| linkcurto.co/5pcsz2s8ulgk0 | 172.67.157.46 | 301 Moved Permanently | 0 B |
URL HTTP/1.1linkcurto.co/5pcsz2s8ulgk0 IP172.67.157.46:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /5pcsz2s8ulgk0 HTTP/1.1
Host: linkcurto.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 26 Oct 2022 04:30:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 26 Oct 2022 05:30:10 GMT
Location: https://linkcurto.co/5pcsz2s8ulgk0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n6qn4qJmwzMqACNf39IUy7jaNmlJia4adCIVAOQGcVMswVZ5H%2BMxwcieVJtakNme1wjiimjvKGdJxeSjb13nL0UgtWnQ2l3GdQ55nRXa62oPE%2FNkyqCCZjOH6WULUio%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 760074861da6b505-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe36c852b5e145f2f09fe73111fb162e1 e439c6a462f86a3003d6464a8b9999b1c4d1e210 52a721168d0c41cb0854ff8c730fce3b79db2e804b383238e95ff1401922bd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52A721168D0C41CB0854FF8C730FCE3B79DB2E804B383238E95FF1401922BD74"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17973
Expires: Wed, 26 Oct 2022 09:29:44 GMT
Date: Wed, 26 Oct 2022 04:30:11 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashc2bba4cad162918b17858b60e909e4d9 d9a1d4f7fb7635ab233ebbf776e6de1a2857032b 3a1d27ec3d034d6326b32f6054b6be46079a86a33e75d5a2a3796a0c4c5eadab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1631
Cache-Control: max-age=106091
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:11 GMT
Etag: "6357acdf-1d7"
Expires: Thu, 27 Oct 2022 09:58:22 GMT
Last-Modified: Tue, 25 Oct 2022 09:31:11 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasha39eea1096852891690eaee02a64383e c273000f799fc3676e8e3ef3617611a31252cffc d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8007
Expires: Wed, 26 Oct 2022 06:43:38 GMT
Date: Wed, 26 Oct 2022 04:30:11 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BOory/ly6J8D5ewsMlG8kjqFtfC+VqN3xZ2VfLS//IeDXzYJ2taKxiHQIjemnJumt17hy+Sk1Y8=
x-amz-request-id: ZNET8M9T5P09R4E3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 26 Oct 2022 04:09:13 GMT
age: 1258
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 04:30:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash518ff04fd536958e285cf07aaf4a2786 fa5dad2391c2a9957340bd629f0462db4f412a5c 608c78964412d5dc7025e9cbfaef345d448a29eae0f11257c49a41f274917b9a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6544
Cache-Control: max-age=105941
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:11 GMT
Etag: "63579918-1d7"
Expires: Thu, 27 Oct 2022 09:55:52 GMT
Last-Modified: Tue, 25 Oct 2022 08:06:48 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 35.165.41.15 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.165.41.15:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uFbJP6s8RmlcXXDY2tboCA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aDFLgQWOO2c6kpCD6JuFZzyOBcE=
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash398e3c90084d7d71fc1e9fd833116f5f 3e202da5559a8f219144adee3639d063a98559c0 724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6280
Expires: Wed, 26 Oct 2022 06:14:53 GMT
Date: Wed, 26 Oct 2022 04:30:13 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash398e3c90084d7d71fc1e9fd833116f5f 3e202da5559a8f219144adee3639d063a98559c0 724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6280
Expires: Wed, 26 Oct 2022 06:14:53 GMT
Date: Wed, 26 Oct 2022 04:30:13 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash398e3c90084d7d71fc1e9fd833116f5f 3e202da5559a8f219144adee3639d063a98559c0 724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6280
Expires: Wed, 26 Oct 2022 06:14:53 GMT
Date: Wed, 26 Oct 2022 04:30:13 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash398e3c90084d7d71fc1e9fd833116f5f 3e202da5559a8f219144adee3639d063a98559c0 724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6280
Expires: Wed, 26 Oct 2022 06:14:53 GMT
Date: Wed, 26 Oct 2022 04:30:13 GMT
Connection: keep-alive
|
|
| linkcurto.co/5pcsz2s8ulgk0 | 104.21.81.61 | 301 Moved Permanently | 47 kB |
URL HTTP/2linkcurto.co/5pcsz2s8ulgk0 IP104.21.81.61:0
Hash75f69c83be32f2059961c41ec1c8a611 baf44598da01cae9918ded7e53f41efb419199bf 26dffda65fa71d59aa80a26b91229b5bbf78eca3cecf41429cd46eced9bc26f2
GET /5pcsz2s8ulgk0 HTTP/1.1
Host: linkcurto.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Wed, 26 Oct 2022 04:30:11 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.caixamisteriosa.net/cart?cart_token=d62f11f2-54d0-11ed-9928-027165b02942-635892d8295a5&utm_source=google&utm_campaign=SMS Carrinho Abandonado 1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=251b17d0-54d1-11ed-a8f3-59fd816a48f0
set-cookie: XSRF-TOKEN=eyJpdiI6ImZVcXZOTGd6bVdoNlMzSUp1SFdyRVE9PSIsInZhbHVlIjoic1hjZllWYnI1VkFoNUlLcGlhc2RnbDdWYlc0b0VlQ0UvUVppdU1pd041MnZOYjQ2TDMwM1JrYnRoeSt3THo1dXhOYnNxVVlhSXIyS05wS3k4cnUxMUtqb1RIdDdHYmhYYlNZT3ZCVURzZk45cW5VMC9pTnBvQ1paQzIxeExucDEiLCJtYWMiOiJiNjliMmRlNjFhZmQ1Y2Q1MjBmZGIzMDQ1NmJkYzAzMmIwYTZmYjZlODk4Yjg2YTRlMjZlZGU2MzQ3MzhlODU5In0%3D; expires=Wed, 26-Oct-2022 06:30:11 GMT; Max-Age=7200; path=/; samesite=lax
