r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e36c852b5e145f2f09fe73111fb162e1
e439c6a462f86a3003d6464a8b9999b1c4d1e210
52a721168d0c41cb0854ff8c730fce3b79db2e804b383238e95ff1401922bd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52A721168D0C41CB0854FF8C730FCE3B79DB2E804B383238E95FF1401922BD74"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4232
Expires: Thu, 27 Oct 2022 05:31:03 GMT
Date: Thu, 27 Oct 2022 04:20:31 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6145
Cache-Control: max-age=111176
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:31 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 11:13:27 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8db408c487f7d35bba323046736e8d3a
01b91e2dce7c6d3de9adfe6ff4d38f9b24ab7db0
9aeafc72c1a969243e1fc96f68ce18888034a749ee70582208bf814bd40b61a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9AEAFC72C1A969243E1FC96F68CE18888034A749EE70582208BF814BD40B61A5"
Last-Modified: Tue, 25 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21101
Expires: Thu, 27 Oct 2022 10:12:12 GMT
Date: Thu, 27 Oct 2022 04:20:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PFB2yaeuuGYLWHv0WPLt0yXv8dZA4fOfRIHzj9Nl/whG6htarssIBnPYub9lBnC49+GEgRpM/OB6zX16x11zeg==
x-amz-request-id: P6B71QQNTH4JFCXD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 27 Oct 2022 03:39:27 GMT
age: 2464
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 04:20:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
seguro.caixamisteriosa.net/cart?cart_token=902f412c-5598-11ed-b50e-02f91afe0016-6359e1ee128fd&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=e485c680-5598-11ed-9afb-95069bf59b6a
170.82.174.30301 Moved Permanently 134 B URL HTTP/1.1 seguro.caixamisteriosa.net/cart?cart_token=902f412c-5598-11ed-b50e-02f91afe0016-6359e1ee128fd&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=e485c680-5598-11ed-9afb-95069bf59b6a
IP 170.82.174.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /cart?cart_token=902f412c-5598-11ed-b50e-02f91afe0016-6359e1ee128fd&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=e485c680-5598-11ed-9afb-95069bf59b6a HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 27 Oct 2022 04:20:31 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.caixamisteriosa.net:443/cart?cart_token=902f412c-5598-11ed-b50e-02f91afe0016-6359e1ee128fd&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=e485c680-5598-11ed-9afb-95069bf59b6a
X-GoCache-CacheStatus: BYPASS
Server: gocache
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dd283dfc036535bdeb8a8be1310ef930
d3b1c300dd75d7af630e0f3112e49d7492d66c17
578f9256faa188facb3f2d68b02b0c7fb2e30e02e2e74234d015429563cba7aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5602
Cache-Control: max-age=105578
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:31 GMT
Etag: "6358ea97-1d7"
Expires: Fri, 28 Oct 2022 09:40:09 GMT
Last-Modified: Wed, 26 Oct 2022 08:06:47 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0f2ec6054a6b85104092358a8c86f6bf
3afef59ee7c1ce809a78de8890496e019d28a48e
55b26d3e10f3b7b9c16fb6993d94ae040b0c74d2ba45abf3b4d14d5d996ee071
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55B26D3E10F3B7B9C16FB6993D94AE040B0C74D2BA45ABF3B4D14D5D996EE071"
Last-Modified: Tue, 25 Oct 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21569
Expires: Thu, 27 Oct 2022 10:20:01 GMT
Date: Thu, 27 Oct 2022 04:20:32 GMT
Connection: keep-alive
push.services.mozilla.com/
52.27.12.161101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.27.12.161:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8oeY+JLUasGF1Yg8LUcclA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jx7Dmimxn73APMntLizOOtl3Ud8=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7255
Expires: Thu, 27 Oct 2022 06:21:28 GMT
Date: Thu, 27 Oct 2022 04:20:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7255
Expires: Thu, 27 Oct 2022 06:21:28 GMT
Date: Thu, 27 Oct 2022 04:20:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7255
Expires: Thu, 27 Oct 2022 06:21:28 GMT
Date: Thu, 27 Oct 2022 04:20:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7255
Expires: Thu, 27 Oct 2022 06:21:28 GMT
Date: Thu, 27 Oct 2022 04:20:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7255
Expires: Thu, 27 Oct 2022 06:21:28 GMT
Date: Thu, 27 Oct 2022 04:20:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9098f868-2119-42f3-92b9-615f0a2c32f6.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9098f868-2119-42f3-92b9-615f0a2c32f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36dbf36c45aa3c5d6e10f8c4afd8bf34
bee7e540981a4ffb14728d2ac4a53ce28e299d0d
0dad70dc63e95aa8fd9befdb7dc4f971bad962e300f380dab2a04cc60138374d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9098f868-2119-42f3-92b9-615f0a2c32f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8760
