r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8003
Expires: Tue, 15 Nov 2022 08:16:32 GMT
Date: Tue, 15 Nov 2022 06:03:09 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 832aecaba9f06ee2d39d4d4bea65f13c
7195d6ffadfdbc6fc8e92c63ae28d4a3038a72dc
a437509314a97065de6c7b9e5e2b4b61f0234b45f5f5bf2649cbdf499577bfd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5992
Cache-Control: max-age=108480
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:09 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 12:11:09 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 15 Nov 2022 05:44:37 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1112
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c15cef160d1514fc977ed4c4e97086c
ffe4ce3199658a1fc7a45d1607df40ef3911621d
db1a82d8a2bacc0257b87efec0c365c1b769700fa27ce928321e082505f1d72a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB1A82D8A2BACC0257B87EFEC0C365C1B769700FA27CE928321E082505F1D72A"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4566
Expires: Tue, 15 Nov 2022 07:19:15 GMT
Date: Tue, 15 Nov 2022 06:03:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: lYDPxmxi3P6Qs8v18851cbDi+f2XlpVlRMOHbUdCZpIxInWMcDTNHdbgEtXxSWHsEYQBa2iZrQc=
x-amz-request-id: HMMH4R23QRDTZGBG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 15 Nov 2022 05:51:26 GMT
age: 703
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 15 Nov 2022 06:03:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 15 Nov 2022 05:25:01 GMT
cache-control: public,max-age=3600
age: 2289
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3200044057cb585f1a435c0efece61c8
8305d5b5891288aa9996b4b4ca6fce2265413194
df45704534a24928e7659a6d8cd1b5ac9ffa9b224b02b34a2d6aed5ef69fd586
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6075
Cache-Control: max-age=103506
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:10 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 10:48:16 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.237.51.86101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.51.86:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RePBrbQTqiCUyH8o9cWEcQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jxmK3l+JHya2nZImKvgbJ82pmfc=
seguro.sotrendshop.com/checkout/payment?cart_token=shopify-ca3515975ff61effddaa26ba29e6d323&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=7e977a257b085df6ebbfa1ba96861e8e62184c90&customerToken=62ccca50-58ba-11ed-9239-fd5453a54555
170.82.173.30301 Moved Permanently 134 B URL HTTP/1.1 seguro.sotrendshop.com/checkout/payment?cart_token=shopify-ca3515975ff61effddaa26ba29e6d323&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=7e977a257b085df6ebbfa1ba96861e8e62184c90&customerToken=62ccca50-58ba-11ed-9239-fd5453a54555
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /checkout/payment?cart_token=shopify-ca3515975ff61effddaa26ba29e6d323&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=7e977a257b085df6ebbfa1ba96861e8e62184c90&customerToken=62ccca50-58ba-11ed-9239-fd5453a54555 HTTP/1.1
Host: seguro.sotrendshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 15 Nov 2022 06:03:10 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.sotrendshop.com:443/checkout/payment?cart_token=shopify-ca3515975ff61effddaa26ba29e6d323&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=7e977a257b085df6ebbfa1ba96861e8e62184c90&customerToken=62ccca50-58ba-11ed-9239-fd5453a54555
X-GoCache-CacheStatus: BYPASS
Server: gocache
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a3025e4ebff4cda46dd7bffe3381f658
2f9554dae0516eaa88ffd06439c6eb5ec8540eea
bd020be711696fa208c3a662b600c356cb402ec4babcdcd4ab86e84515ef9ca1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD020BE711696FA208C3A662B600C356CB402EC4BABCDCD4AB86E84515EF9CA1"
Last-Modified: Mon, 14 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21584
Expires: Tue, 15 Nov 2022 12:02:55 GMT
Date: Tue, 15 Nov 2022 06:03:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7802
Expires: Tue, 15 Nov 2022 08:13:13 GMT
Date: Tue, 15 Nov 2022 06:03:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7802
Expires: Tue, 15 Nov 2022 08:13:13 GMT
Date: Tue, 15 Nov 2022 06:03:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7802
Expires: Tue, 15 Nov 2022 08:13:13 GMT
Date: Tue, 15 Nov 2022 06:03:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7802
Expires: Tue, 15 Nov 2022 08:13:13 GMT
Date: Tue, 15 Nov 2022 06:03:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F818b8415-26b4-4768-a1f1-8eafa6e11c16.webp
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F818b8415-26b4-4768-a1f1-8eafa6e11c16.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b76f3ae29d447b9c8938462c4adb6463
f22e89c145d1ede9e3d731e6748bfe338c1a0d6b
b5bf1a0416425ffef9f3b0954c7c4659e33ab1dacfb812e8308e2095dd1bc409
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F818b8415-26b4-4768-a1f1-8eafa6e11c16.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7414
x-amzn-requestid: ff411645-d77f-4ef2-a175-c534bcd21f28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bM2cjFwqIAMFxgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63683783-552038846aadb8be53bb3ea1;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 22:38:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ivVEyCNKURmHSP1rbwcmv3mUrpIJ13B7LGsFzYYufJIMx2I5aZXY3g==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 06:40:52 GMT
age: 84139
etag: "f22e89c145d1ede9e3d731e6748bfe338c1a0d6b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4cc31a8-ba2e-4cc0-bf6e-0daaf01962d2.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4cc31a8-ba2e-4cc0-bf6e-0daaf01962d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9459d8c5ec4b22476e1470e5476f70f7
78118517bfffe997c85f08bd9b7b7ac9270d9b02
647d0898ed6a38191ff91ca316e90a72d9a5ce563c3602a8d4c477c64f096be4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4cc31a8-ba2e-4cc0-bf6e-0daaf01962d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7504
x-amzn-requestid: 553a2ee3-9dcb-44ac-b0e1-e8ea660eedcc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bOAmqGAyoAMFv5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368ae2a-7af9fba56c5ae9ca5f513668;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 07:05:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rRrM6hW5gFH8bLxrzQv5emBacEQrqldwEfD1M0YycB4XphG-XXwRuA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 05:03:57 GMT
age: 3554
etag: "78118517bfffe997c85f08bd9b7b7ac9270d9b02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94c82cd0e4204ea23b9bd86a3f576fa8
1651325ad361d1c86a4b81edb6b75af27f490a39
0173a565be87e87b2a8fccb3bfe4f237ddd9fdafa5711e79f0c4381882238886
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8025
x-amzn-requestid: e7f9048b-7b8a-4e69-954f-31a7be2548e7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bRUl5HvRoAMFy0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636a0158-063e221d1d6a4dac5f42ec48;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 07:12:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Fu14fmRDqxHs_RHrfXZRez5LnYW6HNuD-AvFDdzQwsxa1BPBFEqh-A==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 03:35:56 GMT
age: 8835
etag: "1651325ad361d1c86a4b81edb6b75af27f490a39"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:45:57 GMT
age: 29834
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c5f45accbd2d3551103631fa77deee8f
7295ef4c52bcea1be24b963d7ff170ef5bacf713
495e2cef9d9ebec66f1ddcf478512af7e37a301b562d7b75e5d28bb7753d2290