linkcurto_session=eyJpdiI6IkkrbmpEbkZvNERocEY4T2NxT2xnOFE9PSIsInZhbHVlIjoiRDFodUNHQXBTT1NTS0VJWUlyZjFEWEVyRE9VTTZtM1hlOWhWQnpqUU1mOWFvSkJNNFV0ak1UUTRudHVuZG9yOXNiSmdNM0VwT01ZeVRmS29ocEQxL1FicFZ3ZWh1c21XZjJZN3l1R2d5enVlYm1zSDB5SW0vYXJOZ2xNM01YTTciLCJtYWMiOiJjNmZhMjllMjc5MDE1MzliN2VlYjViMGNjOGI4ZDEzOWUwMWE2MmEzY2Q4YTdjYmFlZjIyZDc1MTdmM2NjODk1In0%3D; expires=Wed, 26-Oct-2022 06:30:11 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8NUa6iSxZTDhquxC0wi5XEJxWZm9c0RRQUGv7QONjdIpRxULRHzni3o1zoeT3v5GpR%2B7LJfYGdi%2Bj4quV9ZuvKCbhNhAZrjk95xjcOVigcu%2BZE2MawOifQqyNJi356Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7600748809d7b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png | 34.120.237.76 | 200 OK | 8.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdb946866312c734e0c5f91ca76255b2f e8b8236baab9106a426a415eb01494cc4cc91ad1 a695e7bc87da2c6d9f5669c09e662fe22982e69cb139466efa5093429fe19866
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8439
x-amzn-requestid: e0eed725-0725-4f5a-9c91-fec13ad0ebe5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ajKYQGWhIAMFdhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63578a9b-2a0115120e75f5271cea992f;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 07:04:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IisH-UlY1H7LhBtcOarHFRQ3oy2650lv-X8HcZhwJheacfV08UXdqw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 07:16:53 GMT
age: 76400
etag: "e8b8236baab9106a426a415eb01494cc4cc91ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bb798f-68f7-40da-b8a2-df020464cf6a.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bb798f-68f7-40da-b8a2-df020464cf6a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashbde3afce205445ff4d37fd7304d6703f 940ab4fcf102e23bd3c66ea4ed884758884a3562 4effa7986e9e0f55c88caeefaa3d0523ad7496352c8caeaa1b6d7ef2e40138c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bb798f-68f7-40da-b8a2-df020464cf6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12421
x-amzn-requestid: d1acf900-eae0-4c4a-9310-5cabb6cc53c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2hGsnoAMFXNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568f-315abf3d30887d94198a14af;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6vw_9qHLCuynGyCBz_xUgy903P5zAdVijTMIZaozryR6fU4Yd0PC9w==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:49:36 GMT
age: 24037
etag: "940ab4fcf102e23bd3c66ea4ed884758884a3562"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash91ee720c15dc69de45080d0c951353af 5292b31a99d90bcb7071f327b93d52034bdf9dcb 7fbe9f0f6db08fd539f2e8d4ac22e3b4d5ca14f7cde69f8424cce8b361d026e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4524
x-amzn-requestid: a493efe7-11c7-4032-b36b-7f838f8180bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aljicH_6IAMFqpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63587fa9-0f15eae7680ea7b15e5e47ec;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 00:30:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NQJHFIbLMzw0aGwCkVGIEIHOMHprTpvLkLQRKgrGeVj35sk7sW4IUg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 00:36:34 GMT
age: 14019
etag: "5292b31a99d90bcb7071f327b93d52034bdf9dcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48cd6d0a-5e38-4eda-b349-0efb558678c9.jpeg | 34.120.237.76 | 200 OK | 7.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48cd6d0a-5e38-4eda-b349-0efb558678c9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9d4241ae7c2236e38cb6df2a3ecb5c8d a19ff057587a29f7193f4b2c9755a4f216cc6c59 59aece251cdd8887c545e84bb5113f41b3a6b6af14f60161398b1bf2a5771484
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48cd6d0a-5e38-4eda-b349-0efb558678c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7042
x-amzn-requestid: 5bd3ed8d-4c84-4b38-8d9d-c6b8943956ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alK9KGJGIAMFV6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585854-5f1fccfb501455bc2834940d;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:42:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: B4hZ_viGTb-KtRKr0L8_vTeQ6k9MHq0rbxxG1ewC2hriy3ERxvhj6w==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:49:13 GMT
age: 24060
etag: "a19ff057587a29f7193f4b2c9755a4f216cc6c59"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash77f26048280036eede4e216d7ac2ed6f 619dff28900195c0d76692c6695c610c57fde4f2 d17b83d8de3794b198bd371579ca3447639f53121eb463b6eb0a766fe7f0103c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4545
x-amzn-requestid: f774726e-125a-486e-8f7b-7eb86450368a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2qHG7IAMFTSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585690-3e3bf9a7046685f7643817b9;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cH4Ae-5tI8KMs7ZQCIQM6OWRz1cEBUf7eOTZmQw0mJ-cmnlLqSX19w==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:53:34 GMT
age: 23799
etag: "619dff28900195c0d76692c6695c610c57fde4f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash3c9c2c270f0f348829e6fa9e626d1ec3 494c9e24b5075c15f25dcf9d5b3afc1f3787db32 cfa6075d47bb33cdd8bafbbfddf439a230493394d5dd2540c3cde815ce9c9d5f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFA6075D47BB33CDD8BAFBBFDDF439A230493394D5DD2540C3CDE815CE9C9D5F"
Last-Modified: Tue, 25 Oct 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21528
Expires: Wed, 26 Oct 2022 10:29:01 GMT