x-amzn-requestid: 013df52a-1abe-4a1b-ac52-9a5ec5da55b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocv2HRMoAMF5mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7fe-70e98155664262621b8538b5;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9uDSJn3yAYI7RNgIs96f2AT8nfTgd6YbFkMAc9aJAW4wTMiN_JqhEw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:55:31 GMT
etag: "bee7e540981a4ffb14728d2ac4a53ce28e299d0d"
content-type: image/jpeg
age: 23102
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd660616a-1641-4ad3-bf62-59dfe54ba2e9.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd660616a-1641-4ad3-bf62-59dfe54ba2e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd902e06ceaeb060cec24c464c11738d
ffdfde08eb38e20b01c550fd4b1bb871304bb0ea
593f5c12c617c7217205d8aa95fe5f0c46014e5be8f2c8d3010cdd876faeb7dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd660616a-1641-4ad3-bf62-59dfe54ba2e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5247
x-amzn-requestid: 7e07eeaa-b95a-4283-8ca7-fb28e9e30258
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRpdhGDJIAMFd7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63508923-4e947c3539ad0d6d777a47cd;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 23:32:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2MCXNwZ3bpXpeSAlOCc2GbIYnv2qJNg2v2h2MWrfBr2OleP6g6kn2A==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:53:36 GMT
age: 23217
etag: "ffdfde08eb38e20b01c550fd4b1bb871304bb0ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa85c6304-6f72-4904-bb25-968b35616ef5.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa85c6304-6f72-4904-bb25-968b35616ef5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f9f8683351154be3300311e3a7e29e3
4fc868d652910c7dcf4ef0e87531de4ee6007c45
d4f012729e0eddc20948ad98d653794204f80344a5840142877dcaa8d2520a71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa85c6304-6f72-4904-bb25-968b35616ef5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7428
x-amzn-requestid: f474225b-1b7e-4e4e-b967-827dff138e2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aioFrH2ioAMF4Pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635753bd-140dc30a1ca63aae54cd4621;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 03:10:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uXh_puh8KbSQsJ9E6WnyTjLF_nBhhSOrg4TOx5BugoMM88DOz66jgA==
via: 1.1 78c1c4eb451e4790ed630b0d5a576590.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 04:11:38 GMT
age: 535
etag: "4fc868d652910c7dcf4ef0e87531de4ee6007c45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eb430e5efbc6c8c306fce87e26faf734
b05b7299a7e473e873510671a6abdd5227a53f46
c49d64e87ec8243a1ee7f214f21988b6f6a33ba93814ec31262d80e4a22b8504
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8936
x-amzn-requestid: d0698fc0-e4c9-4633-9b64-df09be35b450
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocuiGBlIAMF-LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7f6-7c78a1fc43552b934e6b8708;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:46 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gus8UKo03dRkfqPRhxnW6zzqx7o-2tZbbv-DsBSW7UREHPOA1uqdUw==
via: 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:50:53 GMT
age: 23380
etag: "b05b7299a7e473e873510671a6abdd5227a53f46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ace7660d2948795997e3c7cb9cf12495
fed9b6693077d233f60cc7394c7b667291ffade7
fd4718a6649572cbaf13f46b8e2961cd1c680afa1494b0bacd5fda9010a95098
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5136
x-amzn-requestid: 0059b05c-746b-41cd-8cc1-c744d0b149fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aoc2-H9sIAMFquA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a82c-772120580c4cf9e45b685971;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:35:40 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fqqRNgPgAZRwp_xRyHC3YzEKQTwydDs45MNLQC7hoRpytCb91-9b5Q==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:50:42 GMT
age: 23391
etag: "fed9b6693077d233f60cc7394c7b667291ffade7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44add2bd-5fb0-4610-825b-d696ec78ca49.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44add2bd-5fb0-4610-825b-d696ec78ca49.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05e2d92ca05c08e9598d4128d55b1cba
109364ef1db445ba6c5e8c1178ab56fcce80d346
078e257c6bb8d7d46022c4786b54584c8868eb138e293b37ef164221b519f7bb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44add2bd-5fb0-4610-825b-d696ec78ca49.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6619
