZtZ0hYOVE9PSIsInZhbHVlIjoiWXkxYWt2SUtVd1llUEUva2hnSmtqRGExRzVLcUFFLzlKRDBRWGtGaFQrNXdIT0NwUCtYdEQvajJTN3VhckxQZUc2OFNtMTlWS25qRERRdHNEVGQ0Y3AyVW9sOXo0VTBna3FiNTBqR0tNcGs9IiwibWFjIjoiNDRhMmI5ZmQ5MTA2YmE1MDgyYzU1OWVlMzk2OGVlMzVmN2I5ZmQ3OTg1M2YwOGE3NGViNGZhYTk1YTMwOTc4YiIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 15:22:09 GMT
Last-Modified: Wed, 31 Aug 2022 12:35:17 GMT
ETag: "2614-5e788bab358b1"
Content-Length: 9748
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 15:22:09 GMT
Content-Type: image/png
X-Varnish: 608013946 474925684
Age: 2593034
Via: 1.1 brtim1-varnish-5d85b7f48-lwm6b (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
|
|
| www.timpromos.com.br/security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3klMe-xYsD7LboLFXdU1SByw6aG_7srq-grMDTIEUBKRzxIdybz5Iuy43vV9gXxn | 91.241.94.8 | 200 | 51 B |
URL GET HTTP/1.1www.timpromos.com.br/security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3klMe-xYsD7LboLFXdU1SByw6aG_7srq-grMDTIEUBKRzxIdybz5Iuy43vV9gXxn IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
File typeGIF image data, version 89a, 1 x 1 Hash49cdc214849d5ced018d230677b14076 0e75513436e6b01963759f6a88282445ff2e5b3a 7455bacb03f7ef04d79010638db14d8434cf7a349914c2ee99eb5d4220338675
GET /security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3klMe-xYsD7LboLFXdU1SByw6aG_7srq-grMDTIEUBKRzxIdybz5Iuy43vV9gXxn HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
Cookie: TS01c950bd=01b02e3e893b435504b707d4cec8afd6441add0e186c050953c4941eadff528105399049858e3250c2aa86e44b2fcc29a3d8c99970; ng_session=eyJpdiI6IkovUGIzUnJjNDV5dG9QNVErdnY3eFE9PSIsInZhbHVlIjoiU2ZudEVPR3dRb1ZiN0ptaEJOdE0vcnpzdTN1SnFWZnVhUEVsTEw4REkvVjI2MDkvbjB0TGFhaXVkUlRwSVlRZ1o0WjNtZE5TTUtQVlNkOGRWbUxyUm1FczB4a2FXc3NOZGJEMDk0M0FYb0ZHdXpRRGFwK1RHY3NIeWR5UHBOanIiLCJtYWMiOiI1MjE5Y2FjZmFiMWY5NTMwNmNmMzIyYjJhZDg3N2NmYTM4OGU1ZDllODNiZjkxYTNhMzMzMzllMmU4ZGVhYzQ1IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkZLeEJFdGxXaUdDNUJORVhXSDJ4ZXc9PSIsInZhbHVlIjoiU0k0QnRrTG9iUDNGZkZMUFRVaVVyS2pPeDhLUU1WM0JlTFk3R0ZQWEc0ZlN6cnhoWU8zY0ZrYzlCNzN4VG44R2IxaHMwSTJTZklqZGdGS0xtTEpMRlVIc29Qd0ZjMngrOTNxS0hmY2JhVWM9IiwibWFjIjoiYTcwODhmYmI4NGYzNmRjYjk5MjNiMWY4OTBjNTA5OTVmM2RlYTA5MGU4YzIzMjgzYWNlNzY3MjEwZTJmMTU5YiIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImU3YW5qUUtsYXVXTVFyUlo2MmRTdnc9PSIsInZhbHVlIjoibW1GYWY0dTZoV3hsRTBjT2tYdGhLejV2WGtsVzNySHc2TkNiZjE3TlJReStFSDR4QitvUEJIeUJjdk1pN2FHUkJ5NUtXODJVTVYzSDlJSFEyZzVCdEJIY2hzSGtBeEZIbWt2dXNRRXV4dFk9IiwibWFjIjoiYjg3NmE4ZDliMzY1MWFkZWJlNjgyMzViZTMzN2IzZjJiY2U3ODZiYTZmYzkyM2NjOGQ0ZGZiZjU1OWEwZDY0MSIsInRhZyI6IiJ9; userPermID=eyJpdiI6IlpJVFdBRjc4T0R2aUJhaVZtZ0hYOVE9PSIsInZhbHVlIjoiWXkxYWt2SUtVd1llUEUva2hnSmtqRGExRzVLcUFFLzlKRDBRWGtGaFQrNXdIT0NwUCtYdEQvajJTN3VhckxQZUc2OFNtMTlWS25qRERRdHNEVGQ0Y3AyVW9sOXo0VTBna3FiNTBqR0tNcGs9IiwibWFjIjoiNDRhMmI5ZmQ5MTA2YmE1MDgyYzU1OWVlMzk2OGVlMzVmN2I5ZmQ3OTg1M2YwOGE3NGViNGZhYTk1YTMwOTc4YiIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Fri, 10 May 2024 15:39:24 GMT
Cache-Control: no-store, private
Content-Disposition: attachment; filename="pixel"
Pragma: no-cache
Accept-Ranges: bytes
Content-Type: image/gif
Content-Length: 51