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9311
x-amzn-requestid: ccbd88f7-a72f-4f7c-868d-907b2dbea1ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ9_UEQ4IAMFmzQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d76c8-4c0b800d7bf5064346932e15;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 22:10:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bJa_vwFYVNizWkPP2aLO8cOJiMqMfZmD34-hAnOlmJ0K2OO3dghWvw==
via: 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 22:09:42 GMT
age: 28409
etag: "7295ef4c52bcea1be24b963d7ff170ef5bacf713"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4af82634a56d0978c9b4689c8b7eb8ae
4b40ef08bd37cabfcb937053dd58012abdd6620f
476a9f850cfbe41adea1d699fdf4f04424674c53b268681fa6fc0e226bed0797
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6318
x-amzn-requestid: 6469c84d-fc45-470e-a438-2fb81dae70c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bhPtyHpXoAMFfWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63705ff1-53ab9291301773c048f69696;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 03:09:37 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: w-ycM-G6gAU8xssl0r8gTPLLLimSjv4M5VUONl8bynl_A2EzlmXoaw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 03:53:51 GMT
age: 7760
etag: "4b40ef08bd37cabfcb937053dd58012abdd6620f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 8094f6d66cd067b92b99cc3c1ec916c6
cdb6d27ace38846e7a770dafce189f90a30db886
f07248933eddbab19c1153daaece5a2c3bcb421598bfab2c4b0f4c547d75e817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
seguro.sotrendshop.com/checkout/address
170.82.174.30200 OK 43 kB URL HTTP/2 seguro.sotrendshop.com/checkout/address
IP 170.82.174.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash 126637f6270350eac7d4c6b0b7302056
e6c6df47b1d7616b65d606f85dac36d5f7e40690
6448dd6cdbc708d50acd2e0736ae881525d418b1ef997c8c4af312b523bccdf9
Analyzer Verdict Alert fortinet Phishing
GET /checkout/address HTTP/1.1
Host: seguro.sotrendshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6InVXRDllQVJUb1NPVHBZUzdwMER5bUE9PSIsInZhbHVlIjoicGI2TmJzSFJKa1RobVhmM2VNR1dTWnlDTWpNNEw2MzBXcExtWm5IZEJaaERERmJGaHI3V1ltYXNQUlVZRFh4QjF1UGdIUkM4Q2JLdU1paE5Idit3OFE9PSIsIm1hYyI6IjYzMjdmODdhNGY0OTBmNzM0Njk2ZjI4Njk3YzkzNjkwZDFjYjliYWUyZjZiZmE1M2QzZTAyZWU5MWZhNjc5OWIifQ%3D%3D; bubbstore_checkout=eyJpdiI6IkErZW9OQytFcHZRMGZuNmQ0VG9wYXc9PSIsInZhbHVlIjoiZEl4a0pabGlMc0owd0haN3RzdWhEKzl1VTlwYStVdEw5cVwvalk4WVN0emlUSTMxc21WRWtjVFhOMU9nNW5SMHNcLzhBM05CVWhROWM0WkNrKzlGSEUzQT09IiwibWFjIjoiZThkNzgwNThmMTY4ZDNiODVkMmZiNDVmOGViOGQ4NDY1MjBiMWQwMGE0ZTE2ZTNhNTNiZTFiZWNkYTc2ZWNlZCJ9; sotrendshop_cart=eyJpdiI6IjFyUHRyaU5ROWJ1ZWlFYkEwZEwzV3c9PSIsInZhbHVlIjoiVnk1MnI5UlU1QXZ3M0hQUXh3Z0lQK1lvZ2hidHhER000bkhnRGFqZ1hiZlI3ZzB0Y1ozOUprZ3dacHdqcTNGbnU2TlhYaFZlSEFYR3FGZXpTOEtiY3c9PSIsIm1hYyI6ImFmZGYyZjljMDkwN2EwNzcxMTEwMGIzNmY4N2U5MDkwODllZDE1YmViY2ExMTA0ZWNhMDk2ZGVmYjcxNmYyMDMifQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:13 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IlBGenRHT0JpNkV0NmNzNEsxRFhXRkE9PSIsInZhbHVlIjoibmVadW9BZVluZkhKRXZEaFpFSU8xb2xRSlUrZkRydFUrcUM5QmthTGxSSzJzQ1lxRDhjVys1cGZpY0JXeUdwNlRDMzNLSU45UUFEVDVrRktaeFh5T2c9PSIsIm1hYyI6ImU1ZTJlODhjNGFiOTlmYzkyZDlkNDhlZDk0MTQ0ODYzZTdhZjg1ZGU3ZWUwZTI0NTQwNGE5YWEyNWFiODkwMGMifQ%3D%3D; expires=Tue, 15-Nov-2022 09:03:13 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6Imp4eDVFU3NVbTY3WUhyRnV6NHIwV3c9PSIsInZhbHVlIjoiSjgydzhLWEl5RFZ0dTVucFRuQUxkN21JVzI1QjdBTitLd0dwK2FESGlWb1ByRkladEpvQnpaQlFrdEZqd0tiM2IwM254NVQ3Nko1cW1jU0ZMTEw3OVE9PSIsIm1hYyI6ImRkYWJhZWZmOGVhYzJjNWZhMjExMDBhYTA3MDc4YWRiOGNlMzcyZDNkMWQxOGQyYzcxNzQ2OWM0ZjJkMDdhNGUifQ%3D%3D; expires=Tue, 15-Nov-2022 09:03:13 GMT; Max-Age=10800; path=/; httponly
cart_auth_272277202=eyJpdiI6IktjSzl6MkRTam1MR3ZaV0dLZVZGWVE9PSIsInZhbHVlIjoiVEVPVXhvanlvUm0wSG9remxyMFRZMTRGUUhRR3RIV0VrUmZpbm8xK3hxMDN3UktKcjBxeWR4bE54amVFeUpDNjhwRDRFSk9nUUhYT0tMR0ozcE9odWZkQ3pMZ2JyQnJhS0RTV1NTZENhTFc3UW5SbnAwdVRtMjNEVzFXNlBwN1lxb1RCeTNWelZDYXRLSitkbmUzbHlZOWR2XC95OXcyS0JGNXdKREhGSzErR1ZDNld5XC9ZTjZHc1pVMXE5Szl3WTB6RjIrZk5ScGhleXJaeDdUaGEySDFBc3RnZWpRY3lZSVwvV2cwNzJGc29PM0tzSHZHS0M1OWpBZkw4Uk9UV3gxSFBmMngyYXFESEhGWkpNaSs1OFpVN2RkbitQSDF2OUtPU1VMcFdjM1JGd1ZEamlyc1wvMTFsWGNwUTBEUDdYRDQrODk5R0JQUiswRG53TUNYUVN2QVFuNmJaaUZZZ3RFKzAyVFhYYW9vZkF3K1ZDRVBYNzh5aXo2U1JwdWNMUnIyVDRVQ3dETnFTTkJtMEg3S0VSS1lGQjFFYlgwN1RtVzVIeTU2a0trUVlRMUo0K1RqSVF0XC9XTG5hdTQrKzZKV3NpT1E0QkFPZWVzMWFKUjR0SlRUUFwvZzI2RThNTkUrOWp2S0EzK3l1aU5BR3dLUHdzK3gxWkZoTGo2ZFNFb0VqU1R2YmdCaFlEYlBETFQyTW1KakRYeElqbHZON3B4bGZNVkZ1ZEJmK3hWdk1hUUNDRTNDKzg0S0xGMmVZRW9UU0RUIiwibWFjIjoiNDUwMjliMDA3YzVkOTNjYzgwODgzM2U1YmNlNWIwZTdiZDc4MDZlOGRlNDg1YzhjNDg3MTFmNjk4YjllYTEzZSJ9; expires=Tue, 15-Nov-2022 06:13:13 GMT; Max-Age=600; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
142.250.74.164200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash c954de798a18f948c4b0ed9efc52f3fd
e1fc26500b99055d0b5dc01f1843c8aeb1a85b7d
a676ac9f6704b5be451cd9de568d802360f39bc5bae067de5d59a7df4f2694a1
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 15 Nov 2022 06:03:13 GMT
date: Tue, 15 Nov 2022 06:03:13 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.upnid.com/v0.js
130.211.14.112200 OK 8.3 kB IP 130.211.14.112:0
File type Unicode text, UTF-8 text, with very long lines (23050)
Hash 49fa980f95bb3bbff8b7a2857a727d5d
9e931943f03079522318820948018d78610eaca4
4e295d58275798f67bf7b9c48b8cae16238c9a3dabca082238e7bab8eaa34943
GET /v0.js HTTP/1.1
Host: js.upnid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin
content-encoding: br
via: 1.1 google
content-length: 8310
date: Tue, 15 Nov 2022 05:56:22 GMT
age: 411
last-modified: Tue, 19 Jan 2021 20:16:07 GMT
content-type: text/javascript; charset=utf-8
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fce6ee26d25c8bbf7f96d76b9c2a53ea
57a5c03ccb680af38a8a02cc52c30e22566a57a5
31799991bc62dc8503aa1e8f625b6bb1a723e8e70162118632fa976f61636701
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3949
Cache-Control: max-age=170472
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Etag: "6373131c-116"
Expires: Thu, 17 Nov 2022 05:24:25 GMT
Last-Modified: Tue, 15 Nov 2022 04:18:36 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 51fe746f95bcb62066d1685ea5e21b91
12dbdbde2e32c390f3d584b068ce0a246c2efbf8
c66aa6d1655c0084f060559fcf2d29633856f323847b30a5bf0d0153289d3efd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C66AA6D1655C0084F060559FCF2D29633856F323847B30A5BF0D0153289D3EFD"
Last-Modified: Mon, 14 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11103
Expires: Tue, 15 Nov 2022 09:08:16 GMT
Date: Tue, 15 Nov 2022 06:03:13 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 9d9493125a22b98bd2ac3a1b11cc0a12
8334175b79551b1e0592f63eb606543c915983a2
a583076207a416f2ccbb70821bc5185bb6b8e86180221014638af5af3b34a7fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ
IP 142.250.74.35:0
Hash 41a28ec667abd0b8ab7419862750b36b
899c3f5b4a4aa8bad0eab05a4765ceba992e2858
e32c52449772f6888430470fb11c934f710308479a82c3ff86cefa2a6da62a24
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fce6ee26d25c8bbf7f96d76b9c2a53ea
57a5c03ccb680af38a8a02cc52c30e22566a57a5
31799991bc62dc8503aa1e8f625b6bb1a723e8e70162118632fa976f61636701
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=166523
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Etag: "6373131c-116"
Expires: Thu, 17 Nov 2022 04:18:36 GMT
Last-Modified: Tue, 15 Nov 2022 04:18:36 GMT
Server: nginx