x-amzn-requestid: 245cd792-64fd-4490-b8f8-5b354fd9b0b5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ak4zTELFoAMFyzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63583b48-33a9dfe97f63f43050b4ecdd;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 19:38:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bCL523JRD-JUSoK1Hdsk2hLdEp1NXxckJshwO96kQesEZAxdT7YKfg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 10:21:57 GMT
age: 64716
etag: "109364ef1db445ba6c5e8c1178ab56fcce80d346"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9d1d24b92c1f9297ec2b7358d5286040
4e741824ffe6b2ab34020b575a4a6b9308b91a6a
12d0c25c676a53469b4005d11bbe2ee5b600fcdbc78b606e5cceb17d354456a5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=169079
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Etag: "6359f889-117"
Expires: Sat, 29 Oct 2022 03:18:33 GMT
Last-Modified: Thu, 27 Oct 2022 03:18:33 GMT
Server: nginx
Content-Length: 279
seguro.caixamisteriosa.net/checkout/payment?cart_token=902f412c-5598-11ed-b50e-02f91afe0016-6359e1ee128fd&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=e485c680-5598-11ed-9afb-95069bf59b6a
170.82.173.30302 Found 137 kB URL HTTP/2 seguro.caixamisteriosa.net/checkout/payment?cart_token=902f412c-5598-11ed-b50e-02f91afe0016-6359e1ee128fd&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=e485c680-5598-11ed-9afb-95069bf59b6a
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Size 137 kB (137329 bytes)
Hash d3be50dd1100169f1fd3deada7e9ffd2
315e9c973295c0b610d9867848c1aed94be6f45d
4e0d518f78eb93e02a4480d27eff1ba58cdb6b0452a22b9ab35b1a91d3148423
GET /checkout/payment?cart_token=902f412c-5598-11ed-b50e-02f91afe0016-6359e1ee128fd&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=e485c680-5598-11ed-9afb-95069bf59b6a HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IithM1Vqd3pKUjZpbVpFaTBTa3FKWnc9PSIsInZhbHVlIjoiVzRWMFA4NzZYZWx4RUttRzF4UkQwWDgzcUJaaTljQkpCMGx2dkhFbXc1ZDNlR2JcL2Y5cUdRcThDalJCYzRcLzQ2SmVGOFUwWUxvWnQ2SDhtdHRHMHhQQT09IiwibWFjIjoiMzkyZWI0YjJlMzk1MzE4MWU5Y2ZmZDBjMmJjZWJlZjc0ODE3ZjM2NmIzY2I2OTk2NWFhM2U2YTQ1NjNlN2QxZCJ9; bubbstore_checkout=eyJpdiI6InU1aVB0MmZtQmsyQys1c3dRdUFBaFE9PSIsInZhbHVlIjoiMWJ5bDhqakdjQ1M3bXFDcDR5ZmZUNjlOcGlneU8yNzNsdGFLdjBpbFwvM1FiTUNBSUhHT1dGK0lZVUlrdXp6bWNuQUVZK0JcLzFNbll1aTUrSVgyK0JYQT09IiwibWFjIjoiYmUxMDRkNmM3YWNmMjU3YTgxZDVlNDNiYTk1NGVhNzFhYzdjY2JhYTNjYmI5ZDI3MmQ2ZDczOWZmODQzNmQ5NyJ9; caixa-misteriosa9_cart=eyJpdiI6IklpdWF1Z3FpSXl4QzlwQ1wvaGdrcXpBPT0iLCJ2YWx1ZSI6InVoM1lZK01SNDk0VHdjYSszRkgwSTZHMVMwZU1aRWR4THV2TGdkcnV1Y2h3R3MyOXRPc1RrQVwvak0zVkFGdWhNV0x0QlVJUHR1b2dQU1pmQzUrWVVlZz09IiwibWFjIjoiY2FmODc3NGI0YWM1OGQ4Y2I0OGIyNGI3OThiOGEzZTZjMmE4MTUxMjZmNmYwNjQzODY1Y2ZhOTljOTJhYjg3ZCJ9
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
date: Thu, 27 Oct 2022 04:20:33 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.caixamisteriosa.net/checkout/address
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IkpIYnlkeEcxVWJ5bnhXVXJxaWx0dGc9PSIsInZhbHVlIjoiWkNibGw0eWlxb1lQZjYxam5aQmtiOEpNS08rXC9VK25OekgxQ2xoazVKYitlUXd2NjE5RkJzZmhZaHdvQ0FjS2hyOEl5ZHdaRFB1Zm5BeDNqQjFVblhBPT0iLCJtYWMiOiJhNDU1YjFjMGU1NjAyZTAyMDc5ZGI0MWZjYjU0ZWVlZjkwYjhhNDZlY2U1YmUxNDY2Y2U1OGE2ODQwYTdmMGYwIn0%3D; expires=Thu, 27-Oct-2022 07:20:33 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkxUWWpKY2g5RFdIN0RUbkFlVHdjZXc9PSIsInZhbHVlIjoiYU11am1lZENENWJhcThVUFlKWEJDRkdIRFdra3Job00xQk9cL3MxbDNKYmViMVFMcnhRMm5RNnZLZzJFNkZDQTRPVDFNTm1DV2FQblp1anBrNFR2MGFBPT0iLCJtYWMiOiJjMjkxZDVjMWU0ZTY1YTlmN2RkYjU5MDY1YjdhNmUzMTM2MjI4NjNlMzA5N2RiZjc5MzU2ODgwYTBmYzYwMDRiIn0%3D; expires=Thu, 27-Oct-2022 07:20:33 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg
104.26.2.88200 OK 9.5 kB URL HTTP/2 images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg
IP 104.26.2.88:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 958180500c499802b8c9d1c832f7945c
d1884b093666b9e6813b79471311a75c2304005a
1466c5bac4447ac52bc4780d617c80e4872b53df4a63c86a42ac0e1e93cc572e
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:34 GMT
content-type: image/jpeg
content-length: 9510
cf-bgj: imgq:100,h2pri
cf-polished: origSize=10320, status=webp_bigger
etag: "04572c76d141851db42a1a6e13d38b71"
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-id-2: LanhgAiXZOYYA+2ScYOx90pAloWf9cBFvH3t7MdFQwlm9Oyymw7fzKSW/SbKHsb/e/hT2CoP0f8=
x-amz-request-id: 26D99WV6TCK0TQR3
x-amz-version-id: AatCE1mkRL6z1GEYqQay5AQrkz_0GlQk
cache-control: max-age=31536000
cf-cache-status: HIT
age: 0
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qnMsMfr8IO%2Fk%2B%2Fl%2F1DIa8pL9FFuv5%2B%2F9hIhkTGXNzLlQPcmkFz0OsgIm4kMwomv7V9mdWCVgcqLgJrmlrQ%2BpPnnbX4jRIBE%2B2ZdkT4R%2F7RamhqrHu%2FwEWw0Jg2smJgAtog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7608a3d3ea44b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg
104.26.2.88200 OK 8.6 kB URL HTTP/2 images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg
IP 104.26.2.88:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 53f8716e4000def629db36d31f645cb1
db8c371fc52e7ab263634119821620d9f03c814f
2efb36089e2b052421b3c15c6c159fae1924bc1a1c2209ccd82f4d0ccc13f1c2
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:34 GMT
content-type: image/jpeg
content-length: 8648
cf-bgj: imgq:100,h2pri
cf-polished: origSize=9336, status=webp_bigger
etag: "8220257871413a2a14ab3d6b964f6abf"
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-id-2: 9BEGGAOO+B86AzP/jdJYfYW3gW6HDOBQhoYuK3o7sBLovtVBxar+XO8k9yBr/iNISNKlU7dtku4=
x-amz-request-id: 8S43FZKMHQDJCJD6
x-amz-version-id: HfrtBnZFXQLQQPWMe2SSfAQyOFUNAZMA
cache-control: max-age=31536000
cf-cache-status: HIT
age: 0
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rLy24pHy6STOMjFlTH8Hj2nsgRPjl12UX40sXbEXy84ozWzvc%2B6wuQeCOxiESsjjRWzN%2BLPDB4gGCSXzqWwJ9kt6jyDDgn919NiJHdhusZGQQURJxBzwq%2BuPWdjRUO%2BBUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7608a3d3ea46b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg
104.26.2.88200 OK 8.2 kB URL HTTP/2 images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg
IP 104.26.2.88:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 9074436dac9f6d61bccb042c185adff3
b9d1247ca03baccc0203747de619c3579ac299fe
b0a54814b8b0f5abf1f1c43941cfdc945fb105f0ad91962af3df15b2a98d1b24
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:34 GMT
content-type: image/jpeg
content-length: 8208
cf-bgj: imgq:100,h2pri
cf-polished: origSize=8822, status=webp_bigger
etag: "64d0d3cf4cf12b175c2bfde2b119fd73"
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-id-2: kpYdRAWThlOvzdGFOaofox1Xw/BYGm7zIz2kOBJzG9yrcmu2SnTuXQkfDl0tMd+Cduek85ciemc=
x-amz-request-id: 8S484Z5WGKS5CG4Y
x-amz-version-id: xeytj2tGe9ZE1VBrjh._yFfBsbQCZQQP
cache-control: max-age=31536000
cf-cache-status: HIT
age: 0
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2bh9OxBeK7j0UJTMdEigi%2BDD9a3gG2F8iSIws%2B4TUTHKUNDl7O5iET33cWG%2FHc2sV%2F4Jgot9K77p0G%2B2FLNBy1tK7Hl3gmyLXESDOxW3TGXpOsYAmaVwhcbGeKpo2zv2kQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7608a3d3ea45b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ
IP 142.250.74.35:0
Hash 4d2d59c1c29e0c1291d01610d0bddbce
7247e70707f7bc893ee7b7af0e09eb9075b213d1
dacd02b37679570c364ed146ab0c62b00536ebb5f4cdcf0f3cc9a7f370db1c79
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 77b5da0f60755df91da1b98333c6d33c
0c36c5f1063e2ef41d02e26ddf9ed1e0a490e6b4
085b499d52d53965301db8affc692e09876290e5d67bf09c83178cc54384999f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.upnid.com/v0.js
130.211.14.112200 OK 8.3 kB IP 130.211.14.112:0
File type Unicode text, UTF-8 text, with very long lines (23050)
Hash 49fa980f95bb3bbff8b7a2857a727d5d
9e931943f03079522318820948018d78610eaca4
4e295d58275798f67bf7b9c48b8cae16238c9a3dabca082238e7bab8eaa34943
GET /v0.js HTTP/1.1
Host: js.upnid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin
content-encoding: br
via: 1.1 google
content-length: 8310
date: Thu, 27 Oct 2022 00:00:34 GMT
age: 15600
last-modified: Tue, 19 Jan 2021 20:16:07 GMT
content-type: text/javascript; charset=utf-8
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9d1d24b92c1f9297ec2b7358d5286040
4e741824ffe6b2ab34020b575a4a6b9308b91a6a
12d0c25c676a53469b4005d11bbe2ee5b600fcdbc78b606e5cceb17d354456a5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=169079
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Etag: "6359f889-117"
Expires: Sat, 29 Oct 2022 03:18:33 GMT
Last-Modified: Thu, 27 Oct 2022 03:18:33 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
142.250.74.164200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 1c688e8b7ed088521762f89cbd72e218
1583739e93dd4910cac00db5bfa2ad3a2c8856f7
12d5e7dbe1cc3027cb2663e42a4cd5654433c5bf1d4e370dfefb19475ec67f5c
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 27 Oct 2022 04:20:34 GMT
date: Thu, 27 Oct 2022 04:20:34 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ
IP 142.250.74.35:0
Hash 4d2d59c1c29e0c1291d01610d0bddbce
7247e70707f7bc893ee7b7af0e09eb9075b213d1
dacd02b37679570c364ed146ab0c62b00536ebb5f4cdcf0f3cc9a7f370db1c79
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 26e60c83d7af169687cbd74f7ca924e0
00f7ceb935fe1cc423f95718a04076e4f5eca150
a041e2901d418b289c3129ce7c07a66e598f6d3ac076732635b0a9ac6fbabb89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6e68d9268f7c6c282264ceeedc69f3ed
7f57bdf680e6eda96e4e39321da869ad5e9e6249
ca1716d80a80d45b5f483a0e3c994bdddf7a1c5fca860747eb317ed8a826d02c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=121941
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Etag: "63594067-118"
Expires: Fri, 28 Oct 2022 14:12:55 GMT
Last-Modified: Wed, 26 Oct 2022 14:12:55 GMT
Server: nginx