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/wr-images/close-wap.png | 91.241.94.8 | 200 OK | 213 B |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/wr-images/close-wap.png IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
File typePNG image data, 21 x 21, 8-bit/color RGBA, non-interlaced Hashd249b874e72ea9acce9f630517b48c4e 78a06a4b69bbd59d7fa9c70723640c775caf37cc 1861c75e1a0c132e357bccf763069d785f5954fe959d784abb1773f93b87bd28
GET /OTA-BRTIM-BEMOBKIDS/assets/wr-images/close-wap.png HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
Cookie: TS01c950bd=01b02e3e893b435504b707d4cec8afd6441add0e186c050953c4941eadff528105399049858e3250c2aa86e44b2fcc29a3d8c99970; ng_session=eyJpdiI6IkovUGIzUnJjNDV5dG9QNVErdnY3eFE9PSIsInZhbHVlIjoiU2ZudEVPR3dRb1ZiN0ptaEJOdE0vcnpzdTN1SnFWZnVhUEVsTEw4REkvVjI2MDkvbjB0TGFhaXVkUlRwSVlRZ1o0WjNtZE5TTUtQVlNkOGRWbUxyUm1FczB4a2FXc3NOZGJEMDk0M0FYb0ZHdXpRRGFwK1RHY3NIeWR5UHBOanIiLCJtYWMiOiI1MjE5Y2FjZmFiMWY5NTMwNmNmMzIyYjJhZDg3N2NmYTM4OGU1ZDllODNiZjkxYTNhMzMzMzllMmU4ZGVhYzQ1IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkZLeEJFdGxXaUdDNUJORVhXSDJ4ZXc9PSIsInZhbHVlIjoiU0k0QnRrTG9iUDNGZkZMUFRVaVVyS2pPeDhLUU1WM0JlTFk3R0ZQWEc0ZlN6cnhoWU8zY0ZrYzlCNzN4VG44R2IxaHMwSTJTZklqZGdGS0xtTEpMRlVIc29Qd0ZjMngrOTNxS0hmY2JhVWM9IiwibWFjIjoiYTcwODhmYmI4NGYzNmRjYjk5MjNiMWY4OTBjNTA5OTVmM2RlYTA5MGU4YzIzMjgzYWNlNzY3MjEwZTJmMTU5YiIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImU3YW5qUUtsYXVXTVFyUlo2MmRTdnc9PSIsInZhbHVlIjoibW1GYWY0dTZoV3hsRTBjT2tYdGhLejV2WGtsVzNySHc2TkNiZjE3TlJReStFSDR4QitvUEJIeUJjdk1pN2FHUkJ5NUtXODJVTVYzSDlJSFEyZzVCdEJIY2hzSGtBeEZIbWt2dXNRRXV4dFk9IiwibWFjIjoiYjg3NmE4ZDliMzY1MWFkZWJlNjgyMzViZTMzN2IzZjJiY2U3ODZiYTZmYzkyM2NjOGQ0ZGZiZjU1OWEwZDY0MSIsInRhZyI6IiJ9; userPermID=eyJpdiI6IlpJVFdBRjc4T0R2aUJhaVZtZ0hYOVE9PSIsInZhbHVlIjoiWXkxYWt2SUtVd1llUEUva2hnSmtqRGExRzVLcUFFLzlKRDBRWGtGaFQrNXdIT0NwUCtYdEQvajJTN3VhckxQZUc2OFNtMTlWS25qRERRdHNEVGQ0Y3AyVW9sOXo0VTBna3FiNTBqR0tNcGs9IiwibWFjIjoiNDRhMmI5ZmQ5MTA2YmE1MDgyYzU1OWVlMzk2OGVlMzVmN2I5ZmQ3OTg1M2YwOGE3NGViNGZhYTk1YTMwOTc4YiIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 15:20:14 GMT
Last-Modified: Tue, 11 Jul 2023 09:00:32 GMT
ETag: "d5-6003254e5e153"
Content-Length: 213
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 15:20:14 GMT
Content-Type: image/png
X-Varnish: 605549475 473120112
Age: 2593149
Via: 1.1 brtim1-varnish-5d85b7f48-lwm6b (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
|
|
| analytics-br-tim.securewebfraud.io/web/v1/content/view/Confirmation/br_tim/AQ4z3klMe-xYsD7LboLFXdU1SByw6aG_7srq-grMDTIEUBKRzxIdybz5Iuy43vV9gXxn | 91.220.208.18 | 200 | 51 B |
URL GET HTTP/1.1analytics-br-tim.securewebfraud.io/web/v1/content/view/Confirmation/br_tim/AQ4z3klMe-xYsD7LboLFXdU1SByw6aG_7srq-grMDTIEUBKRzxIdybz5Iuy43vV9gXxn IP91.220.208.18:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
File typeGIF image data, version 89a, 1 x 1 Hash49cdc214849d5ced018d230677b14076 0e75513436e6b01963759f6a88282445ff2e5b3a 7455bacb03f7ef04d79010638db14d8434cf7a349914c2ee99eb5d4220338675
GET /web/v1/content/view/Confirmation/br_tim/AQ4z3klMe-xYsD7LboLFXdU1SByw6aG_7srq-grMDTIEUBKRzxIdybz5Iuy43vV9gXxn HTTP/1.1