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fce6ee26d25c8bbf7f96d76b9c2a53ea
57a5c03ccb680af38a8a02cc52c30e22566a57a5
31799991bc62dc8503aa1e8f625b6bb1a723e8e70162118632fa976f61636701
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3949
Cache-Control: max-age=170472
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Etag: "6373131c-116"
Expires: Thu, 17 Nov 2022 05:24:25 GMT
Last-Modified: Tue, 15 Nov 2022 04:18:36 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fce6ee26d25c8bbf7f96d76b9c2a53ea
57a5c03ccb680af38a8a02cc52c30e22566a57a5
31799991bc62dc8503aa1e8f625b6bb1a723e8e70162118632fa976f61636701
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=166523
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Etag: "6373131c-116"
Expires: Thu, 17 Nov 2022 04:18:36 GMT
Last-Modified: Tue, 15 Nov 2022 04:18:36 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278
cdn.shopify.com/s/files/1/0584/0279/9770/products/SemTitulo-1_1800x1800_f0954000-fe1b-441a-918c-d24bfe74e495_250x250.webp
162.159.135.68200 OK 8.9 kB URL HTTP/2 cdn.shopify.com/s/files/1/0584/0279/9770/products/SemTitulo-1_1800x1800_f0954000-fe1b-441a-918c-d24bfe74e495_250x250.webp
IP 162.159.135.68:0
File type ISO Media, AVIF Image\012- data
Hash 00f2898637a69ec18408b0ec4421d4d6
b43bbdad59f5a982458bfee2b152bf7ad06ec197
167095abe4f707d6d3a350564bb1b5dc8bccc7bcd40c8377795d0c5d504f97d6
GET /s/files/1/0584/0279/9770/products/SemTitulo-1_1800x1800_f0954000-fe1b-441a-918c-d24bfe74e495_250x250.webp HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:13 GMT
content-type: image/avif
content-length: 8898
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0584/0279/9770/products/SemTitulo-1_1800x1800_f0954000-fe1b-441a-918c-d24bfe74e495_250x250.webp>; rel="canonical"
source-length: 48776
source-type: image/webp
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 44dd3111-53ec-455e-ab63-3144d0c2c1dc
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Sat, 29 Oct 2022 08:34:33 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7lee%2FC801VMJRqdgtANXocFEY8ZN9Oos%2FxUUUx9j133P2%2FEBlLfCiY2EselxzvFARu4q4bd%2B5RQ8gcFmf%2F0oEd%2Fo%2B1xd%2BzndJFhISn6DuLlbCKxoP4Oo2K2H%2F0d5S3IOFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=642.674, imageryFetch;dur=102.518, imageryProcess;dur=537.935;desc="image", cfRequestDuration;dur=174.999952
server: cloudflare
cf-ray: 76a5c8530e0bb4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 51fe746f95bcb62066d1685ea5e21b91
12dbdbde2e32c390f3d584b068ce0a246c2efbf8
c66aa6d1655c0084f060559fcf2d29633856f323847b30a5bf0d0153289d3efd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C66AA6D1655C0084F060559FCF2D29633856F323847B30A5BF0D0153289D3EFD"
Last-Modified: Mon, 14 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11103
Expires: Tue, 15 Nov 2022 09:08:16 GMT
Date: Tue, 15 Nov 2022 06:03:13 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fce6ee26d25c8bbf7f96d76b9c2a53ea
57a5c03ccb680af38a8a02cc52c30e22566a57a5
31799991bc62dc8503aa1e8f625b6bb1a723e8e70162118632fa976f61636701
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=166523
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Etag: "6373131c-116"
Expires: Thu, 17 Nov 2022 04:18:36 GMT
Last-Modified: Tue, 15 Nov 2022 04:18:36 GMT
Server: nginx
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 6195246ecec581994773ce69a4c8623b
1f7da0242fae22c9f82056dc3fdaafec05071ff8
8a73e40d807467d70329aa95b265ba9850eb7df33821a9c7ea20197164aca51a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=119383
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Etag: "63725af8-116"
Expires: Wed, 16 Nov 2022 15:12:56 GMT
Last-Modified: Mon, 14 Nov 2022 15:12:56 GMT
Server: nginx
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fce6ee26d25c8bbf7f96d76b9c2a53ea
57a5c03ccb680af38a8a02cc52c30e22566a57a5
31799991bc62dc8503aa1e8f625b6bb1a723e8e70162118632fa976f61636701
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=166523
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:13 GMT
Etag: "6373131c-116"
Expires: Thu, 17 Nov 2022 04:18:36 GMT
Last-Modified: Tue, 15 Nov 2022 04:18:36 GMT
Server: nginx
Content-Length: 278
images.yampi.me/assets/stores/sotrendshop/uploads/testimonies/619695cf8a937.png
104.26.3.88200 OK 12 kB URL HTTP/2 images.yampi.me/assets/stores/sotrendshop/uploads/testimonies/619695cf8a937.png
IP 104.26.3.88:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash b5421333369926c6aac385299ea50a74
645d46fd8160a75a3449ac95560e4d4a4303ba77
32d8c84c4f2080c858449d91cce5f7715e3bf6e6e97007cbc4b87c933eaf2950
GET /assets/stores/sotrendshop/uploads/testimonies/619695cf8a937.png HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:14 GMT
content-type: image/png
content-length: 11676
x-amz-id-2: agBXgk+TyNPIrpcurXmPQGFOGPvlVrDL69HfnUYMgYinwVPO5n2drHkKNWXpaOJu9+i5FaB/n3M=
x-amz-request-id: G44ADST17ZWG6VGR
last-modified: Thu, 18 Nov 2021 18:05:59 GMT
x-amz-version-id: efLAIUdbHQ1PcYvfitvqPLppz1sWoMS2
etag: "b5421333369926c6aac385299ea50a74"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zCoxriTtIMxK%2BmJxb0IzUj9ebU%2FG38HIRiwp%2FJTyRCyyMns4dM1%2F%2FjZonpw2bYUweE4cQTGb3ErztCOGjnNqC0bPdjCUnpqr1Hd%2BSUcRNuZjs5XjOCCvDgjAGzIPOC0wQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5c852fb5eb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 1af800aa2b326e8af0f2640db68a7a0d
4c617814f5c705737bf4bf111c53bf40bb932af5
594f573b6e73b1d385ae75a518c18a0bb833ac4a3f894fcea377096c756f8cc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
images.yampi.me/assets/stores/sotrendshop/uploads/testimonies/619695ebab3f9.png
104.26.3.88200 OK 12 kB URL HTTP/2 images.yampi.me/assets/stores/sotrendshop/uploads/testimonies/619695ebab3f9.png
IP 104.26.3.88:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 26829dad1d0f5117d32a8dc4eee1370a
4dcf88061d0b9b31e44ec87e7e36d129bfb9e9b0
8ee2900899b31a6db022562268bb4830e6cdf70a3d84814ba2ad0619d7d77fd3
GET /assets/stores/sotrendshop/uploads/testimonies/619695ebab3f9.png HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:14 GMT
content-type: image/png
content-length: 11732
x-amz-id-2: NmCl5dhyt7+AyP6R+hMY/fOlnSzvy8aF8EpILfI3GjV0+A6ZQdLiFlB06F+6fGxBZjKryvJLevY=
x-amz-request-id: G440ME757A973VAB
last-modified: Thu, 18 Nov 2021 18:05:59 GMT
x-amz-version-id: uSXZjSTtnqvrR8N9lvw_YU1JpOLzSp0y
etag: "26829dad1d0f5117d32a8dc4eee1370a"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A80ALJFg1Kie2TsEfuUylVnlWg14O6V4iW3NJoFgY5sotvYc3hHhOd%2BmUc3mlVNSL%2BY%2FgAAZ6PTJKcdFtUQVxT37BEf8QIxfe6VZD6a4ZofdtZbudTtu62AB625b4zO32A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5c852fb60b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-M6X3R54
142.250.74.168200 OK 53 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M6X3R54
IP 142.250.74.168:0
File type ASCII text, with very long lines (2916)
Hash 016c4bfdfd68eae1e1235c6640023902
54d1bf4210bfff19fb88975c90e5d908cb645d0b
5b83832b6e75ad1acc8532710f3f30d2229cec240fe2b1dcc935e50039fb7767
GET /gtm.js?id=GTM-M6X3R54 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 15 Nov 2022 06:03:14 GMT
expires: Tue, 15 Nov 2022 06:03:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 52660
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.195200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Hash 848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.sotrendshop.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 21:38:57 GMT
expires: Fri, 10 Nov 2023 21:38:57 GMT
cache-control: public, max-age=31536000
age: 375857