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.yampi.io/ana/ana.min.js?t=1666915200000
104.18.14.227200 OK 36 kB URL HTTP/2 cdn.yampi.io/ana/ana.min.js?t=1666915200000
IP 104.18.14.227:0
Hash d2a69bda85e4f478afc5ca86f35ce2b3
48fb25d9c2d06aed7bf8735015eb0ebd4b9b9112
b14fa4766f06466e7403d0a10265a0b088bea618ecbebe6e03664537c681fc42
GET /ana/ana.min.js?t=1666915200000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:34 GMT
content-type: application/javascript
x-amz-id-2: u/ASm59PI36EjSBtNTv6M/A8JV8RfqJjf+AS10Ph2fUNgEUHH5RbN1YgPTTJaNzFWsKCxTiYRDM=
x-amz-request-id: 0DJCYGC2P4XWG7XY
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
age: 4274
expires: Fri, 27 Oct 2023 04:20:34 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7608a3d52ccfb512-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 312d0208861161793d9225bc818f4d56
7832c19b22a5151039641b76d48351052bd6364a
93d8af3728dae70deadbec88f563faaf8168a539cf5816e37cbf6f3c700a8a6b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93940
Date: Thu, 27 Oct 2022 04:20:34 GMT
Etag: "6358bc32-1d7"
Expires: Fri, 28 Oct 2022 06:26:14 GMT
Last-Modified: Wed, 26 Oct 2022 04:48:50 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: C13avpiy64a2-Itga-ymLOJt7MNHCsd9mFp2Xo3zd88GVPkw-fzDbw==
Age: 5844
fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
104.18.0.53200 OK 77 kB URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
IP 104.18.0.53:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:35 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: xIw7xyrWh7tMbAn3EEHH4MwVIvngCdMJZzqEwyRpxw93epYCebm75FVAa7Fs9PX4Xh3seDuVm+Y=
x-amz-request-id: 0QAV3XV18SQBTZWG
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: REVALIDATED
expires: Fri, 04 Nov 2022 04:20:35 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
server: cloudflare
cf-ray: 7608a3d579400af6-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9ab0372fbd4e9d389119ccc12be968eb
0e48ffd21d7abf1cf59a471feba8da1f26b934fc
090ac22163a5cc5471bd4220bc6ebe686b115c15378c5eb9066f0767066af57d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5683
Cache-Control: max-age=89484
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:35 GMT
Etag: "6358ab6c-1d7"
Expires: Fri, 28 Oct 2022 05:11:59 GMT
Last-Modified: Wed, 26 Oct 2022 03:37:16 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
seguro.caixamisteriosa.net/cart/recomm
170.82.173.30200 OK 27 kB URL HTTP/2 seguro.caixamisteriosa.net/cart/recomm
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type JSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63730)
Hash d72d651108a7c0b3df5250c4a34e0ca2
afc54ff6dc466ee8e1f0be42a89d8573a54f433c
e8348324f92b5dbfb8cb12e8bdd50d5958d6e968822654336293ad133c5926bc
Analyzer Verdict Alert fortinet Phishing
GET /cart/recomm HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjkxODI1NmYzZDFjMTg3ZTEiLCJ0ciI6IjFmOTBkYTdmNjNjNWJlYzY2YjkwNGU3M2RjOWY5Mzc0IiwidGkiOjE2NjY4NDQ0MzQ0MDF9fQ==
traceparent: 00-1f90da7f63c5bec66b904e73dc9f9374-918256f3d1c187e1-01
tracestate: 2935249@nr=0-1-2935249-1134170823-918256f3d1c187e1----1666844434401
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IjA3bTBybUQ1OHRKY1hCT0s2WUlcL0JBPT0iLCJ2YWx1ZSI6IklxYURKTndNZ1lEK05TUEk3VVJVVGRtclJLQmFPWjBEZlRBeTdoV3ZqRW9jSTlqYmM2amlcL0pYSVdZaElaOERnMGlkdkpFK1p0TzNNMFFuc3FYS3pSUT09IiwibWFjIjoiM2UyNTQyYzVlZmJlZjYzMDAwNjU0MzgwMTZiM2RjMTU4MWIxZjBmMWRiOTY3MWZhYWFlYTNlNDJjMDJmZmJjZCJ9; bubbstore_checkout=eyJpdiI6Ik5CRXNGM2ZONTk2RCtzZmdTMmZzTGc9PSIsInZhbHVlIjoiYlhMZ1NYSFhUU2k4M3plR0NEN1VjZ2VOVkJQQStqclhYXC9cL1JlRmxnK2p2SzNDVWcrSmh6enQydFwvQ2ZXdEdYc3IzUVVTVkZzc3VhSU1Eem4wc3JFOXc9PSIsIm1hYyI6Ijc1NzFmNjdlNTkwYmQ0MzRmNWFlZmMyMzUzYjUxNGE4YTg0ZTUzODE0OWNhOGJlYjc3NGY2YjE4NDNkODUzODkifQ%3D%3D; caixa-misteriosa9_cart=eyJpdiI6IklpdWF1Z3FpSXl4QzlwQ1wvaGdrcXpBPT0iLCJ2YWx1ZSI6InVoM1lZK01SNDk0VHdjYSszRkgwSTZHMVMwZU1aRWR4THV2TGdkcnV1Y2h3R3MyOXRPc1RrQVwvak0zVkFGdWhNV0x0QlVJUHR1b2dQU1pmQzUrWVVlZz09IiwibWFjIjoiY2FmODc3NGI0YWM1OGQ4Y2I0OGIyNGI3OThiOGEzZTZjMmE4MTUxMjZmNmYwNjQzODY1Y2ZhOTljOTJhYjg3ZCJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:35 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6ImpOTmgxNXl0RGdxMTlkR2x0Z2JLN1E9PSIsInZhbHVlIjoielFqXC9OcjViWXdDZ05nR0dOd0E1S2Z2NHp4MlVWdzJHV09QXC85VWNLRHhwYUNhQklyTTZLXC9PXC9BNmFwYlNMZWNobE9xZDU2cFdLdFord3p3V21WRTJnPT0iLCJtYWMiOiI4NmUyZThmYmRmZTU4Yjk1Yzc4NTM1N2MxNGMwYjk5MjI0Yzg2NmY0ZWFkNjkxNTk2Y2NkMzczNmUyMzA5NWVmIn0%3D; expires=Thu, 27-Oct-2022 07:20:35 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkNMQ3owZkxKYWVoa3NXTHFCRjloNHc9PSIsInZhbHVlIjoib2QySHJsT3R1OERPU3dham9hXC96VHNQVUdTZW5lUDcyXC82XC9zMmRWZ3R2SHNUTmtoMFE3RVpnWlhtZzlZOURmR0ZQczNDMGRDUGZmNElFMnYyMTJIUlE9PSIsIm1hYyI6ImRjMDJlNDQzMDk2ZWQ0OTJjMWE4Yjg0YTQ4YWRlMGVlZDNhYzYwNzM0YmUxODQwMDY5ZmU3ZWM5NzhmZWVkNWEifQ%3D%3D; expires=Thu, 27-Oct-2022 07:20:35 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFtSQhBPEFJSWAsJExoDTFZTUgBSFFIWCAYLC1EVTABNEVNVV1UFUgYJVwkGUlQBU1VESFdXXxEDPg==