Host: analytics-br-tim.securewebfraud.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Fri, 10 May 2024 15:39:23 GMT
Cache-Control: no-store, private
Content-Disposition: attachment; filename="pixel"
Pragma: no-cache
Accept-Ranges: bytes
Content-Type: image/gif
Content-Length: 51
Keep-Alive: timeout=2, max=1000
Connection: Keep-Alive
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/assets/images/Bemobi/OTA-timgameskids1-bg.jpg | 91.241.94.8 | 200 OK | 46 kB |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/assets/images/Bemobi/OTA-timgameskids1-bg.jpg IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 320x480, components 3 Hash1624b5dc8b5e63caf616de322bea25b1 627bea45379aab59eda65ba135b9b2f55929d109 e06c79c5477b4060b11e096da1e520d4ff8863525184bfa60a414b5a0490d63d
GET /OTA-BRTIM-BEMOBKIDS/assets/assets/images/Bemobi/OTA-timgameskids1-bg.jpg HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52
Cookie: TS01c950bd=01b02e3e893b435504b707d4cec8afd6441add0e186c050953c4941eadff528105399049858e3250c2aa86e44b2fcc29a3d8c99970; ng_session=eyJpdiI6IkovUGIzUnJjNDV5dG9QNVErdnY3eFE9PSIsInZhbHVlIjoiU2ZudEVPR3dRb1ZiN0ptaEJOdE0vcnpzdTN1SnFWZnVhUEVsTEw4REkvVjI2MDkvbjB0TGFhaXVkUlRwSVlRZ1o0WjNtZE5TTUtQVlNkOGRWbUxyUm1FczB4a2FXc3NOZGJEMDk0M0FYb0ZHdXpRRGFwK1RHY3NIeWR5UHBOanIiLCJtYWMiOiI1MjE5Y2FjZmFiMWY5NTMwNmNmMzIyYjJhZDg3N2NmYTM4OGU1ZDllODNiZjkxYTNhMzMzMzllMmU4ZGVhYzQ1IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkZLeEJFdGxXaUdDNUJORVhXSDJ4ZXc9PSIsInZhbHVlIjoiU0k0QnRrTG9iUDNGZkZMUFRVaVVyS2pPeDhLUU1WM0JlTFk3R0ZQWEc0ZlN6cnhoWU8zY0ZrYzlCNzN4VG44R2IxaHMwSTJTZklqZGdGS0xtTEpMRlVIc29Qd0ZjMngrOTNxS0hmY2JhVWM9IiwibWFjIjoiYTcwODhmYmI4NGYzNmRjYjk5MjNiMWY4OTBjNTA5OTVmM2RlYTA5MGU4YzIzMjgzYWNlNzY3MjEwZTJmMTU5YiIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImU3YW5qUUtsYXVXTVFyUlo2MmRTdnc9PSIsInZhbHVlIjoibW1GYWY0dTZoV3hsRTBjT2tYdGhLejV2WGtsVzNySHc2TkNiZjE3TlJReStFSDR4QitvUEJIeUJjdk1pN2FHUkJ5NUtXODJVTVYzSDlJSFEyZzVCdEJIY2hzSGtBeEZIbWt2dXNRRXV4dFk9IiwibWFjIjoiYjg3NmE4ZDliMzY1MWFkZWJlNjgyMzViZTMzN2IzZjJiY2U3ODZiYTZmYzkyM2NjOGQ0ZGZiZjU1OWEwZDY0MSIsInRhZyI6IiJ9; userPermID=eyJpdiI6IlpJVFdBRjc4T0R2aUJhaVZtZ0hYOVE9PSIsInZhbHVlIjoiWXkxYWt2SUtVd1llUEUva2hnSmtqRGExRzVLcUFFLzlKRDBRWGtGaFQrNXdIT0NwUCtYdEQvajJTN3VhckxQZUc2OFNtMTlWS25qRERRdHNEVGQ0Y3AyVW9sOXo0VTBna3FiNTBqR0tNcGs9IiwibWFjIjoiNDRhMmI5ZmQ5MTA2YmE1MDgyYzU1OWVlMzk2OGVlMzVmN2I5ZmQ3OTg1M2YwOGE3NGViNGZhYTk1YTMwOTc4YiIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 16:36:41 GMT
Last-Modified: Wed, 31 Aug 2022 12:35:17 GMT
ETag: "b454-5e788bab452b1"
Content-Length: 46164
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 16:36:41 GMT
Content-Type: image/jpeg
X-Varnish: 608013948 473125085
Age: 2588562
Via: 1.1 brtim1-varnish-5d85b7f48-lwm6b (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=999
Connection: Keep-Alive
|
|
| www.googletagmanager.com/gtm.js?id=GTM-MBV8MJ7 | 142.250.74.168 | 200 OK | 94 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-MBV8MJ7 IP142.250.74.168:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (2202) Hash08f9b4786bc933965ea59e976a34aed2 bae984f3f4edd3ad69111b36644a0e7375ad750a 3069e204bb5266c594ee0b6f4c1d4e6dd388f634cb9225b7ed73ac0b9bd6cfb4