Date: Wed, 26 Oct 2022 04:30:13 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hash77b5da0f60755df91da1b98333c6d33c 0c36c5f1063e2ef41d02e26ddf9ed1e0a490e6b4 085b499d52d53965301db8affc692e09876290e5d67bf09c83178cc54384999f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash19132f29a8811a10f90eca2d81e5deb8 3b9e0bbf9f40f46b57dad5567b008e58b5770565 708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash760d2d7b95f166f83ebff72a7824c4de 2c4923a7adffb2886c651f78587f1dfcf785ed00 07fdda419c2e7814b392cab889af1c53551295aeb3c7e8ae8161a4552db385db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=168496
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Etag: "6358a708-117"
Expires: Fri, 28 Oct 2022 03:18:32 GMT
Last-Modified: Wed, 26 Oct 2022 03:18:32 GMT
Server: nginx
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash760d2d7b95f166f83ebff72a7824c4de 2c4923a7adffb2886c651f78587f1dfcf785ed00 07fdda419c2e7814b392cab889af1c53551295aeb3c7e8ae8161a4552db385db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=168496
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Etag: "6358a708-117"
Expires: Fri, 28 Oct 2022 03:18:32 GMT
Last-Modified: Wed, 26 Oct 2022 03:18:32 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
|
|
| www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC | 142.250.74.164 | 200 OK | 585 B |
URL HTTP/2www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC IP142.250.74.164:0
File typeASCII text, with very long lines (884), with no line terminators Hash1c688e8b7ed088521762f89cbd72e218 1583739e93dd4910cac00db5bfa2ad3a2c8856f7 12d5e7dbe1cc3027cb2663e42a4cd5654433c5bf1d4e370dfefb19475ec67f5c
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 26 Oct 2022 04:30:16 GMT
date: Wed, 26 Oct 2022 04:30:16 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash760d2d7b95f166f83ebff72a7824c4de 2c4923a7adffb2886c651f78587f1dfcf785ed00 07fdda419c2e7814b392cab889af1c53551295aeb3c7e8ae8161a4552db385db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=168496
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Etag: "6358a708-117"
Expires: Fri, 28 Oct 2022 03:18:32 GMT
Last-Modified: Wed, 26 Oct 2022 03:18:32 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash19132f29a8811a10f90eca2d81e5deb8 3b9e0bbf9f40f46b57dad5567b008e58b5770565 708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash130509513bc271340f20f1c556b2592a 6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d 6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ | 142.250.74.35 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ IP142.250.74.35:0
Hash615f7d2e3b7884859d06ac93f7ce5e58 74425494f4e8d3b3e48fc1ff71b82cce5fa924f6 4f0f5d33007a58993ff5bb00955dd3ae45d0ed84cf6f4e737516e7b6537281cc
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| js.upnid.com/v0.js | 130.211.14.112 | 200 OK | 8.3 kB |
IP130.211.14.112:0
File typeUnicode text, UTF-8 text, with very long lines (23050) Hash49fa980f95bb3bbff8b7a2857a727d5d 9e931943f03079522318820948018d78610eaca4 4e295d58275798f67bf7b9c48b8cae16238c9a3dabca082238e7bab8eaa34943
GET /v0.js HTTP/1.1
Host: js.upnid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin
content-encoding: br
via: 1.1 google
content-length: 8310
date: Tue, 25 Oct 2022 22:48:00 GMT
age: 20536
last-modified: Tue, 19 Jan 2021 20:16:07 GMT
content-type: text/javascript; charset=utf-8
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ | 142.250.74.35 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ IP142.250.74.35:0
Hash615f7d2e3b7884859d06ac93f7ce5e58 74425494f4e8d3b3e48fc1ff71b82cce5fa924f6 4f0f5d33007a58993ff5bb00955dd3ae45d0ed84cf6f4e737516e7b6537281cc
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash365b90964da78d42adf726c6c3fcea38 1f59a9394dd64da56ee9e9fe41d3d69094a9833e a968c10dc97f7a3fe59d7a6e37e1d93c44d379e8f936b577543f617827bc405b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=121358
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Etag: "6357eee6-118"
Expires: Thu, 27 Oct 2022 14:12:54 GMT
Last-Modified: Tue, 25 Oct 2022 14:12:54 GMT
Server: nginx
Content-Length: 280
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg | 104.26.3.88 | 200 OK | 8.6 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg IP104.26.3.88:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3\012- data Hash53f8716e4000def629db36d31f645cb1 db8c371fc52e7ab263634119821620d9f03c814f 2efb36089e2b052421b3c15c6c159fae1924bc1a1c2209ccd82f4d0ccc13f1c2
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:16 GMT
content-type: image/jpeg
content-length: 8648
cf-bgj: imgq:100,h2pri
cf-polished: origSize=9336, status=webp_bigger
etag: "8220257871413a2a14ab3d6b964f6abf"
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-id-2: 9BEGGAOO+B86AzP/jdJYfYW3gW6HDOBQhoYuK3o7sBLovtVBxar+XO8k9yBr/iNISNKlU7dtku4=
x-amz-request-id: 8S43FZKMHQDJCJD6
x-amz-version-id: HfrtBnZFXQLQQPWMe2SSfAQyOFUNAZMA
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YrxENGR2gTKv%2BPw3T4yDpHZxkrZKPGwJjKS8utGC0BxOHgu8QkqLZoXoYbEm4v9D3%2FvTqGo62bHWR%2BzxY7cCuPVxGvqLMV%2BMw1FlW5ZxuvH3X0JY1xyaWo8XBwwfBQrFQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760074a7f8050b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg | 104.26.3.88 | 200 OK | 8.2 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg IP104.26.3.88:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3\012- data Hash9074436dac9f6d61bccb042c185adff3 b9d1247ca03baccc0203747de619c3579ac299fe b0a54814b8b0f5abf1f1c43941cfdc945fb105f0ad91962af3df15b2a98d1b24