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4cdf16c5333628708fae7b304303fc48
23654b66838aa89e8b975a9e6c0251d2f8f18366
6f3935f102b0dcfee703eb07abcf04d9181fdfe13fae4d7566aed743a00beb9c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js
142.250.74.163200 OK 160 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (608)
Size 160 kB (159789 bytes)
Hash 1230a090d5cedcb9e764406ab9497c1b
3d175bcf4ad9957c3e32611713c01347299b173e
585cafe3d6a3b932804aaa5aeb19a650688a2c15767f513d0d60c1941475c428
GET /recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 159789
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 21:08:18 GMT
expires: Tue, 24 Oct 2023 21:08:18 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Oct 2022 20:02:07 GMT
content-type: text/javascript
age: 198737
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9ab0372fbd4e9d389119ccc12be968eb
0e48ffd21d7abf1cf59a471feba8da1f26b934fc
090ac22163a5cc5471bd4220bc6ebe686b115c15378c5eb9066f0767066af57d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5683
Cache-Control: max-age=89484
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:35 GMT
Etag: "6358ab6c-1d7"
Expires: Fri, 28 Oct 2022 05:11:59 GMT
Last-Modified: Wed, 26 Oct 2022 03:37:16 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4cdf16c5333628708fae7b304303fc48
23654b66838aa89e8b975a9e6c0251d2f8f18366
6f3935f102b0dcfee703eb07abcf04d9181fdfe13fae4d7566aed743a00beb9c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
142.250.74.10200 OK 539 B URL HTTP/2 fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
IP 142.250.74.10:0
Hash ae0c3cd7ee9901efd1e7a5400b8a4a00
c4cc4e47445131644a07d4f3a8e9ae7115fe5249
60d2e6e10a900e7846153fd2aa75510d00da79765afbeb05aeaf4f0f452a7767
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 27 Oct 2022 04:20:34 GMT
date: Thu, 27 Oct 2022 04:20:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d4b826b3cd4f4fffd35abd60c407bdb
28e5a20b197bf6972fd097c3b302c1dd89b68f09
681fd035abbbf788f315fea7402f5e0d77b51f6167e237ff7516335911499b21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:20:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
seguro.caixamisteriosa.net/e/t
170.82.173.30200 OK 22 kB URL HTTP/2 seguro.caixamisteriosa.net/e/t
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (35227)
Hash 9d9e6e37129e5304157e2c4bf21ed1f7
76b97bfeb1cf4e70e93ef01174d4b26c036a50e2
53385fbd5efd4334493f285f606df08461d7c9b55c145e05f0ceb9ce3fad7235
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImRkOTY3YWM1ODk5NjBmZjQiLCJ0ciI6IjVhMzYzMWY0MmJiY2QxMDFkZDc1Y2U2M2I2NzdiZGUzIiwidGkiOjE2NjY4NDQ0MzQ0MTF9fQ==
traceparent: 00-5a3631f42bbcd101dd75ce63b677bde3-dd967ac589960ff4-01
tracestate: 2935249@nr=0-1-2935249-1134170823-dd967ac589960ff4----1666844434411
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 376
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IjA3bTBybUQ1OHRKY1hCT0s2WUlcL0JBPT0iLCJ2YWx1ZSI6IklxYURKTndNZ1lEK05TUEk3VVJVVGRtclJLQmFPWjBEZlRBeTdoV3ZqRW9jSTlqYmM2amlcL0pYSVdZaElaOERnMGlkdkpFK1p0TzNNMFFuc3FYS3pSUT09IiwibWFjIjoiM2UyNTQyYzVlZmJlZjYzMDAwNjU0MzgwMTZiM2RjMTU4MWIxZjBmMWRiOTY3MWZhYWFlYTNlNDJjMDJmZmJjZCJ9; bubbstore_checkout=eyJpdiI6Ik5CRXNGM2ZONTk2RCtzZmdTMmZzTGc9PSIsInZhbHVlIjoiYlhMZ1NYSFhUU2k4M3plR0NEN1VjZ2VOVkJQQStqclhYXC9cL1JlRmxnK2p2SzNDVWcrSmh6enQydFwvQ2ZXdEdYc3IzUVVTVkZzc3VhSU1Eem4wc3JFOXc9PSIsIm1hYyI6Ijc1NzFmNjdlNTkwYmQ0MzRmNWFlZmMyMzUzYjUxNGE4YTg0ZTUzODE0OWNhOGJlYjc3NGY2YjE4NDNkODUzODkifQ%3D%3D; caixa-misteriosa9_cart=eyJpdiI6IklpdWF1Z3FpSXl4QzlwQ1wvaGdrcXpBPT0iLCJ2YWx1ZSI6InVoM1lZK01SNDk0VHdjYSszRkgwSTZHMVMwZU1aRWR4THV2TGdkcnV1Y2h3R3MyOXRPc1RrQVwvak0zVkFGdWhNV0x0QlVJUHR1b2dQU1pmQzUrWVVlZz09IiwibWFjIjoiY2FmODc3NGI0YWM1OGQ4Y2I0OGIyNGI3OThiOGEzZTZjMmE4MTUxMjZmNmYwNjQzODY1Y2ZhOTljOTJhYjg3ZCJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:35 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6Ijl2VVJEZGMrYk5kcWdTZitIUjdaSUE9PSIsInZhbHVlIjoiTkNEcmk5NWRFRnpNVlU5U1NLNVJpbkh5V1wvdEZIZ3d5YTVcLzQ3OFBBOU9NUEVXZXFyYnR2enNpTDVGUFJreWVWTEZ0SHdRN2J0dHRCMndha2hQUUpUUT09IiwibWFjIjoiYjk0ZTg0NjU2MmJkZjJkMDZhMDMxMDQxMWJkMDNmZjcyNDIwZjI1NWQ5M2E3NWIyMzBiMWMwYjg4ZWViYWMzNyJ9; expires=Thu, 27-Oct-2022 07:20:35 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImZCWVVtQWY3VW1DcTR3ZURxbndlcVE9PSIsInZhbHVlIjoiWGtYMnR6MGlmc250cXAwY3dBWVE0bzQrNXRJMU52eWFpbGVCUWVyRXZwcXdSdGhSZkpiM3d1Q2xSTUpjMkc0UnhNZXMrMGN2d2pPOEEyZXE1SnBZaWc9PSIsIm1hYyI6IjUyYmEzN2Q1NDQ5OTBhODllMjIxZDdjNjYxOWZkMGQwOTc2MDk0MWNiMTE0ZTMyYzIxNWIyZWFiYzQ4MWI2MzcifQ%3D%3D; expires=Thu, 27-Oct-2022 07:20:35 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApQCwoDHh5UFUNQBAFTUQAFVFQGXAtTUFhQFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=571326053.1666844435&jid=402628154&gjid=1357396392&_gid=2051440041.1666844435&_u=IEDAAAASAAAAAC~&z=1441816619