GET /gtm.js?id=GTM-MBV8MJ7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 15:39:24 GMT
expires: Fri, 10 May 2024 15:39:24 GMT
cache-control: private, max-age=900
last-modified: Fri, 10 May 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94057
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.timpromos.com.br/security-platform-web/api/v1/beacon/retrieve?secureSessionId=AQ4z3klMe-xYsD7LboLFXdU1SByw6aG_7srq-grMDTIEUBKRzxIdybz5Iuy43vV9gXxn | 91.241.94.8 | 200 | 0 B |
URL GET HTTP/1.1www.timpromos.com.br/security-platform-web/api/v1/beacon/retrieve?secureSessionId=AQ4z3klMe-xYsD7LboLFXdU1SByw6aG_7srq-grMDTIEUBKRzxIdybz5Iuy43vV9gXxn IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /security-platform-web/api/v1/beacon/retrieve?secureSessionId=AQ4z3klMe-xYsD7LboLFXdU1SByw6aG_7srq-grMDTIEUBKRzxIdybz5Iuy43vV9gXxn HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249
Cookie: TS01c950bd=01b02e3e893b435504b707d4cec8afd6441add0e186c050953c4941eadff528105399049858e3250c2aa86e44b2fcc29a3d8c99970; ng_session=eyJpdiI6IkovUGIzUnJjNDV5dG9QNVErdnY3eFE9PSIsInZhbHVlIjoiU2ZudEVPR3dRb1ZiN0ptaEJOdE0vcnpzdTN1SnFWZnVhUEVsTEw4REkvVjI2MDkvbjB0TGFhaXVkUlRwSVlRZ1o0WjNtZE5TTUtQVlNkOGRWbUxyUm1FczB4a2FXc3NOZGJEMDk0M0FYb0ZHdXpRRGFwK1RHY3NIeWR5UHBOanIiLCJtYWMiOiI1MjE5Y2FjZmFiMWY5NTMwNmNmMzIyYjJhZDg3N2NmYTM4OGU1ZDllODNiZjkxYTNhMzMzMzllMmU4ZGVhYzQ1IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkZLeEJFdGxXaUdDNUJORVhXSDJ4ZXc9PSIsInZhbHVlIjoiU0k0QnRrTG9iUDNGZkZMUFRVaVVyS2pPeDhLUU1WM0JlTFk3R0ZQWEc0ZlN6cnhoWU8zY0ZrYzlCNzN4VG44R2IxaHMwSTJTZklqZGdGS0xtTEpMRlVIc29Qd0ZjMngrOTNxS0hmY2JhVWM9IiwibWFjIjoiYTcwODhmYmI4NGYzNmRjYjk5MjNiMWY4OTBjNTA5OTVmM2RlYTA5MGU4YzIzMjgzYWNlNzY3MjEwZTJmMTU5YiIsInRhZyI6IiJ9; userSessionID=eyJpdiI6ImU3YW5qUUtsYXVXTVFyUlo2MmRTdnc9PSIsInZhbHVlIjoibW1GYWY0dTZoV3hsRTBjT2tYdGhLejV2WGtsVzNySHc2TkNiZjE3TlJReStFSDR4QitvUEJIeUJjdk1pN2FHUkJ5NUtXODJVTVYzSDlJSFEyZzVCdEJIY2hzSGtBeEZIbWt2dXNRRXV4dFk9IiwibWFjIjoiYjg3NmE4ZDliMzY1MWFkZWJlNjgyMzViZTMzN2IzZjJiY2U3ODZiYTZmYzkyM2NjOGQ0ZGZiZjU1OWEwZDY0MSIsInRhZyI6IiJ9; userPermID=eyJpdiI6IlpJVFdBRjc4T0R2aUJhaVZtZ0hYOVE9PSIsInZhbHVlIjoiWXkxYWt2SUtVd1llUEUva2hnSmtqRGExRzVLcUFFLzlKRDBRWGtGaFQrNXdIT0NwUCtYdEQvajJTN3VhckxQZUc2OFNtMTlWS25qRERRdHNEVGQ0Y3AyVW9sOXo0VTBna3FiNTBqR0tNcGs9IiwibWFjIjoiNDRhMmI5ZmQ5MTA2YmE1MDgyYzU1OWVlMzk2OGVlMzVmN2I5ZmQ3OTg1M2YwOGE3NGViNGZhYTk1YTMwOTc4YiIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Fri, 10 May 2024 15:39:24 GMT
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Keep-Alive: timeout=5, max=998
Connection: Keep-Alive
Access-Control-Allow-Origin: *
|
|
| fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap | 142.250.74.106 | 200 OK | 1.2 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap IP142.250.74.106:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash388afc0166f1d619f6249cb1f874e733 b7a855179381c039dcecb5d6c4ed50cde19e4d99 0fe764ea8585e0eec146ea67b57a7aab7e2a222c92bbc4821fb4a706e17e9184
GET /css2?family=Roboto:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 15:39:24 GMT