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.yampi.me/jquery/jquery.js
104.26.3.88200 OK 35 kB URL HTTP/2 cdn.yampi.me/jquery/jquery.js
IP 104.26.3.88:0
File type ASCII text, with very long lines (32060)
Hash 2e3cfbb599a7db0cad732063fb0174e3
2867dafa801a39b0fa1c9896054e1322cef6bbf6
aed96e962c6e93765b27a75a78c7c39a40b9f9eda2a810aa438994ce39acab68
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:13 GMT
content-type: application/javascript
x-amz-id-2: m2m2us2B9/usU9VuUjz6egUrfKjmakdsSqWzXQuJsu/bs1myfLyXyItfOA8fG4f1tCzqOsoVyjQ=
x-amz-request-id: TTD2TS6D8QRJJ9QV
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4957
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lcV1K4gPBFzFXqoXhwFHu8mwmRAWQEFFlNVA%2F4ANh0%2FWBNs9rzobMi%2FlFrD4RQx5XWl2CKWtXRbc8hOJB7YtVej%2Fo%2BZ399Ysj%2F9i2v8K7YUpKM3uYxUm7muApDRFzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5c852eb59b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 5b969fad3aaf6b9444866e84529966ba
b9e750406416ce66f83c962e39b194cfb1634277
17664a5bcbe582b16c150629697814d46ed806ad024865cb8db485ada3ea7726
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=138609
Date: Tue, 15 Nov 2022 06:03:14 GMT
Etag: "63729cfe-1d7"
Expires: Wed, 16 Nov 2022 20:33:23 GMT
Last-Modified: Mon, 14 Nov 2022 19:54:38 GMT
Server: ECS (bsa/EB18)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UYKAavdGN0ai5wminiZI20A2IGOJw9_6ojhEzygSz_zwOv4sesjT6A==
Age: 2325
fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
142.250.74.10200 OK 3.9 kB URL HTTP/2 fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
IP 142.250.74.10:0
Hash 1a654c69eadc47066f8e35024639fa0e
d69bd53e5e3538703ab615a283d8726eb8c36273
41454bbebcfc8cf9174c78873d3f785b3b2d52ba3346aa15e296df1057b989db
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 15 Nov 2022 06:03:13 GMT
date: Tue, 15 Nov 2022 06:03:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 783
Origin: https://seguro.sotrendshop.com
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Cookie: _ttp=2HZUeXKmwV69nB4bGHJeH3484Ss
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221115060314AF88BBD32B0632DBD981
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b534f281a7694e1dbd136fadd86c50a0e5cf86b0ca16d5e653cb9b1926079aa0c9229dfb85498f819ba3d4f30b5bd6f060bc3cad3cdeb9ead00696056db9bcd7a0
x-origin-response-time: 20,23.218.220.145
x-akamai-request-id: ec915c8d.9b9d8ea5
expires: Tue, 15 Nov 2022 06:03:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 15 Nov 2022 06:03:14 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-cache-remote: TCP_MISS from a23-218-220-145.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=20, inner; dur=13
x-parent-response-time: 119,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 985
Origin: https://seguro.sotrendshop.com
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Cookie: _ttp=2HZUeXKmwV69nB4bGHJeH3484Ss
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221115060314B66249C0EED743DEB8AC
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b58098d7a7e6b1920355da96b1df82f9bdc208d3164d786849b0c7727d17b42583e9608f3b231741024a7f1f67a89b319fce3b282a6ad8b19e6e88f87b6cb86b7a
x-origin-response-time: 17,23.218.220.137
x-akamai-request-id: 250ec240.9b9d8ea9
expires: Tue, 15 Nov 2022 06:03:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 15 Nov 2022 06:03:14 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=17, inner; dur=14
x-parent-response-time: 116,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 807
Origin: https://seguro.sotrendshop.com
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Cookie: _ttp=2HZUeXKmwV69nB4bGHJeH3484Ss
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202211150603145A1D7A9340376FCD7113
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b534f281a7694e1dbd136fadd86c50a0e51b2462e0cc96e545a9924375102061425f9fd8a5f6aabdf06a4217103070a2c8faccc2af66efd1cc6b7c288e144302d3
x-origin-response-time: 17,23.218.220.145
x-akamai-request-id: ec9158ac.9b9d8ead
expires: Tue, 15 Nov 2022 06:03:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 15 Nov 2022 06:03:14 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-cache-remote: TCP_MISS from a23-218-220-145.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=17, inner; dur=16
x-parent-response-time: 116,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 809
Origin: https://seguro.sotrendshop.com
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Cookie: _ttp=2HZUeXKmwV69nB4bGHJeH3484Ss
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202211150603147812CD5127B07EDEC188
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b58098d7a7e6b1920355da96b1df82f9bd46d337ac261ea26902d286cbb9618fb5debf708c33a297669afadbef650ee6bfe893b4656d24826d08203d0231d836f4
x-origin-response-time: 17,23.218.220.137
x-akamai-request-id: 250ebf30.9b9d8eae
expires: Tue, 15 Nov 2022 06:03:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 15 Nov 2022 06:03:14 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=17, inner; dur=15
x-parent-response-time: 115,23.36.79.13
X-Firefox-Spdy: h2
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/6142921ee1f93/6142921ee1f99.png
52.95.165.30200 OK 11 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/6142921ee1f93/6142921ee1f99.png
IP 52.95.165.30:0
File type PNG image data, 300 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ae97e45b0792cd85be59135fd834635
82c4d5c6f041b84ac6eb758891c2b15e71693c15
4bc1af953a454fba7e6589d89240fb876f309a2f280995c0bbb07d111ab25f8f
GET /king-assets.yampi.me/dooki/6142921ee1f93/6142921ee1f99.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: FFsyMhVW63U/LUSfNDXzO9jViJgxXbvwTpN0aCeeJTPOxA1bw8jAWfUY0u2Yll8QM2M66mssuq0=
x-amz-request-id: WKNQCXPNHBTZC628
Date: Tue, 15 Nov 2022 06:03:15 GMT
Last-Modified: Thu, 16 Sep 2021 00:38:55 GMT
ETag: "8ae97e45b0792cd85be59135fd834635"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 11260
analytics.tiktok.com/i18n/pixel/config.js?sdkid=CBI15C3C77UDN05F0LG0&hostname=seguro.sotrendshop.com
23.36.79.17200 OK 40 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=CBI15C3C77UDN05F0LG0&hostname=seguro.sotrendshop.com
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type C source, Unicode text, UTF-8 text, with very long lines (58149)
Hash 60fbdb16b98cb24441ca0389fe83cb6e
9fd215aa48d3c2552e0290abdca15ac47054aeaa
8a926946a542b208bb9f5dd5ce9a4271a21a61c94a49dc6314be1edfa9face7d
GET /i18n/pixel/config.js?sdkid=CBI15C3C77UDN05F0LG0&hostname=seguro.sotrendshop.com HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211150603148A66B228459C32D5E69D
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b58098d7a7e6b1920355da96b1df82f9bdd3912a63519693464f56e50b11b30b2b05af1b4678072abf94b77334c80219a3ee3c5ce8806b0f8ff39154e8d0e40ff7
content-encoding: gzip
x-origin-response-time: 7,23.218.220.137
x-akamai-request-id: 250ebfe2.9b9d8cf4
expires: Tue, 15 Nov 2022 06:03:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 15 Nov 2022 06:03:14 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
set-cookie: _ttp=2HZUeXKmwV69nB4bGHJeH3484Ss; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=116, origin; dur=7, inner; dur=4
x-parent-response-time: 117,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C65D8TGQCDCUAMIVAOG0&lib=ttq
23.36.79.17200 OK 43 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C65D8TGQCDCUAMIVAOG0&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65464)
Hash 8797bfc439fbeb08f0fdfd715229fc97
8f0086219cdde1d3982ba78ef1e709da0c20af92