173.194.222.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=571326053.1666844435&jid=402628154&gjid=1357396392&_gid=2051440041.1666844435&_u=IEDAAAASAAAAAC~&z=1441816619
IP 173.194.222.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=571326053.1666844435&jid=402628154&gjid=1357396392&_gid=2051440041.1666844435&_u=IEDAAAASAAAAAC~&z=1441816619 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.caixamisteriosa.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 27 Oct 2022 04:20:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
seguro.caixamisteriosa.net/e/t
170.82.173.30200 OK 492 B URL HTTP/2 seguro.caixamisteriosa.net/e/t
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash 0df1ff8429578f2b6871f6674ecf688a
085b2ef1933634be5c1b060e7462a7f7f420f358
267692c430b5e7327de6b40f594dbcaef8030465f72072ce69d48e0de7033b46
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImYxZWJjOTQzZTQwMmY4MWQiLCJ0ciI6ImVjZDEyNGYzMjg2ZDNmNWM4ZjExZGZlYmVjYzU4MjNiIiwidGkiOjE2NjY4NDQ0MzQ0MTN9fQ==
traceparent: 00-ecd124f3286d3f5c8f11dfebecc5823b-f1ebc943e402f81d-01
tracestate: 2935249@nr=0-1-2935249-1134170823-f1ebc943e402f81d----1666844434413
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 368
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IjA3bTBybUQ1OHRKY1hCT0s2WUlcL0JBPT0iLCJ2YWx1ZSI6IklxYURKTndNZ1lEK05TUEk3VVJVVGRtclJLQmFPWjBEZlRBeTdoV3ZqRW9jSTlqYmM2amlcL0pYSVdZaElaOERnMGlkdkpFK1p0TzNNMFFuc3FYS3pSUT09IiwibWFjIjoiM2UyNTQyYzVlZmJlZjYzMDAwNjU0MzgwMTZiM2RjMTU4MWIxZjBmMWRiOTY3MWZhYWFlYTNlNDJjMDJmZmJjZCJ9; bubbstore_checkout=eyJpdiI6Ik5CRXNGM2ZONTk2RCtzZmdTMmZzTGc9PSIsInZhbHVlIjoiYlhMZ1NYSFhUU2k4M3plR0NEN1VjZ2VOVkJQQStqclhYXC9cL1JlRmxnK2p2SzNDVWcrSmh6enQydFwvQ2ZXdEdYc3IzUVVTVkZzc3VhSU1Eem4wc3JFOXc9PSIsIm1hYyI6Ijc1NzFmNjdlNTkwYmQ0MzRmNWFlZmMyMzUzYjUxNGE4YTg0ZTUzODE0OWNhOGJlYjc3NGY2YjE4NDNkODUzODkifQ%3D%3D; caixa-misteriosa9_cart=eyJpdiI6IklpdWF1Z3FpSXl4QzlwQ1wvaGdrcXpBPT0iLCJ2YWx1ZSI6InVoM1lZK01SNDk0VHdjYSszRkgwSTZHMVMwZU1aRWR4THV2TGdkcnV1Y2h3R3MyOXRPc1RrQVwvak0zVkFGdWhNV0x0QlVJUHR1b2dQU1pmQzUrWVVlZz09IiwibWFjIjoiY2FmODc3NGI0YWM1OGQ4Y2I0OGIyNGI3OThiOGEzZTZjMmE4MTUxMjZmNmYwNjQzODY1Y2ZhOTljOTJhYjg3ZCJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:35 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InYzOWQ2SVZwOVdLUzZGNmNxaTExMmc9PSIsInZhbHVlIjoiRzdlVW9nR2pZb0JDampwK1RVdzZmTzl0b2Y4ekRaajVcL3dKVHdUNVYrOUZkcG0yVGRmb2RRR1BOZ0hKaWhVUG9Nc28rREx4enNrdUVOYmtLR0RzanN3PT0iLCJtYWMiOiI3NmE2ZDRkYjQ1YzE5YzBhY2YxMDg3NGY2YTBmMTYwNDYzZmJkNWQ2YWM3NWM1MjZhYjg4N2ZhZWMwN2I1NDdhIn0%3D; expires=Thu, 27-Oct-2022 07:20:35 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlFzcU9WcFFqUFhkRkZraWFuUnZEM1E9PSIsInZhbHVlIjoiZEVqaG44VkxkeWZjUlwvM0xpRWl2TUlXY3BwZDRNbjVMY3VzZStnYVBxWm1RSGpUazZZTmlDXC85eERJYzZpOEtJaFFJZ3kwXC9WNElxZEVmSFg3R0R0NEE9PSIsIm1hYyI6IjcxMzIyMWI4ZmQ4YjViM2U3NzkxYmY4MTAwNTU3ODc2Zjg2YjYyMjQwOWYyZWFmZjcyN2UzNjAyZmZmYTgzYzQifQ%3D%3D; expires=Thu, 27-Oct-2022 07:20:35 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApQCQwGHh5UFUMCAApbBlIAWAJbXVFTVVlXFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5a9dae4-226e-42f6-b38d-d6f3f560ed69.jpeg
34.120.237.76200 OK 93 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5a9dae4-226e-42f6-b38d-d6f3f560ed69.jpeg
IP 34.120.237.76:0
File type gzip compressed data, from Unix\012- data
Hash f3f209741e72b404cb6f0d6335635efa
9a9da1d8fa31ff064adb964f5fbb256912007aeb
56262f4412b8ed3b03a6758b9e2af93b9f53189bf16560d2f1acb8adb7ee4f3e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5a9dae4-226e-42f6-b38d-d6f3f560ed69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6806
x-amzn-requestid: bdf4f489-b474-4143-881f-521ad5dee74b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocwUGb9oAMFRGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a801-2a1e822f6b1dd3304c8f0527;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: oxLrpXYZuUBO5qEKrFYAkh3lx2ZE7Jph8tcq0b4dWIHxUODXP3FDDQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:52:49 GMT
etag: "0f432e521fc4392f528042c711139dc0becc5598"
content-type: image/jpeg
age: 23271
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690
104.26.2.88200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690
IP 104.26.2.88:0
GET /checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:34 GMT
content-type: text/css
x-amz-id-2: TFeFBTQKDxErsapH4IB7ougpeXwNtLz4KXLfWfoIopR0plLYMlCs3pIr+cvNYFac1pvCyb/CvhY=
x-amz-request-id: ZR1HAN8RMGGE4KE2
last-modified: Tue, 11 Oct 2022 12:54:40 GMT
x-amz-version-id: hAW8LRqvA2JD0cqLKO7P1m_k08cGos6U