date: Fri, 10 May 2024 15:39:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/destination?id=G-9LLK8PEDTW&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 98 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/destination?id=G-9LLK8PEDTW&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Hash122c7b7b0d44e689d511a9406d442560 d6c32d150e804686d4b55634a356ef4c735b3b9e cc484473de45417fae4f5f502095ce63d4555dc14804eab39acb2da7eb63cd4e
GET /gtag/destination?id=G-9LLK8PEDTW&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 15:39:24 GMT
expires: Fri, 10 May 2024 15:39:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 97566
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-9LLK8PEDTW&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 98 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-9LLK8PEDTW&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Hashbadf2ee24ac6729c486bc2f0778e9ecd 7c7ff4a06b3bf0524d6527213f5e6a9d867237bc 77f022450842465f754b9ccfa227886364304cd280934acfb835279aab3a9b71
GET /gtag/js?id=G-9LLK8PEDTW&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 15:39:24 GMT
expires: Fri, 10 May 2024 15:39:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 97592
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9LLK8PEDTW&cid=527873880.1715355565>m=45je4580v9100206336z8856739148za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&frm=0&z=1703678859 | 172.217.21.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9LLK8PEDTW&cid=527873880.1715355565>m=45je4580v9100206336z8856739148za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&frm=0&z=1703678859 IP172.217.21.163:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint7D:68:6D:B1:32:34:52:51:20:C9:53:FF:B9:B7:8F:7E:05:F9:F5:97 ValidityTue, 16 Apr 2024 04:31:00 GMT - Tue, 09 Jul 2024 04:30:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9LLK8PEDTW&cid=527873880.1715355565>m=45je4580v9100206336z8856739148za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&frm=0&z=1703678859 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 10 May 2024 15:39:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je4580v9100206336z8856739148za200&_p=1715355564336&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=527873880.1715355565&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715355565&sct=1&seg=0&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D663e3f8c67251f000130764c%26lgd_pub%3D249&dt=&en=OTA_TGames%20Kids_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=2468 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je4580v9100206336z8856739148za200&_p=1715355564336&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=527873880.1715355565&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715355565&sct=1&seg=0&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D663e3f8c67251f000130764c%26lgd_pub%3D249&dt=&en=OTA_TGames%20Kids_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=2468 IP216.239.34.36:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9LLK8PEDTW>m=45je4580v9100206336z8856739148za200&_p=1715355564336&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=527873880.1715355565&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715355565&sct=1&seg=0&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D663e3f8c67251f000130764c%26lgd_pub%3D249&dt=&en=OTA_TGames%20Kids_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=2468 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.timpromos.com.br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.timpromos.com.br