a0896c875ab0d1e9742ec5fa7770bae07c58ff16ef698161bafffa4cb77501bd
GET /i18n/pixel/events.js?sdkid=C65D8TGQCDCUAMIVAOG0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211150603141EEBF7819690A6DB063B
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b534f281a7694e1dbd136fadd86c50a0e5e04210d7f376dd346fab2b6cf742d3a9f176055ac273ff0d577ac08a7e767b15491a3487d2cdffe8f85726f2c911287e
content-encoding: gzip
x-origin-response-time: 14,23.218.220.145
x-akamai-request-id: ec915b84.9b9d8e37
expires: Tue, 15 Nov 2022 06:03:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 15 Nov 2022 06:03:14 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-220-145.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=105, origin; dur=14, inner; dur=3
x-parent-response-time: 119,23.36.79.13
X-Firefox-Spdy: h2
fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
104.18.0.53200 OK 77 kB URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
IP 104.18.0.53:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.sotrendshop.com
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:14 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: 37Db++6p4CUEVvFlq6nHf5ppwtgFOzhfWSp7p2xpWn1OxQ4Z3yx4pvPHBANNf1BT6Xwg5Ic4QUE=
x-amz-request-id: WKNR4QKTVHPWYH7M
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: MISS
expires: Wed, 23 Nov 2022 06:03:14 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
server: cloudflare
cf-ray: 76a5c854dab00b55-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 39ed54d118ae43c615b5efd6cf46ac6f
05484ec9c0b28f3f662897b85f5a0d61ae0387f3
81f3958a1abfdd416fe8d78ab4b377d680aa9c957e1435a1f8b481883bad7f96
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1616
Cache-Control: max-age=169240
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:15 GMT
Etag: "6373176b-1d7"
Expires: Thu, 17 Nov 2022 05:03:55 GMT
Last-Modified: Tue, 15 Nov 2022 04:36:59 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 15 Nov 2022 04:41:09 GMT
expires: Tue, 15 Nov 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 4926
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CBI15C3C77UDN05F0LG0&lib=ttq
23.36.79.17200 OK 70 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CBI15C3C77UDN05F0LG0&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65464)
Hash 2e923c8a2f53e715c7b87ace43e8b598
e2513cc553141994ee145eff0ac5dec3520ade7e
68eba485b212e46a8c3f99de36cc42fc748625ed2d36c2fdd1c8a8c7ff2b64d4
GET /i18n/pixel/events.js?sdkid=CBI15C3C77UDN05F0LG0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211150603147812CD5127B07EDEC158
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b58098d7a7e6b1920355da96b1df82f9bd695ccff3012b288d97ff39893395b474b00516c802889c48c6357ab4f503881eb695b06bca4ca3a1173b9c758a772f7c
content-encoding: gzip
x-origin-response-time: 7,23.218.220.137
x-akamai-request-id: 250ebc16.9b9d8b5b
expires: Tue, 15 Nov 2022 06:03:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 15 Nov 2022 06:03:14 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=7, inner; dur=3
x-parent-response-time: 106,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/identify.js
23.36.79.17200 OK 439 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/identify.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Size 439 kB (439424 bytes)
Hash 7531e1173044c092ff2e1bee93645718
7c6b5bdd5a3aec2948295c8a3ff2e3e56b23fe64
5bcabf11f8e78fa7c2f7e1754cba2776a9122da087720905c89287aa7bcf0b13
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221115060314ED7F61C549A60DE06D1B
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b534f281a7694e1dbd136fadd86c50a0e5b4811fae7b4d84518f4d751fab1441052f93233068e9373ccaea1d7b84063a11b3cd2df25c14e7134d69fd291aba2304
content-encoding: gzip
x-origin-response-time: 6,23.218.220.145
x-akamai-request-id: ec915a1d.9b9d8ce0
expires: Tue, 15 Nov 2022 06:03:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 15 Nov 2022 06:03:14 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-220-145.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=98, origin; dur=6, inner; dur=2
x-parent-response-time: 104,23.36.79.13
X-Firefox-Spdy: h2
seguro.sotrendshop.com/e/t
170.82.174.30200 OK 758 B URL HTTP/2 seguro.sotrendshop.com/e/t
IP 170.82.174.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type ASCII text, with very long lines (745)
Hash 6c00257598db422eda38f1a0bd53637d
58a1d6fa76fe3d41f959c70229c7e58391310a6d
57ddbe563741eae4d5f7a6d63c4a91eff17975122159d14bc3db5287a8996fd8
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.sotrendshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImVlZGZiZjY5N2VjYWFjYWYiLCJ0ciI6IjkyMWFiMGMxMGU3NjM0YjU2ZTIzZDM4MjAzMDBiZThkIiwidGkiOjE2Njg0OTIxOTM5Mzl9fQ==
traceparent: 00-921ab0c10e7634b56e23d3820300be8d-eedfbf697ecaacaf-01
tracestate: 2935249@nr=0-1-2935249-1134170823-eedfbf697ecaacaf----1668492193939
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 357
Origin: https://seguro.sotrendshop.com
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IlBGenRHT0JpNkV0NmNzNEsxRFhXRkE9PSIsInZhbHVlIjoibmVadW9BZVluZkhKRXZEaFpFSU8xb2xRSlUrZkRydFUrcUM5QmthTGxSSzJzQ1lxRDhjVys1cGZpY0JXeUdwNlRDMzNLSU45UUFEVDVrRktaeFh5T2c9PSIsIm1hYyI6ImU1ZTJlODhjNGFiOTlmYzkyZDlkNDhlZDk0MTQ0ODYzZTdhZjg1ZGU3ZWUwZTI0NTQwNGE5YWEyNWFiODkwMGMifQ%3D%3D; bubbstore_checkout=eyJpdiI6Imp4eDVFU3NVbTY3WUhyRnV6NHIwV3c9PSIsInZhbHVlIjoiSjgydzhLWEl5RFZ0dTVucFRuQUxkN21JVzI1QjdBTitLd0dwK2FESGlWb1ByRkladEpvQnpaQlFrdEZqd0tiM2IwM254NVQ3Nko1cW1jU0ZMTEw3OVE9PSIsIm1hYyI6ImRkYWJhZWZmOGVhYzJjNWZhMjExMDBhYTA3MDc4YWRiOGNlMzcyZDNkMWQxOGQyYzcxNzQ2OWM0ZjJkMDdhNGUifQ%3D%3D; sotrendshop_cart=eyJpdiI6IjFyUHRyaU5ROWJ1ZWlFYkEwZEwzV3c9PSIsInZhbHVlIjoiVnk1MnI5UlU1QXZ3M0hQUXh3Z0lQK1lvZ2hidHhER000bkhnRGFqZ1hiZlI3ZzB0Y1ozOUprZ3dacHdqcTNGbnU2TlhYaFZlSEFYR3FGZXpTOEtiY3c9PSIsIm1hYyI6ImFmZGYyZjljMDkwN2EwNzcxMTEwMGIzNmY4N2U5MDkwODllZDE1YmViY2ExMTA0ZWNhMDk2ZGVmYjcxNmYyMDMifQ%3D%3D; cart_auth_272277202=eyJpdiI6IktjSzl6MkRTam1MR3ZaV0dLZVZGWVE9PSIsInZhbHVlIjoiVEVPVXhvanlvUm0wSG9remxyMFRZMTRGUUhRR3RIV0VrUmZpbm8xK3hxMDN3UktKcjBxeWR4bE54amVFeUpDNjhwRDRFSk9nUUhYT0tMR0ozcE9odWZkQ3pMZ2JyQnJhS0RTV1NTZENhTFc3UW5SbnAwdVRtMjNEVzFXNlBwN1lxb1RCeTNWelZDYXRLSitkbmUzbHlZOWR2XC95OXcyS0JGNXdKREhGSzErR1ZDNld5XC9ZTjZHc1pVMXE5Szl3WTB6RjIrZk5ScGhleXJaeDdUaGEySDFBc3RnZWpRY3lZSVwvV2cwNzJGc29PM0tzSHZHS0M1OWpBZkw4Uk9UV3gxSFBmMngyYXFESEhGWkpNaSs1OFpVN2RkbitQSDF2OUtPU1VMcFdjM1JGd1ZEamlyc1wvMTFsWGNwUTBEUDdYRDQrODk5R0JQUiswRG53TUNYUVN2QVFuNmJaaUZZZ3RFKzAyVFhYYW9vZkF3K1ZDRVBYNzh5aXo2U1JwdWNMUnIyVDRVQ3dETnFTTkJtMEg3S0VSS1lGQjFFYlgwN1RtVzVIeTU2a0trUVlRMUo0K1RqSVF0XC9XTG5hdTQrKzZKV3NpT1E0QkFPZWVzMWFKUjR0SlRUUFwvZzI2RThNTkUrOWp2S0EzK3l1aU5BR3dLUHdzK3gxWkZoTGo2ZFNFb0VqU1R2YmdCaFlEYlBETFQyTW1KakRYeElqbHZON3B4bGZNVkZ1ZEJmK3hWdk1hUUNDRTNDKzg0S0xGMmVZRW9UU0RUIiwibWFjIjoiNDUwMjliMDA3YzVkOTNjYzgwODgzM2U1YmNlNWIwZTdiZDc4MDZlOGRlNDg1YzhjNDg3MTFmNjk4YjllYTEzZSJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:15 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InRTWVBGVW10ZFJNdkxrZ0RFZlRRc1E9PSIsInZhbHVlIjoiRTlhdjEzc2xxTHk0eWFkaVwvRnBpMmJIeW0wMzlcL2dcL05EQ1l4QVR5OUtcL2oxeDlRZEZnXC9xOHNSeWJJSVwvWE5pUTJNRkNhb3dKaXBCS2FPWjZ1WWRoN0E9PSIsIm1hYyI6IjBjNzI1OWZlM2IwYTcwYWE5NGNlYzIzNDJjOWE4MGE3MGFjNjY0NDhiNmJlNmVjMjM0NjYwY2QwY2Q0N2RhODgifQ%3D%3D; expires=Tue, 15-Nov-2022 09:03:15 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IjJySUh4MDRvRmVESzArM2Q5aUVFdEE9PSIsInZhbHVlIjoiZENaSHBMbUNodmxlckZTUGVHMnRIazU4aUZmWVwvaEM4Z1pQZTFvdWE2VU1NYXVJTHUyWUhONVBwRUs2NUZzd3l2UU12SG9EUlBTUDc2dUtjVG1ucUtBPT0iLCJtYWMiOiJkNzgwNDkzNmQwZmE4YTBiYWVmYjBkZDE1MTQ2MjMzZTlkNGMyYmI5MTk2YzU4ZTg4MzQwMjczZDNlNjg0ZjhhIn0%3D; expires=Tue, 15-Nov-2022 09:03:15 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATAtTAAgDHh5UFUMAUAZRUwcFAwRUCwMCBVhaFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 39ed54d118ae43c615b5efd6cf46ac6f