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:16 GMT
content-type: image/jpeg
content-length: 8208
cf-bgj: imgq:100,h2pri
cf-polished: origSize=8822, status=webp_bigger
etag: "64d0d3cf4cf12b175c2bfde2b119fd73"
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-id-2: kpYdRAWThlOvzdGFOaofox1Xw/BYGm7zIz2kOBJzG9yrcmu2SnTuXQkfDl0tMd+Cduek85ciemc=
x-amz-request-id: 8S484Z5WGKS5CG4Y
x-amz-version-id: xeytj2tGe9ZE1VBrjh._yFfBsbQCZQQP
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l68%2B0wQpiDkZ0Oz%2FXt7ziCJhLMDzeENORB6qzZYt1WAXz9p4LCpLxbu7GHWD6ekXTsexvwChNZWvTs4p%2Bfv2QwcrP04llkAHG1n6nEKC1pNiLhI4%2FVw%2Fxti22deRtEc4uA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760074a7f8070b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/cart?cart_token=d62f11f2-54d0-11ed-9928-027165b02942-635892d8295a5&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=251b17d0-54d1-11ed-a8f3-59fd816a48f0 | 170.82.173.30 | 302 Found | 9.2 kB |
URL HTTP/2seguro.caixamisteriosa.net/cart?cart_token=d62f11f2-54d0-11ed-9928-027165b02942-635892d8295a5&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=251b17d0-54d1-11ed-a8f3-59fd816a48f0 IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hashc2fd5e55a40ad00bd224d8029c18787a 6b607f4898c6cef4c36cf7d3682c3d3a736bad40 f6588553b6d25942f3ecde88d595f365410e87b346ec0109d6ac9c6df0f077cc
GET /cart?cart_token=d62f11f2-54d0-11ed-9928-027165b02942-635892d8295a5&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=251b17d0-54d1-11ed-a8f3-59fd816a48f0 HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Wed, 26 Oct 2022 04:30:14 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.caixamisteriosa.net/checkout/payment?cart_token=d62f11f2-54d0-11ed-9928-027165b02942-635892d8295a5&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=251b17d0-54d1-11ed-a8f3-59fd816a48f0
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjhOZTd4WDdEWmJjdzZSd1ZYRW94cnc9PSIsInZhbHVlIjoiY3Z2T0xna0lZNW9kd3ErdENDNWdOUkhDSFhuRXhKaENuV29Wd3l6a1M5Wk00R2hFZTF5NGo3ZG9pTlI3djJrNmk1a1lmYjVNdU5MaGZ0OWlxZ1BJUFE9PSIsIm1hYyI6ImI5NDM3M2NkNDcxYzNiNDE3NWIzODM1N2ZlYzQ2OGQ2MjQzYzM0NDE5MDE2MDhhMGY1MzY0NTIzMmYyMmM0MGEifQ%3D%3D; expires=Wed, 26-Oct-2022 07:30:14 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InNLZmlUbDIyXC9RWnlpZDNvTnU0U3pRPT0iLCJ2YWx1ZSI6IkZGSVp6XC9BZEVDcWhOUUtUdEhUenJSM0N4b05HRVpWdjBsV3hNclRcL0xPM0s2TG42cERmQzBaSWxZOUltVEJcL1dSMWdLZllGaUl3SWJJUGRZTUpnWTZnPT0iLCJtYWMiOiIxM2JhYjI3OTE1NzVjNzQyYmQ1ZDNiNzQxMDA4NzIyOWUzYWE2MzYyYzRkYWQ0ODJjMjFkYTA2YjUzNTg2NzQwIn0%3D; expires=Wed, 26-Oct-2022 07:30:14 GMT; Max-Age=10800; path=/; httponly
caixa-misteriosa9_cart=eyJpdiI6ImV6RlVSeU1GalBCOXpVN2tMVWpSVkE9PSIsInZhbHVlIjoiV1NvdWt0TUYxVEJuTkNxSEg5bzFnaXFjbkJQeFpWa0VxaldBbWZGQ0ZOZ2VZbzF4TkoyUEFuNEREUnZnbm14N0FCaGpcL1lMa05PK2x6SEdmRFBkQmpRPT0iLCJtYWMiOiI2ODY4YzI1ODM4MWIxNWRhNGQ1NjY2OGIwMTcwZWI1MTYxMzllMTRmZWVlYzE2MTljZjVhNzExODlmMGQ3ZDc0In0%3D; expires=Mon, 31-Oct-2022 04:30:14 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg | 104.26.3.88 | 200 OK | 10 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg IP104.26.3.88:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 150x150, components 3\012- data Hash04572c76d141851db42a1a6e13d38b71 aee88a71a5c7a780c6fb9aad074674ea7caab126 f97dc1da935583662b69ee9320a707de02f9c9ae32c6c825fdcaf51ee0618d50
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:16 GMT
content-type: image/jpeg
content-length: 10320
x-amz-id-2: LanhgAiXZOYYA+2ScYOx90pAloWf9cBFvH3t7MdFQwlm9Oyymw7fzKSW/SbKHsb/e/hT2CoP0f8=
x-amz-request-id: 26D99WV6TCK0TQR3
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-version-id: AatCE1mkRL6z1GEYqQay5AQrkz_0GlQk
etag: "04572c76d141851db42a1a6e13d38b71"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xo%2BPN9crlYN6t0K923r413R6TwXMW4zB9Q40CNcXg%2FUKIGH7Mt2p7Pl4o%2BEkdlmhy1OKS4OJV9wD1aVOFGy4lIF5Q2eD7TvHK2AiG6z7qzBobWz67%2FNLBbfJRBfEWvXMAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760074a7f8060b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.sca1b.amazontrust.com/ | 54.230.245.100 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP54.230.245.100:0
Hash3ba5cb5d9a7c3ab94d95a75c483569bf a4dec96f9d552ee5416ea585e4114b745868c1db 83e4397f56e1d613a57b389b2b3256bbc3dcd474ff92b5613eb9c8eb952e0d4e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=90773
Date: Wed, 26 Oct 2022 04:30:16 GMT
Etag: "63576ab4-1d7"
Expires: Thu, 27 Oct 2022 05:43:09 GMT
Last-Modified: Tue, 25 Oct 2022 04:48:52 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n69HCuA1CcmxRjKIIWgCr11KRCSTte-gbH-YxVP7pz_wx0kILCH37A==
Age: 3257
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashe4f7139b125683bac76c2b5638a1a643 2f84ea7104d659754e5962f88f504a7189f6f914 c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690 | 104.26.3.88 | 200 OK | 26 kB |
URL HTTP/2awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690 IP104.26.3.88:0
File typeUnicode text, UTF-8 text, with very long lines (65534), with no line terminators Hashfd256ef43f4ad55712ca94f72a0440d3 429b7d3f277f9db0da73b6255bbdf82dc25859e1 4a442a9c461bd6f65b82aceff10d92224289f5e86f1e7f65458ae02c638c0f11