date: Fri, 10 May 2024 15:39:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je4580v9100206336z8856739148za200&_p=1715355564336&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=527873880.1715355565&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=2&sid=1715355565&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D663e3f8c67251f000130764c%26lgd_pub%3D249&dt=&en=page_view&tfd=2491 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je4580v9100206336z8856739148za200&_p=1715355564336&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=527873880.1715355565&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=2&sid=1715355565&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D663e3f8c67251f000130764c%26lgd_pub%3D249&dt=&en=page_view&tfd=2491 IP216.239.34.36:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9LLK8PEDTW>m=45je4580v9100206336z8856739148za200&_p=1715355564336&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=527873880.1715355565&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=2&sid=1715355565&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D663e3f8c67251f000130764c%26lgd_pub%3D249&dt=&en=page_view&tfd=2491 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.timpromos.com.br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.timpromos.com.br
date: Fri, 10 May 2024 15:39:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je4580v9100206336za200&_p=1715355564336&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=527873880.1715355565&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEA&_s=3&sid=1715355565&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D663e3f8c67251f000130764c%26lgd_pub%3D249&dt=&en=scroll&epn.percent_scrolled=90&tfd=7492 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je4580v9100206336za200&_p=1715355564336&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=527873880.1715355565&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEA&_s=3&sid=1715355565&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D663e3f8c67251f000130764c%26lgd_pub%3D249&dt=&en=scroll&epn.percent_scrolled=90&tfd=7492 IP216.239.34.36:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=663e3f8c67251f000130764c&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9LLK8PEDTW>m=45je4580v9100206336za200&_p=1715355564336&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=527873880.1715355565&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEA&_s=3&sid=1715355565&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D663e3f8c67251f000130764c%26lgd_pub%3D249&dt=&en=scroll&epn.percent_scrolled=90&tfd=7492 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.timpromos.com.br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: http://www.timpromos.com.br
date: Fri, 10 May 2024 15:39:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|