05484ec9c0b28f3f662897b85f5a0d61ae0387f3
81f3958a1abfdd416fe8d78ab4b377d680aa9c957e1435a1f8b481883bad7f96
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1616
Cache-Control: max-age=169240
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:15 GMT
Etag: "6373176b-1d7"
Expires: Thu, 17 Nov 2022 05:03:55 GMT
Last-Modified: Tue, 15 Nov 2022 04:36:59 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/j/collect?v=1&_v=j98&a=988960203&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Sotrendshop&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEHAAEATAAAAACAAI~&jid=1555989255&gjid=592296554&cid=796982257.1668492195&tid=UA-45745009-5&_gid=19491007.1668492195&_r=1&_slc=1&z=264251014
142.250.74.174200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=988960203&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Sotrendshop&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEHAAEATAAAAACAAI~&jid=1555989255&gjid=592296554&cid=796982257.1668492195&tid=UA-45745009-5&_gid=19491007.1668492195&_r=1&_slc=1&z=264251014
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j98&a=988960203&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Sotrendshop&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEHAAEATAAAAACAAI~&jid=1555989255&gjid=592296554&cid=796982257.1668492195&tid=UA-45745009-5&_gid=19491007.1668492195&_r=1&_slc=1&z=264251014 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.sotrendshop.com
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://seguro.sotrendshop.com
date: Tue, 15 Nov 2022 06:03:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 68a04663a52ab4272c25f5afcc09a92d
48b0722227353d06cb1dfd4480b644be6e6fc030
892ba18611f372b6bf390d3628b66efc4a721f0f2bde61ae22546a0948935b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 68a04663a52ab4272c25f5afcc09a92d
48b0722227353d06cb1dfd4480b644be6e6fc030
892ba18611f372b6bf390d3628b66efc4a721f0f2bde61ae22546a0948935b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-231377325-1&cid=796982257.1668492195&jid=1214126761&gjid=940714140&_gid=19491007.1668492195&_u=IEBAAEASAAAAACAAI~&z=1003678023
142.251.1.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-231377325-1&cid=796982257.1668492195&jid=1214126761&gjid=940714140&_gid=19491007.1668492195&_u=IEBAAEASAAAAACAAI~&z=1003678023
IP 142.251.1.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-231377325-1&cid=796982257.1668492195&jid=1214126761&gjid=940714140&_gid=19491007.1668492195&_u=IEBAAEASAAAAACAAI~&z=1003678023 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.sotrendshop.com
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.sotrendshop.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 15 Nov 2022 06:03:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
seguro.sotrendshop.com/cart/recomm
170.82.174.30200 OK 338 B URL HTTP/2 seguro.sotrendshop.com/cart/recomm
IP 170.82.174.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash f8affed6d47b64178d749cffccfe955f
adea5059581857328550e13dc364d93bced7ba32
cb4fe62738f76cc6dcc086184f911f808457c094b083661ca16592211c29afc4
Analyzer Verdict Alert fortinet Phishing
GET /cart/recomm HTTP/1.1
Host: seguro.sotrendshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjBjMjMxZTE1ODY3M2VhMDAiLCJ0ciI6ImM3Y2YwZDA1MjU2YTVhMzljNGRjYWYxMGIxOGVmYjNlIiwidGkiOjE2Njg0OTIxOTM5Mjh9fQ==
traceparent: 00-c7cf0d05256a5a39c4dcaf10b18efb3e-0c231e158673ea00-01
tracestate: 2935249@nr=0-1-2935249-1134170823-0c231e158673ea00----1668492193928
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IlBGenRHT0JpNkV0NmNzNEsxRFhXRkE9PSIsInZhbHVlIjoibmVadW9BZVluZkhKRXZEaFpFSU8xb2xRSlUrZkRydFUrcUM5QmthTGxSSzJzQ1lxRDhjVys1cGZpY0JXeUdwNlRDMzNLSU45UUFEVDVrRktaeFh5T2c9PSIsIm1hYyI6ImU1ZTJlODhjNGFiOTlmYzkyZDlkNDhlZDk0MTQ0ODYzZTdhZjg1ZGU3ZWUwZTI0NTQwNGE5YWEyNWFiODkwMGMifQ%3D%3D; bubbstore_checkout=eyJpdiI6Imp4eDVFU3NVbTY3WUhyRnV6NHIwV3c9PSIsInZhbHVlIjoiSjgydzhLWEl5RFZ0dTVucFRuQUxkN21JVzI1QjdBTitLd0dwK2FESGlWb1ByRkladEpvQnpaQlFrdEZqd0tiM2IwM254NVQ3Nko1cW1jU0ZMTEw3OVE9PSIsIm1hYyI6ImRkYWJhZWZmOGVhYzJjNWZhMjExMDBhYTA3MDc4YWRiOGNlMzcyZDNkMWQxOGQyYzcxNzQ2OWM0ZjJkMDdhNGUifQ%3D%3D; sotrendshop_cart=eyJpdiI6IjFyUHRyaU5ROWJ1ZWlFYkEwZEwzV3c9PSIsInZhbHVlIjoiVnk1MnI5UlU1QXZ3M0hQUXh3Z0lQK1lvZ2hidHhER000bkhnRGFqZ1hiZlI3ZzB0Y1ozOUprZ3dacHdqcTNGbnU2TlhYaFZlSEFYR3FGZXpTOEtiY3c9PSIsIm1hYyI6ImFmZGYyZjljMDkwN2EwNzcxMTEwMGIzNmY4N2U5MDkwODllZDE1YmViY2ExMTA0ZWNhMDk2ZGVmYjcxNmYyMDMifQ%3D%3D; cart_auth_272277202=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:15 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6ImtlVXVjSTg2NWpPa1B4aVhIR0poQ0E9PSIsInZhbHVlIjoiXC9FOE9cL0FDbkdCYVhvK2pCYUFlWUZEdDN0WU16YXNPVDhEZGJjdE96ZXFZazVubjZza3FEMkQxcHhuTUZQMmpEZk1HTlRjeU5MbklnVitTVlRNblNjdz09IiwibWFjIjoiNTcxOTRkMTE2YmVhNzQzMTdiZjMzMWUzNTZhMDZlZmEzZDNhMTMxMjczZGY3Y2JkMTg3M2VkM2VlYTJmNzg4YyJ9; expires=Tue, 15-Nov-2022 09:03:14 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InVSSXhQb0lwbUR6WDNRa1NrV0Y3MVE9PSIsInZhbHVlIjoiVjRWY2c4Nll2bzZHR2Z3YUtMRXM2T0ZKV1hYOGpTZlY4TXdPYlZvb0hzNDlDZExZS1BHcnBKclRFTWJVc2RTMjRrOFVqMFZxR0xpTDFRZGRFeEJDOGc9PSIsIm1hYyI6ImUxNzU5MWQwY2JiMmJmNGEwM2M5ODY1OGM4N2I3NTNiMTNlMWIyZDUzMjkxMWQ5ZDgxYWI0Mjg4MDZhNWU2MWUifQ%3D%3D; expires=Tue, 15-Nov-2022 09:03:14 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFtSQhBPEFJSWAsJExoDTFZTUgBSFFIWCAcCBlcVTABNEVRQAAQAXgALAgIBWFAAUgRESFdXXxEDPg==
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html
54.230.111.94200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html
IP 54.230.111.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash b6d25d1350d6a014d80689f389e76f97
a957e3d99790759f71a4d9e2fdaf819f60e8c569
fb2a1528b99d3eb4c9374642b5045efaf6e06666fdd48a55560a375449b01079
GET /box-c6ca1c87e308a39aabb76b56ba54398b.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Fri, 04 Nov 2022 12:22:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "b6d25d1350d6a014d80689f389e76f97"
last-modified: Fri, 04 Nov 2022 12:21:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5joE_F5ivVn-_0qJVQSvShieYRCnqQ99OsrRnhWmx940cpbhi5raGA==
age: 927669
X-Firefox-Spdy: h2
script.hotjar.com/modules.b738078c6419b4df4360.js
54.230.111.93200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.b738078c6419b4df4360.js
IP 54.230.111.93:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 8f0c4297c2d458710337dddf28967bf3
d08ccfbb3663051f6b4c9cb5e04b545832d77906
4ad2290f9d61995edab85f4a0ac65d3134b6cba364b18b7f3047a939f3a775d3
GET /modules.b738078c6419b4df4360.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68482
date: Fri, 11 Nov 2022 12:14:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "8f0c4297c2d458710337dddf28967bf3"
last-modified: Fri, 11 Nov 2022 12:13:35 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PeIXcZ7KvVl3nEHdc9_oswU-4F-37-KRjwGgONNhi3oJM5wq4W-McQ==
age: 323349
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 68a04663a52ab4272c25f5afcc09a92d
48b0722227353d06cb1dfd4480b644be6e6fc030
892ba18611f372b6bf390d3628b66efc4a721f0f2bde61ae22546a0948935b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 3ed64b41b0a432ed6f8763fb24643390
a706034f8eaca414f20e2bde40ff84dde5509515