GET /checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:16 GMT
content-type: text/css
x-amz-id-2: TFeFBTQKDxErsapH4IB7ougpeXwNtLz4KXLfWfoIopR0plLYMlCs3pIr+cvNYFac1pvCyb/CvhY=
x-amz-request-id: ZR1HAN8RMGGE4KE2
last-modified: Tue, 11 Oct 2022 12:54:40 GMT
x-amz-version-id: hAW8LRqvA2JD0cqLKO7P1m_k08cGos6U
etag: W/"d31e71e22fa577d1f19d2488ebd24690"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HrhgA6CBUkpdT4d7ciDBNIaZe5KJita2tTBRuWUvWm3eyaJA7Q%2FtQxSPQFbLgrojWQheZActEgorsOJz%2FCYzzdvg1l97IxeqjcRS1bOsb%2FnKh%2FPzy%2BwFwgqawnumhHlmWMWPbvCCrHiv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760074a7effd0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 | 216.58.207.195 | 200 OK | 34 kB |
URL HTTP/2fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data Hash848cd2ecd011428969dc6b90431bc482 6b1a7b562a56bd54510e0f6f95e26babca331a1b 981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 21:08:19 GMT
expires: Tue, 24 Oct 2023 21:08:19 GMT
cache-control: public, max-age=31536000
age: 112917
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashe4f7139b125683bac76c2b5638a1a643 2f84ea7104d659754e5962f88f504a7189f6f914 c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| seguro.caixamisteriosa.net/checkout/address | 170.82.173.30 | 200 OK | 155 kB |
URL HTTP/2seguro.caixamisteriosa.net/checkout/address IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Size155 kB (154871 bytes) Hashcca04162f3b4405159bae2aae7ec6d85 63e2a71197124c5a8d386dfea8de86051e54b9d4 1b22d9e737f0ec16bfde84f89b5116d0d199e2e3c64cca28498aeeade7901a3d
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /checkout/address HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlBzTTdKUHJWRkJFNDZjT01JQW9NZ2c9PSIsInZhbHVlIjoiTVIwMTdBNFhBbFkwXC9HZ3FsaTlqM3RnektMWmM3aVR5YjdRc0hWU0d4RGFFWkNodmVvUkxaaEp5OHRDTWlKdzJoSXJ5K0hidjNobmttemNTOHBwZHRnPT0iLCJtYWMiOiIxODkxMjJkZjhmYzE3NWZkNTIyOGYyZGVmYjdmNGVhYjdlYmVlNWE1YjNhMGVkNWRjMjkzMTg1OGQ4Y2E4ZmJmIn0%3D; bubbstore_checkout=eyJpdiI6IkdJditkNngxSTMxeEJiQW11WEdaelE9PSIsInZhbHVlIjoiNHV5M1dqaGxhQXQwNjFhdGdpaFEySWlVT0ZONjJ5T0RvNnZuWVVhbVFPTEJxUTJTdW0xNHBmSzZ2Z2ZXZEVIUjRtR1BJUXFJZm1XOTV0Rll4VGpRNEE9PSIsIm1hYyI6IjVjODZmZDRiNjgyNzJkNTYxM2QyYTNjYTgyY2ViNTg1NDVjYTUxYzYyNDhhNGRiNjQ1ZGQ1OTVjNDljM2I4MDAifQ%3D%3D; caixa-misteriosa9_cart=eyJpdiI6ImV6RlVSeU1GalBCOXpVN2tMVWpSVkE9PSIsInZhbHVlIjoiV1NvdWt0TUYxVEJuTkNxSEg5bzFnaXFjbkJQeFpWa0VxaldBbWZGQ0ZOZ2VZbzF4TkoyUEFuNEREUnZnbm14N0FCaGpcL1lMa05PK2x6SEdmRFBkQmpRPT0iLCJtYWMiOiI2ODY4YzI1ODM4MWIxNWRhNGQ1NjY2OGIwMTcwZWI1MTYxMzllMTRmZWVlYzE2MTljZjVhNzExODlmMGQ3ZDc0In0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:15 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IndObzBoNlVjWnBxa0VlTytNWjVjb3c9PSIsInZhbHVlIjoidEVmTmFXZW84Mkh6WXl0YndzUHFVU1EwMGRXR1h1dlpqVnA3NnpoMzV0YlNVQWNNbzZ5ZGZzb3JXT01GK1Nia2lxc2ZSU214UVR6ZGtOVjZacTNVcVE9PSIsIm1hYyI6ImY4ODdlZWQ3Njk1MGMyOGExNWRkYmI3MDVjNTIwNzhlNzhjYWU3MmUxOTVmMWVmZjU4ZWU5YzlmZThlMWY0YzMifQ%3D%3D; expires=Wed, 26-Oct-2022 07:30:15 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkNXVEFhXC9KSmhMaERWZmpFZ0RWWHJBPT0iLCJ2YWx1ZSI6IlBYVEhtKytVd3ZuQjB0aWg0alVXZjVXZ2tXMGlDUGRPaTdcL2ZcL1k2WWdpK2tEb0Q3NUk5UWxSNmt0WlA5ZUhVSnEzQUJ6QisyNWFuWFZhMHRyYWl2Q0E9PSIsIm1hYyI6IjNhZGM4ZTBjNThlMGMxMjI1YWMyYzdkOWIzZjRmNjE1ZjI1ZGU1ODdlNDRiOWFmZGJiN2VlMTI4ZTNhMjQ3ODMifQ%3D%3D; expires=Wed, 26-Oct-2022 07:30:15 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0 | 104.18.1.53 | 200 OK | 77 kB |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0 IP104.18.1.53:0
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:17 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: xIw7xyrWh7tMbAn3EEHH4MwVIvngCdMJZzqEwyRpxw93epYCebm75FVAa7Fs9PX4Xh3seDuVm+Y=
x-amz-request-id: 0QAV3XV18SQBTZWG
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: MISS
expires: Thu, 03 Nov 2022 04:30:17 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
server: cloudflare
cf-ray: 760074ab89a5b509-OSL
X-Firefox-Spdy: h2
|
|
| cdn.yampi.io/ana/ana.min.js?t=1666828800000 | 104.18.15.227 | 200 OK | 2.8 kB |
URL HTTP/2cdn.yampi.io/ana/ana.min.js?t=1666828800000 IP104.18.15.227:0
File typeASCII text, with very long lines (7571) Hash8c3e9458d420450fdf564c3f43848098 e4e8a532fc488cdb4c9cd444b632b6aa3f41fa7f 54c5426f5245f46b529a61c7f7a443ed8122df4297ab0375ed69c57a3a7fcf20
GET /ana/ana.min.js?t=1666828800000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:16 GMT
content-type: application/javascript
x-amz-id-2: aJPeIHNkdsuFKzonazebAc2C2BmhhaMywlOKpKBrP+VKbiKZxwwgXa2n9X9RiFFVo/wRaXeFwd0=
x-amz-request-id: JS0HBTS5CQSAC64A
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
age: 5724
expires: Thu, 26 Oct 2023 04:30:16 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 760074ab7cccb4f4-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png | 52.95.164.10 | 200 OK | 191 kB |
URL HTTP/1.1s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png IP52.95.164.10:0
File typePNG image data, 1628 x 1083, 8-bit/color RGBA, non-interlaced\012- data Size191 kB (190952 bytes) Hash42653495a27a747f3deff05ead6ab0f1 7f774f610fb12f312daeb5d49c5cc88af7dd1dc1 3ce6c07440b880752a44c423832b8a6691d7b22898871e08b38f0abe62b92fc4
GET /king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 82g0xjWTrOH98gJt6Hsvr1yd+L357+m9kpSktyO4Sf8xfHjD6h+f4k9xCnC6A14eoct9J9IfVXg=