etag: W/"d31e71e22fa577d1f19d2488ebd24690"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C8nurVWBCxSxwGJ%2FBelsuyT56eQNHuSlCF4k%2F54hJ%2FCNWaBeZ4CJxwKBGMeB09ih17EzHzdL8NALeJ5ohAIF5R9pwUQ0QMwatZYF4ial2nn%2FMdLSscQN%2Bwdl2H3Tb9QwPEHj6PYiNbWn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7608a3d3da3db4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.yampi.me/jquery/jquery.js
104.26.2.88200 OK 0 B URL HTTP/2 cdn.yampi.me/jquery/jquery.js
IP 104.26.2.88:0
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:34 GMT
content-type: application/javascript
x-amz-id-2: QsmtL8/nVojRDvW+BmEU501Lw4WV+5t5F8LfBudh5F+R0IvsUm6Z0OFwq4bu2oMNhxhgi4mZaYc=
x-amz-request-id: VXXM8XE9A56HSH68
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2599
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Habm6PTaOh7Gcx%2FOo%2FHw0xpK2HuNANyeXAtLhgfZ7ddQc%2B%2BJqSWL2V4fEtx%2FxYzLgLPozH1jaJO1qUAFdssu6mFfNvO5bby5zruevwoAigrwSPz%2FLsf1UXBXuIMt8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7608a3d42a71b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png
52.95.164.124200 OK 0 B URL HTTP/1.1 s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png
IP 52.95.164.124:0
GET /king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: YTndbr1buhOM9IklAU5nXrjFBX4i7wMVQ06CFOjhB+czE20utorZi640aff9XXDJnNywOLy5av4=
x-amz-request-id: A7H04XH0HAX8KQ49
Date: Thu, 27 Oct 2022 04:20:36 GMT
Last-Modified: Tue, 02 Aug 2022 17:21:54 GMT
ETag: "42653495a27a747f3deff05ead6ab0f1"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 190952
awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737
104.26.2.88200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737
IP 104.26.2.88:0
GET /checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:34 GMT
content-type: application/javascript
x-amz-id-2: t+pRi2mpVP/HsO6DPUQ+MwgdDbnyFwdhufrM6mVKoFcR90+4pnZEZq1LTqPIV+vqrgSsO53OeDg=
x-amz-request-id: 8PNW7DEJ2HZN8VAP
last-modified: Mon, 17 Oct 2022 16:57:49 GMT
x-amz-version-id: XNhG7PkF_3JzSvKaF.22AtqXuyl0wmHr
etag: W/"29013ef444dc3b59ed77c986db2a8f06"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yel97781IQi1yovFVnvKGaCdUzsc2AjJv5FqCYVVSJDrt5opeTq7tDgr9EHey8Q9Q2O8Z28vWAfHnB9FuXHDN3LmTdOMaSFw1m0pdYQ1NTdTZCJ5MLBtxqPCCgPG6nGlBabo9i5P6jFd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7608a3d41a63b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.dooki.com.br/fa/4.7.0/fa.css
104.18.0.53200 OK 0 B URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.css
IP 104.18.0.53:0
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:20:34 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 0
expires: Fri, 04 Nov 2022 04:20:34 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 7608a3d4ba9a1c12-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
seguro.caixamisteriosa.net/cart?cart_token=902f412c-5598-11ed-b50e-02f91afe0016-6359e1ee128fd&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=e485c680-5598-11ed-9afb-95069bf59b6a
170.82.173.30302 Found 0 B URL HTTP/2 seguro.caixamisteriosa.net/cart?cart_token=902f412c-5598-11ed-b50e-02f91afe0016-6359e1ee128fd&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=e485c680-5598-11ed-9afb-95069bf59b6a
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /cart?cart_token=902f412c-5598-11ed-b50e-02f91afe0016-6359e1ee128fd&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=e485c680-5598-11ed-9afb-95069bf59b6a HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 27 Oct 2022 04:20:32 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.caixamisteriosa.net/checkout/payment?cart_token=902f412c-5598-11ed-b50e-02f91afe0016-6359e1ee128fd&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=e485c680-5598-11ed-9afb-95069bf59b6a
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IithM1Vqd3pKUjZpbVpFaTBTa3FKWnc9PSIsInZhbHVlIjoiVzRWMFA4NzZYZWx4RUttRzF4UkQwWDgzcUJaaTljQkpCMGx2dkhFbXc1ZDNlR2JcL2Y5cUdRcThDalJCYzRcLzQ2SmVGOFUwWUxvWnQ2SDhtdHRHMHhQQT09IiwibWFjIjoiMzkyZWI0YjJlMzk1MzE4MWU5Y2ZmZDBjMmJjZWJlZjc0ODE3ZjM2NmIzY2I2OTk2NWFhM2U2YTQ1NjNlN2QxZCJ9; expires=Thu, 27-Oct-2022 07:20:32 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InU1aVB0MmZtQmsyQys1c3dRdUFBaFE9PSIsInZhbHVlIjoiMWJ5bDhqakdjQ1M3bXFDcDR5ZmZUNjlOcGlneU8yNzNsdGFLdjBpbFwvM1FiTUNBSUhHT1dGK0lZVUlrdXp6bWNuQUVZK0JcLzFNbll1aTUrSVgyK0JYQT09IiwibWFjIjoiYmUxMDRkNmM3YWNmMjU3YTgxZDVlNDNiYTk1NGVhNzFhYzdjY2JhYTNjYmI5ZDI3MmQ2ZDczOWZmODQzNmQ5NyJ9; expires=Thu, 27-Oct-2022 07:20:32 GMT; Max-Age=10800; path=/; httponly
caixa-misteriosa9_cart=eyJpdiI6IklpdWF1Z3FpSXl4QzlwQ1wvaGdrcXpBPT0iLCJ2YWx1ZSI6InVoM1lZK01SNDk0VHdjYSszRkgwSTZHMVMwZU1aRWR4THV2TGdkcnV1Y2h3R3MyOXRPc1RrQVwvak0zVkFGdWhNV0x0QlVJUHR1b2dQU1pmQzUrWVVlZz09IiwibWFjIjoiY2FmODc3NGI0YWM1OGQ4Y2I0OGIyNGI3OThiOGEzZTZjMmE4MTUxMjZmNmYwNjQzODY1Y2ZhOTljOTJhYjg3ZCJ9; expires=Tue, 01-Nov-2022 04:20:32 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2