f5486847b03849b009bebe64683cd107ac2427ffbf109786938be5e06e620aea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-231377325-1&cid=796982257.1668492195&jid=1214126761&_u=IEBAAEASAAAAACAAI~&z=1021109881
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-231377325-1&cid=796982257.1668492195&jid=1214126761&_u=IEBAAEASAAAAACAAI~&z=1021109881
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-231377325-1&cid=796982257.1668492195&jid=1214126761&_u=IEBAAEASAAAAACAAI~&z=1021109881 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 15 Nov 2022 06:03:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 3ed64b41b0a432ed6f8763fb24643390
a706034f8eaca414f20e2bde40ff84dde5509515
f5486847b03849b009bebe64683cd107ac2427ffbf109786938be5e06e620aea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/61427eec363e5/61427eec363ed.PNG
52.95.165.30200 OK 70 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/61427eec363e5/61427eec363ed.PNG
IP 52.95.165.30:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 68d4d292a4186edb36fa86a149c926b3
6520e988b4907a7894ccb3dcd5bde63c64f2d4de
38d784a1ef6102774b9a64cc5f70f1c97432a3783baac2c141e39edea1373383
GET /king-assets.yampi.me/dooki/61427eec363e5/61427eec363ed.PNG HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: eb6sjKGBDBd7/uVhXiqD5G3ig1O2/u95QUhUkBXx9ROMChRvLHqrabE6gxC9/pN1xuWlvuW+hK8=
x-amz-request-id: V4HW6N191Z87XEX3
Date: Tue, 15 Nov 2022 06:03:16 GMT
Last-Modified: Wed, 15 Sep 2021 23:17:01 GMT
ETag: "68d4d292a4186edb36fa86a149c926b3"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 69773
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 272019b89f9418c4f139c074307c0ab4
a668aeeaf0f6fd356a61bbbcd0b1b18a640141ab
82ae35823298497d997c3df4a298c7e5be87c875788fc0599cd62d6da037f3f4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121663
Date: Tue, 15 Nov 2022 06:03:15 GMT
Etag: "63725ddf-1d7"
Expires: Wed, 16 Nov 2022 15:50:58 GMT
Last-Modified: Mon, 14 Nov 2022 15:25:19 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dHv9VGgF41aEfbNvbgTI1CinVX42L9R28ASimBF5YRKkYtuFjG8-Tg==
Age: 1539
in.hotjar.com/api/v2/client/sites/3078425/visit-data?sv=7
52.30.44.244200 OK 86 kB URL HTTP/2 in.hotjar.com/api/v2/client/sites/3078425/visit-data?sv=7
IP 52.30.44.244:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f9c71c8f6a09160bfb1c3ebba4387bde
34b05884ef56bc27145d0ef59c7c0b9fa3d401d0
65123dace4c147b1405cafd264de4b6a22f91fb8eb6e17647e9327528f187148
POST /api/v2/client/sites/3078425/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 115
Origin: https://seguro.sotrendshop.com
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:16 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1124269195124314&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196101&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=InitiateCheckout_41mzzp277&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1124269195124314&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196101&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=InitiateCheckout_41mzzp277&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1124269195124314&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196101&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=InitiateCheckout_41mzzp277&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 15 Nov 2022 06:03:16 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1124269195124314&ev=PageView&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196093&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=PageView_fhyj7t86f&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1124269195124314&ev=PageView&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196093&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=PageView_fhyj7t86f&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1124269195124314&ev=PageView&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196093&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=PageView_fhyj7t86f&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 15 Nov 2022 06:03:16 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=3114952078757508&ev=PageView&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196090&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=PageView_fhyj7t86f&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=3114952078757508&ev=PageView&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196090&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=PageView_fhyj7t86f&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=3114952078757508&ev=PageView&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196090&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=PageView_fhyj7t86f&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 15 Nov 2022 06:03:16 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=3114952078757508&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196097&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=InitiateCheckout_3f0e2ob1p&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=3114952078757508&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196097&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=InitiateCheckout_3f0e2ob1p&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=3114952078757508&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196097&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=InitiateCheckout_3f0e2ob1p&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 15 Nov 2022 06:03:16 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=189983263056905&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196095&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=InitiateCheckout_k57rs0ix1&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=189983263056905&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196095&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=InitiateCheckout_k57rs0ix1&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=189983263056905&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sotrendshop.com%2Fcheckout%2Faddress&rl=&if=false&ts=1668492196095&cd[content_ids]=%5B%227539562512538%22%5D&cd[content_type]=product_group&cd[value]=187.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=29&fbp=fb.1.1668492196087.933250111&it=1668492195354&coo=false&eid=InitiateCheckout_k57rs0ix1&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 15 Nov 2022 06:03:16 GMT
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-spa-1216.min.js
151.101.86.137200 OK 18 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (32010)
Hash 6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 15 Nov 2022 06:03:16 GMT
via: 1.1 varnish
x-served-by: cache-bma1631-BMA
x-cache: HIT
x-cache-hits: 396
x-timer: S1668492196.383612,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d96fba17b1f528e0e6f4a01e886446ed
edc5b2d8e2df86e9610df5404390ea52e52dc93f
9efa0944bbe2a5971367a32ae98866d8c1c54fc4507170a7d1884a473123c1ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5343
Cache-Control: max-age=151015
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 06:03:16 GMT
Etag: "6372c1ac-1d7"
Expires: Thu, 17 Nov 2022 00:00:11 GMT