x-amz-request-id: 9X46NDD2B2X6KDJF
Date: Wed, 26 Oct 2022 04:30:18 GMT
Last-Modified: Tue, 02 Aug 2022 17:21:54 GMT
ETag: "42653495a27a747f3deff05ead6ab0f1"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 190952
|
|
| seguro.caixamisteriosa.net/cart/recomm | 170.82.173.30 | 200 OK | 808 B |
URL HTTP/2seguro.caixamisteriosa.net/cart/recomm IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash517717c4f23afa24ed941a0398f14745 cacfdce7996783c565fc6e0ba3592dcc1a515364 25f323fd257163a73dbb945e0fe59dddd0d21bcb49332a8641a915c95ba1cd0b
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /cart/recomm HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImJjYWVkYzk4NjkxNDA2YTAiLCJ0ciI6ImVlODY5ODBmMTAyMmRiNTI2YWNmMWI0NWZjYWYxN2ZmIiwidGkiOjE2NjY3NTg2MTQwNzB9fQ==
traceparent: 00-ee86980f1022db526acf1b45fcaf17ff-bcaedc98691406a0-01
tracestate: 2935249@nr=0-1-2935249-1134170823-bcaedc98691406a0----1666758614070
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IndObzBoNlVjWnBxa0VlTytNWjVjb3c9PSIsInZhbHVlIjoidEVmTmFXZW84Mkh6WXl0YndzUHFVU1EwMGRXR1h1dlpqVnA3NnpoMzV0YlNVQWNNbzZ5ZGZzb3JXT01GK1Nia2lxc2ZSU214UVR6ZGtOVjZacTNVcVE9PSIsIm1hYyI6ImY4ODdlZWQ3Njk1MGMyOGExNWRkYmI3MDVjNTIwNzhlNzhjYWU3MmUxOTVmMWVmZjU4ZWU5YzlmZThlMWY0YzMifQ%3D%3D; bubbstore_checkout=eyJpdiI6IkNXVEFhXC9KSmhMaERWZmpFZ0RWWHJBPT0iLCJ2YWx1ZSI6IlBYVEhtKytVd3ZuQjB0aWg0alVXZjVXZ2tXMGlDUGRPaTdcL2ZcL1k2WWdpK2tEb0Q3NUk5UWxSNmt0WlA5ZUhVSnEzQUJ6QisyNWFuWFZhMHRyYWl2Q0E9PSIsIm1hYyI6IjNhZGM4ZTBjNThlMGMxMjI1YWMyYzdkOWIzZjRmNjE1ZjI1ZGU1ODdlNDRiOWFmZGJiN2VlMTI4ZTNhMjQ3ODMifQ%3D%3D; caixa-misteriosa9_cart=eyJpdiI6ImV6RlVSeU1GalBCOXpVN2tMVWpSVkE9PSIsInZhbHVlIjoiV1NvdWt0TUYxVEJuTkNxSEg5bzFnaXFjbkJQeFpWa0VxaldBbWZGQ0ZOZ2VZbzF4TkoyUEFuNEREUnZnbm14N0FCaGpcL1lMa05PK2x6SEdmRFBkQmpRPT0iLCJtYWMiOiI2ODY4YzI1ODM4MWIxNWRhNGQ1NjY2OGIwMTcwZWI1MTYxMzllMTRmZWVlYzE2MTljZjVhNzExODlmMGQ3ZDc0In0%3D; __ana_uid=1-gd6i7pjx-l9p51lh7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:17 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6ImYwd2Yybmx6S3h1NHQyWnBaMXhzdnc9PSIsInZhbHVlIjoianRvODZmR0FLNVwvdkdyNTVlUXVkaXREb1JSK2hES251RmhydzNNSDlmZzR5K25CYW5CbFZ0M0tvVmJYdFBCM1dKR0xrOTFuUjRjd1pER1ZsUWVUV2xnPT0iLCJtYWMiOiJmNTg1YWIxZmIwNTYxYTBmOWJlNjViYWUyNjY5MGYwZDg3NmM5MjU3ODk0MGFlNWE1NGFlYTY4M2I4OWYyNmViIn0%3D; expires=Wed, 26-Oct-2022 07:30:17 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InF3NUNHVzVkSk1YeVVyZitpck5kc2c9PSIsInZhbHVlIjoiRVRWRFh4MUZJVXA3UloyaDVKelR6WXNOdUFLZFVZVnlWVjI0RVJ6T08ya2dcL0I3N3lxS3RldGFRSkJrTitONTN2cnFxalNyUDRxZUZ5YUYyZzExZVRRPT0iLCJtYWMiOiI2MWE2ZDUyNDk5YzZmMGYyNWI2YjI1OTcyZWIwYzlhM2QyMWJjYjI2YjE2NWFhZGVmNGYyMDBmYzBiNTU1OWM2In0%3D; expires=Wed, 26-Oct-2022 07:30:17 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFtSQhBPEFJSWAsJExoDTFZTUgBSFFIWCAYEB1wVTABNEQAHBg9QBQAMCgRSAwZSUgRESFdXXxEDPg==
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/e/t | 170.82.173.30 | 200 OK | 492 B |
URL HTTP/2seguro.caixamisteriosa.net/e/t IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hashfbc4780b15860d45cc3a5111f4649845 a25674e72758909f8c7fe63033c17555e2d6b4bc 13b302ff9b3ff995e5d1bff9849f104df45161f9fa0f5c75ec78c7cb31a33dc0
Analyzer | Verdict | Alert | fortinet | Phishing | |
POST /e/t HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImMwNDQwYmE1YzdiZjJmY2UiLCJ0ciI6IjgyOWRiNTBjZjcxMGQ4NTZiMzFiNjgyOGE3OWUzYTU1IiwidGkiOjE2NjY3NTg2MTQwODN9fQ==
traceparent: 00-829db50cf710d856b31b6828a79e3a55-c0440ba5c7bf2fce-01
tracestate: 2935249@nr=0-1-2935249-1134170823-c0440ba5c7bf2fce----1666758614083
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 368
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IndObzBoNlVjWnBxa0VlTytNWjVjb3c9PSIsInZhbHVlIjoidEVmTmFXZW84Mkh6WXl0YndzUHFVU1EwMGRXR1h1dlpqVnA3NnpoMzV0YlNVQWNNbzZ5ZGZzb3JXT01GK1Nia2lxc2ZSU214UVR6ZGtOVjZacTNVcVE9PSIsIm1hYyI6ImY4ODdlZWQ3Njk1MGMyOGExNWRkYmI3MDVjNTIwNzhlNzhjYWU3MmUxOTVmMWVmZjU4ZWU5YzlmZThlMWY0YzMifQ%3D%3D; bubbstore_checkout=eyJpdiI6IkNXVEFhXC9KSmhMaERWZmpFZ0RWWHJBPT0iLCJ2YWx1ZSI6IlBYVEhtKytVd3ZuQjB0aWg0alVXZjVXZ2tXMGlDUGRPaTdcL2ZcL1k2WWdpK2tEb0Q3NUk5UWxSNmt0WlA5ZUhVSnEzQUJ6QisyNWFuWFZhMHRyYWl2Q0E9PSIsIm1hYyI6IjNhZGM4ZTBjNThlMGMxMjI1YWMyYzdkOWIzZjRmNjE1ZjI1ZGU1ODdlNDRiOWFmZGJiN2VlMTI4ZTNhMjQ3ODMifQ%3D%3D; caixa-misteriosa9_cart=eyJpdiI6ImV6RlVSeU1GalBCOXpVN2tMVWpSVkE9PSIsInZhbHVlIjoiV1NvdWt0TUYxVEJuTkNxSEg5bzFnaXFjbkJQeFpWa0VxaldBbWZGQ0ZOZ2VZbzF4TkoyUEFuNEREUnZnbm14N0FCaGpcL1lMa05PK2x6SEdmRFBkQmpRPT0iLCJtYWMiOiI2ODY4YzI1ODM4MWIxNWRhNGQ1NjY2OGIwMTcwZWI1MTYxMzllMTRmZWVlYzE2MTljZjVhNzExODlmMGQ3ZDc0In0%3D; __ana_uid=1-gd6i7pjx-l9p51lh7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:17 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IkRTU1U1XC8yaXUwZjdcL1Vyd2JxMHZzQT09IiwidmFsdWUiOiJpQzZDUG1FMXRISVwvWDh5Q2VOSGlJMWhaYkttc1JMenVxTkE3d3hCMW9TSUFGN2VndUpQd0xWR1JjNnUyYjJZRjV4SXJwS1FYcXlUVFQ1dW1SRVFvZHc9PSIsIm1hYyI6ImI4MGMxMTlkOTA1NWMwOTczZmE3ZmI2M2I3NWY4ZWIxNjQ4M2RlNjFiYjI2NDQ0MzZmOTVmNDliZDY4ODdmYjkifQ%3D%3D; expires=Wed, 26-Oct-2022 07:30:17 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImF6aktUMGo3REk0M2pcL0gxb0FKRVJBPT0iLCJ2YWx1ZSI6Imp4Yjk1N3l4emM3R20zWkRFNmRpMnRUK1daa0NEQWJIRW5wcTR0emVZamVvbTJORjJhVzdkOXc2Wk1rMkpaSER6UDVcL2R6MmxiYVpLVG1ieHlFOE5VQT09IiwibWFjIjoiNzdkOTllNTc0ZGJmMmI0ZTY4NTJiZGI0NjcyODZhOGIwNGU5ZjI4ZGIxZGZhZTE1OGVhYzkyZjBhMTFmNWFkMiJ9; expires=Wed, 26-Oct-2022 07:30:17 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js | 142.250.74.163 | 200 OK | 160 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js IP142.250.74.163:0