Last-Modified: Mon, 14 Nov 2022 22:31:08 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=6795&ck=1&ref=https://seguro.sotrendshop.com/checkout/address&ap=182&be=3958&fe=6699&dc=4453&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1668492189464,%22n%22:0,%22f%22:2849,%22dn%22:2849,%22dne%22:2849,%22c%22:2849,%22s%22:2849,%22ce%22:2849,%22rq%22:2851,%22rp%22:3937,%22rpe%22:3937,%22dl%22:3944,%22di%22:4386,%22ds%22:4452,%22de%22:4510,%22dc%22:6698,%22l%22:6698,%22le%22:6701%7D,%22navigation%22:%7B%7D%7D&fcp=4496&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=6795&ck=1&ref=https://seguro.sotrendshop.com/checkout/address&ap=182&be=3958&fe=6699&dc=4453&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1668492189464,%22n%22:0,%22f%22:2849,%22dn%22:2849,%22dne%22:2849,%22c%22:2849,%22s%22:2849,%22ce%22:2849,%22rq%22:2851,%22rp%22:3937,%22rpe%22:3937,%22dl%22:3944,%22di%22:4386,%22ds%22:4452,%22de%22:4510,%22dc%22:6698,%22l%22:6698,%22le%22:6701%7D,%22navigation%22:%7B%7D%7D&fcp=4496&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=6795&ck=1&ref=https://seguro.sotrendshop.com/checkout/address&ap=182&be=3958&fe=6699&dc=4453&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1668492189464,%22n%22:0,%22f%22:2849,%22dn%22:2849,%22dne%22:2849,%22c%22:2849,%22s%22:2849,%22ce%22:2849,%22rq%22:2851,%22rp%22:3937,%22rpe%22:3937,%22dl%22:3944,%22di%22:4386,%22ds%22:4452,%22de%22:4510,%22dc%22:6698,%22l%22:6698,%22le%22:6701%7D,%22navigation%22:%7B%7D%7D&fcp=4496&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 15 Nov 2022 06:03:17 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 76a5c863b9ddb517-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=adccb5cbcf5a9dcc; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=7662&ck=1&ref=https://seguro.sotrendshop.com/checkout/address
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=7662&ck=1&ref=https://seguro.sotrendshop.com/checkout/address
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=7662&ck=1&ref=https://seguro.sotrendshop.com/checkout/address HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 855
Origin: https://seguro.sotrendshop.com
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 15 Nov 2022 06:03:17 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 76a5c8690ff6b517-OSL
Access-Control-Allow-Origin: https://seguro.sotrendshop.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
static.hotjar.com/c/hotjar-3078425.js?sv=7
54.230.111.66200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3078425.js?sv=7
IP 54.230.111.66:0
GET /c/hotjar-3078425.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 15 Nov 2022 06:03:15 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/8d027614cde33aac3938e2c35284ae4f
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lRtYJNc3YJI06RtlcjlmFvHKEcbVnRB-jlHb9NqVfnsdsUw4FOFo9w==
X-Firefox-Spdy: h2
fonts.dooki.com.br/fa/4.7.0/fa.css
104.18.0.53200 OK 0 B URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.css
IP 104.18.0.53:0
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:13 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 1286
expires: Wed, 23 Nov 2022 06:03:13 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5c8541d06b515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.yampi.io/ana/ana.min.js?t=1668556800000
104.18.15.227200 OK 0 B URL HTTP/2 cdn.yampi.io/ana/ana.min.js?t=1668556800000
IP 104.18.15.227:0
GET /ana/ana.min.js?t=1668556800000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:14 GMT
content-type: application/javascript
x-amz-id-2: MQCmjdIbe8dG+PfuORTFrmubS+GaXZSalv9Ngo+6xtmcSXpOM9JHd+uNjrfrxlFNvsjkUS4Wh50=
x-amz-request-id: Q84YKFT7HMP29Y2T
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
age: 1279
expires: Wed, 15 Nov 2023 06:03:14 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5c8547f03b4ed-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
seguro.sotrendshop.com/checkout/payment?cart_token=shopify-ca3515975ff61effddaa26ba29e6d323&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=7e977a257b085df6ebbfa1ba96861e8e62184c90&customerToken=62ccca50-58ba-11ed-9239-fd5453a54555
170.82.174.30302 Found 0 B URL HTTP/2 seguro.sotrendshop.com/checkout/payment?cart_token=shopify-ca3515975ff61effddaa26ba29e6d323&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=7e977a257b085df6ebbfa1ba96861e8e62184c90&customerToken=62ccca50-58ba-11ed-9239-fd5453a54555
IP 170.82.174.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /checkout/payment?cart_token=shopify-ca3515975ff61effddaa26ba29e6d323&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=7e977a257b085df6ebbfa1ba96861e8e62184c90&customerToken=62ccca50-58ba-11ed-9239-fd5453a54555 HTTP/1.1
Host: seguro.sotrendshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Tue, 15 Nov 2022 06:03:12 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.sotrendshop.com/checkout/address
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InVXRDllQVJUb1NPVHBZUzdwMER5bUE9PSIsInZhbHVlIjoicGI2TmJzSFJKa1RobVhmM2VNR1dTWnlDTWpNNEw2MzBXcExtWm5IZEJaaERERmJGaHI3V1ltYXNQUlVZRFh4QjF1UGdIUkM4Q2JLdU1paE5Idit3OFE9PSIsIm1hYyI6IjYzMjdmODdhNGY0OTBmNzM0Njk2ZjI4Njk3YzkzNjkwZDFjYjliYWUyZjZiZmE1M2QzZTAyZWU5MWZhNjc5OWIifQ%3D%3D; expires=Tue, 15-Nov-2022 09:03:12 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkErZW9OQytFcHZRMGZuNmQ0VG9wYXc9PSIsInZhbHVlIjoiZEl4a0pabGlMc0owd0haN3RzdWhEKzl1VTlwYStVdEw5cVwvalk4WVN0emlUSTMxc21WRWtjVFhOMU9nNW5SMHNcLzhBM05CVWhROWM0WkNrKzlGSEUzQT09IiwibWFjIjoiZThkNzgwNThmMTY4ZDNiODVkMmZiNDVmOGViOGQ4NDY1MjBiMWQwMGE0ZTE2ZTNhNTNiZTFiZWNkYTc2ZWNlZCJ9; expires=Tue, 15-Nov-2022 09:03:12 GMT; Max-Age=10800; path=/; httponly
sotrendshop_cart=eyJpdiI6IjFyUHRyaU5ROWJ1ZWlFYkEwZEwzV3c9PSIsInZhbHVlIjoiVnk1MnI5UlU1QXZ3M0hQUXh3Z0lQK1lvZ2hidHhER000bkhnRGFqZ1hiZlI3ZzB0Y1ozOUprZ3dacHdqcTNGbnU2TlhYaFZlSEFYR3FGZXpTOEtiY3c9PSIsIm1hYyI6ImFmZGYyZjljMDkwN2EwNzcxMTEwMGIzNmY4N2U5MDkwODllZDE1YmViY2ExMTA0ZWNhMDk2ZGVmYjcxNmYyMDMifQ%3D%3D; expires=Sun, 20-Nov-2022 06:03:12 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=e004bdab01653a468c960c3569c402cb
104.26.3.88200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=e004bdab01653a468c960c3569c402cb
IP 104.26.3.88:0
GET /checkout/build/mix/assets/js/app.js?id=e004bdab01653a468c960c3569c402cb HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:13 GMT
content-type: application/javascript
x-amz-id-2: NRHsa6qucHQaiD3sC5dsd4mSTMl5ptA1rb1WB9pZudapWSWc7E9FXAqQiJ6YpdV9UR90y0pT+ZM=
x-amz-request-id: P200TN7ZJ2GWP78Q
last-modified: Fri, 04 Nov 2022 18:19:16 GMT
x-amz-version-id: vBH8I8U4Fk_cBjCH4K7uyIx8AtomnPkt
etag: W/"634f1880f47f3e97d885f3f34d5bf07b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4243
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oZkFo3SwXSmlbsMyYp74u6%2B3q2SXbOntn%2FnhU9dQDCAxBgY9Kcik220xr86DZt3DciffE78tJNQmpv4kjbI3K4%2FOby7jozzdkN99gdvNgpTPXc8hGSgeKLEbiTD05LJOhiJtGaST9XOY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5c852fb61b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25
104.26.3.88200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25
IP 104.26.3.88:0
GET /checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sotrendshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 15 Nov 2022 06:03:13 GMT
content-type: text/css
x-amz-id-2: YA1eDbyiFw9F7lvoHKFMrUFI+rzs4fWeaPTK8HBrcIojzp1Ze0GAqZwjGyO3EOKzm5Y2nWL5dqs=
x-amz-request-id: P208087TQ0JZ3MS4
last-modified: Fri, 04 Nov 2022 18:19:16 GMT
x-amz-version-id: 5lxShk4xe0C8IXXkoQQWK8S_0jFPf.GV
etag: W/"78c7a473b51f1cc2067d1b8860950b25"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4243
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WhV5Aj90Z%2F2FChZhVa0SkbDoyOD66wwchgqE8GOCCHlCa7IDEwYDw1NipxnBcoHkO8iXlm7U1EqIOnHQkaJ%2BKkA1V89a%2F0ZWT6x%2Bnb6YxcmS0uOcReuonfFGe5GloPwhW019uWANwqvK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5c8538bd0b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2