File typeASCII text, with very long lines (608) Size160 kB (159789 bytes) Hash1230a090d5cedcb9e764406ab9497c1b 3d175bcf4ad9957c3e32611713c01347299b173e 585cafe3d6a3b932804aaa5aeb19a650688a2c15767f513d0d60c1941475c428
GET /recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 159789
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 21:08:18 GMT
expires: Tue, 24 Oct 2023 21:08:18 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Oct 2022 20:02:07 GMT
content-type: text/javascript
age: 112919
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| connect.facebook.net/en_US/fbevents.js | 157.240.221.16 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP157.240.221.16:0
File typeASCII text, with very long lines (64348) Hash3199a043c6e1f3cebc24fd8649209e83 52ab67a063797a77836fc3ff53d143dcbec4e1c9 10cc66b20e34c1b0cf13e97c83c67ba99037460fcd0703b75aae0cddd2c6f68a
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: MrO5jooYhqz2jGWF7NaPu+q6u7vzhBW1ZC6ql9R+K/6QmNdzPDaCZVaRv4AKQOUTwQkHg/o0jxHxRuf2ioA7gA==
content-length: 27045
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 04:30:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashf1ae675435a8f16bc0b04ec012c41979 182f87a81464c80b0b25fb524c59592cd40b0ef4 9191ced121d8740b4ed3af75db3033e72c0c44c0b45004abd714583deaa749a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google-analytics.com/plugins/ua/ecommerce.js | 142.250.74.174 | 200 OK | 738 B |
URL HTTP/2www.google-analytics.com/plugins/ua/ecommerce.js IP142.250.74.174:0
File typeASCII text, with very long lines (745) Hashf804aa0b574b678d24df5281ed71a61d 2fc02211b273e1ab4d362df05d592f2d822c2add 1d2d8c7f3502f4459478fe8c7495a27464d6f178b1d564333a107d310c0ea74d
GET /plugins/ua/ecommerce.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 738
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 04:14:17 GMT
expires: Wed, 26 Oct 2022 05:14:17 GMT
cache-control: public, max-age=3600
age: 960
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashe51b6855c0480724d286847fa91528fe ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc 174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5155
Cache-Control: max-age=139809
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:17 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 19:20:26 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashd68830f33c12f2aa839ecd5c96146bb2 c4eca00dde1d737943bc2980b58a7288c06f808c 0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=152252505.1666758615&jid=1521125474&gjid=1383096046&_gid=1193945061.1666758615&_u=IEDAAAASAAAAAC~&z=1791276324 | 173.194.222.154 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=152252505.1666758615&jid=1521125474&gjid=1383096046&_gid=1193945061.1666758615&_u=IEDAAAASAAAAAC~&z=1791276324 IP173.194.222.154:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=152252505.1666758615&jid=1521125474&gjid=1383096046&_gid=1193945061.1666758615&_u=IEDAAAASAAAAAC~&z=1791276324 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.caixamisteriosa.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 26 Oct 2022 04:30:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashd68830f33c12f2aa839ecd5c96146bb2 c4eca00dde1d737943bc2980b58a7288c06f808c 0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 04:30:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737 | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737 IP104.26.3.88:0
GET /checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:16 GMT
content-type: application/javascript
x-amz-id-2: t+pRi2mpVP/HsO6DPUQ+MwgdDbnyFwdhufrM6mVKoFcR90+4pnZEZq1LTqPIV+vqrgSsO53OeDg=
x-amz-request-id: 8PNW7DEJ2HZN8VAP
last-modified: Mon, 17 Oct 2022 16:57:49 GMT
x-amz-version-id: XNhG7PkF_3JzSvKaF.22AtqXuyl0wmHr
etag: W/"29013ef444dc3b59ed77c986db2a8f06"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F9B%2FOknPZAXxdfVTVKPWNDw7LBhGnZH%2Bd0xCmPP6pqsbw%2F%2FuVDnxNOEVyAekFpMSwL88q%2BJsVWPntTfvYc40oAUdeZyUEkuCXac3hrGLJ3A8ZnmtryN8inUZVQBXrTZ5%2BnqM6WdHldaM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760074a8080b0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/checkout/payment?cart_token=d62f11f2-54d0-11ed-9928-027165b02942-635892d8295a5&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=251b17d0-54d1-11ed-a8f3-59fd816a48f0 | 170.82.173.30 | 302 Found | 0 B |
URL HTTP/2seguro.caixamisteriosa.net/checkout/payment?cart_token=d62f11f2-54d0-11ed-9928-027165b02942-635892d8295a5&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=251b17d0-54d1-11ed-a8f3-59fd816a48f0 IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /checkout/payment?cart_token=d62f11f2-54d0-11ed-9928-027165b02942-635892d8295a5&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=251b17d0-54d1-11ed-a8f3-59fd816a48f0 HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjhOZTd4WDdEWmJjdzZSd1ZYRW94cnc9PSIsInZhbHVlIjoiY3Z2T0xna0lZNW9kd3ErdENDNWdOUkhDSFhuRXhKaENuV29Wd3l6a1M5Wk00R2hFZTF5NGo3ZG9pTlI3djJrNmk1a1lmYjVNdU5MaGZ0OWlxZ1BJUFE9PSIsIm1hYyI6ImI5NDM3M2NkNDcxYzNiNDE3NWIzODM1N2ZlYzQ2OGQ2MjQzYzM0NDE5MDE2MDhhMGY1MzY0NTIzMmYyMmM0MGEifQ%3D%3D; bubbstore_checkout=eyJpdiI6InNLZmlUbDIyXC9RWnlpZDNvTnU0U3pRPT0iLCJ2YWx1ZSI6IkZGSVp6XC9BZEVDcWhOUUtUdEhUenJSM0N4b05HRVpWdjBsV3hNclRcL0xPM0s2TG42cERmQzBaSWxZOUltVEJcL1dSMWdLZllGaUl3SWJJUGRZTUpnWTZnPT0iLCJtYWMiOiIxM2JhYjI3OTE1NzVjNzQyYmQ1ZDNiNzQxMDA4NzIyOWUzYWE2MzYyYzRkYWQ0ODJjMjFkYTA2YjUzNTg2NzQwIn0%3D; caixa-misteriosa9_cart=eyJpdiI6ImV6RlVSeU1GalBCOXpVN2tMVWpSVkE9PSIsInZhbHVlIjoiV1NvdWt0TUYxVEJuTkNxSEg5bzFnaXFjbkJQeFpWa0VxaldBbWZGQ0ZOZ2VZbzF4TkoyUEFuNEREUnZnbm14N0FCaGpcL1lMa05PK2x6SEdmRFBkQmpRPT0iLCJtYWMiOiI2ODY4YzI1ODM4MWIxNWRhNGQ1NjY2OGIwMTcwZWI1MTYxMzllMTRmZWVlYzE2MTljZjVhNzExODlmMGQ3ZDc0In0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
date: Wed, 26 Oct 2022 04:30:15 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.caixamisteriosa.net/checkout/address
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IlBzTTdKUHJWRkJFNDZjT01JQW9NZ2c9PSIsInZhbHVlIjoiTVIwMTdBNFhBbFkwXC9HZ3FsaTlqM3RnektMWmM3aVR5YjdRc0hWU0d4RGFFWkNodmVvUkxaaEp5OHRDTWlKdzJoSXJ5K0hidjNobmttemNTOHBwZHRnPT0iLCJtYWMiOiIxODkxMjJkZjhmYzE3NWZkNTIyOGYyZGVmYjdmNGVhYjdlYmVlNWE1YjNhMGVkNWRjMjkzMTg1OGQ4Y2E4ZmJmIn0%3D; expires=Wed, 26-Oct-2022 07:30:14 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkdJditkNngxSTMxeEJiQW11WEdaelE9PSIsInZhbHVlIjoiNHV5M1dqaGxhQXQwNjFhdGdpaFEySWlVT0ZONjJ5T0RvNnZuWVVhbVFPTEJxUTJTdW0xNHBmSzZ2Z2ZXZEVIUjRtR1BJUXFJZm1XOTV0Rll4VGpRNEE9PSIsIm1hYyI6IjVjODZmZDRiNjgyNzJkNTYxM2QyYTNjYTgyY2ViNTg1NDVjYTUxYzYyNDhhNGRiNjQ1ZGQ1OTVjNDljM2I4MDAifQ%3D%3D; expires=Wed, 26-Oct-2022 07:30:14 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap IP142.250.74.10:0
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 26 Oct 2022 04:30:16 GMT
date: Wed, 26 Oct 2022 04:30:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.css | 104.18.1.53 | 200 OK | 0 B |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.css IP104.18.1.53:0
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:16 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
expires: Thu, 03 Nov 2022 04:30:16 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 760074a95e7d1c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.yampi.me/jquery/jquery.js | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2cdn.yampi.me/jquery/jquery.js IP104.26.3.88:0
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:16 GMT
content-type: application/javascript
x-amz-id-2: QsmtL8/nVojRDvW+BmEU501Lw4WV+5t5F8LfBudh5F+R0IvsUm6Z0OFwq4bu2oMNhxhgi4mZaYc=
x-amz-request-id: VXXM8XE9A56HSH68
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B2BpacBl%2FUTfnXdZG4nuwpXfKUaiUIiWZMInrdNxWCD0XrovrAIIhWKtAB54tz40rhpE9EQjpEeWjUVifpyOUSjCkZykvIpA6BKFSvSUfJJObEQ6oo5V%2FwWhHwg%2BxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 760074a8080e0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/e/t | 170.82.173.30 | 200 OK | 0 B |
URL HTTP/2seguro.caixamisteriosa.net/e/t IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer | Verdict | Alert | fortinet | Phishing | |
POST /e/t HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImE2YjgxZGJhOTVhMDdhODYiLCJ0ciI6ImU4NTMxNTBhYmE0NmM4ZDA4MmY3ZDY5MjUwYWYwZWI4IiwidGkiOjE2NjY3NTg2MTQwODB9fQ==
traceparent: 00-e853150aba46c8d082f7d69250af0eb8-a6b81dba95a07a86-01
tracestate: 2935249@nr=0-1-2935249-1134170823-a6b81dba95a07a86----1666758614080
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 376
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IndObzBoNlVjWnBxa0VlTytNWjVjb3c9PSIsInZhbHVlIjoidEVmTmFXZW84Mkh6WXl0YndzUHFVU1EwMGRXR1h1dlpqVnA3NnpoMzV0YlNVQWNNbzZ5ZGZzb3JXT01GK1Nia2lxc2ZSU214UVR6ZGtOVjZacTNVcVE9PSIsIm1hYyI6ImY4ODdlZWQ3Njk1MGMyOGExNWRkYmI3MDVjNTIwNzhlNzhjYWU3MmUxOTVmMWVmZjU4ZWU5YzlmZThlMWY0YzMifQ%3D%3D; bubbstore_checkout=eyJpdiI6IkNXVEFhXC9KSmhMaERWZmpFZ0RWWHJBPT0iLCJ2YWx1ZSI6IlBYVEhtKytVd3ZuQjB0aWg0alVXZjVXZ2tXMGlDUGRPaTdcL2ZcL1k2WWdpK2tEb0Q3NUk5UWxSNmt0WlA5ZUhVSnEzQUJ6QisyNWFuWFZhMHRyYWl2Q0E9PSIsIm1hYyI6IjNhZGM4ZTBjNThlMGMxMjI1YWMyYzdkOWIzZjRmNjE1ZjI1ZGU1ODdlNDRiOWFmZGJiN2VlMTI4ZTNhMjQ3ODMifQ%3D%3D; caixa-misteriosa9_cart=eyJpdiI6ImV6RlVSeU1GalBCOXpVN2tMVWpSVkE9PSIsInZhbHVlIjoiV1NvdWt0TUYxVEJuTkNxSEg5bzFnaXFjbkJQeFpWa0VxaldBbWZGQ0ZOZ2VZbzF4TkoyUEFuNEREUnZnbm14N0FCaGpcL1lMa05PK2x6SEdmRFBkQmpRPT0iLCJtYWMiOiI2ODY4YzI1ODM4MWIxNWRhNGQ1NjY2OGIwMTcwZWI1MTYxMzllMTRmZWVlYzE2MTljZjVhNzExODlmMGQ3ZDc0In0%3D; __ana_uid=1-gd6i7pjx-l9p51lh7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 04:30:17 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6Im85NE95VU42N1JtVFhUTUtcL045d1pBPT0iLCJ2YWx1ZSI6IlBSUDhKb2N2K3VLWnJyQWpzajF4c0E0eDdBVXhGUnJvMUtPbWxiQmQ4ZWFvSGMwY1hKNHBvMzdwd1lKR09RV1RMcmplRWxRZTJDaDYwbDZQcU1GZGtRPT0iLCJtYWMiOiIyMzY4ZDBhYzQ5MmYxMDQ5ZGFkMzY2NjExY2M3MjMyMzE1OTlhZWEwYjFkNjZlNzFlZmYyZWU1N2Q3MzAyYTM3In0%3D; expires=Wed, 26-Oct-2022 07:30:17 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IjVXNE8xWlBKQ0ZyVURpQ3hcL3EzRWdRPT0iLCJ2YWx1ZSI6ImVaRm1xS0ptRWdmMW9KeHk0OFdmRmZEMGF5Nmhyd3RSUTN0dTNwalhnTk1xUDFGSHd0YklHMU5KWmNsakZvclVDMkhcL1AyOVBHYkRKZnd3NCs5XC9BK2c9PSIsIm1hYyI6Ijk2ZWU5ZjY5MjAzYjQ4MzRkYzFkZjFhYjQ5ZTUyZjI5OTcyYzRiODE3Yjg1NTc5ODk3OTYwZDZhZmQwMWUyZTgifQ%3D%3D; expires=Wed, 26-Oct-2022 07:30:17 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApQCAACHh5UFUMJUgJUB1MGBVVaCwYAAVEAFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|