Overview

URL linkcurto.co/ny1piy83dzk8g
IP172.67.157.46
ASNCLOUDFLARENET
Location United States
Report completed2022-09-25 12:30:28 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-25 2 seguro.lojasmagazinedigital.com/e/t Phishing
2022-09-25 2 seguro.lojasmagazinedigital.com/cart/recomm Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (30)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-25 11:34:24 UTC 143.204.55.115
mnemonic passive DNS ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2022-09-25 08:02:21 UTC 93.184.220.29
mnemonic passive DNS js.upnid.com (1) 0 2020-06-23 15:36:07 UTC 2022-09-25 01:35:22 UTC 130.211.14.112 Unknown ranking
mnemonic passive DNS cdn.yampi.me (1) 309436 2019-12-08 15:51:20 UTC 2022-09-25 05:05:51 UTC 104.26.2.88
mnemonic passive DNS fonts.dooki.com.br (2) 829308 2018-11-23 22:20:24 UTC 2022-09-25 05:05:51 UTC 104.18.0.53
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-25 05:07:25 UTC 52.38.146.2
mnemonic passive DNS cdn.shopify.com (1) 2327 2012-06-22 18:37:14 UTC 2022-09-25 08:52:10 UTC 104.16.255.71
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-25 04:51:02 UTC 142.250.74.164
mnemonic passive DNS fonts.gstatic.com (1) 0 2014-08-29 13:43:22 UTC 2022-09-25 04:49:39 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS www.google-analytics.com (4) 40 2012-10-03 01:04:21 UTC 2022-09-25 07:42:17 UTC 142.250.74.174
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-09-25 05:01:51 UTC 157.240.200.14
mnemonic passive DNS linkcurto.co (2) 0 2020-11-27 12:00:42 UTC 2022-09-25 10:39:04 UTC 172.67.157.46 Unknown ranking
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.156
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-25 04:50:19 UTC 64.233.162.157
mnemonic passive DNS www.facebook.com (8) 99 2017-01-30 05:00:00 UTC 2022-09-25 04:50:19 UTC 157.240.200.35
mnemonic passive DNS js-agent.newrelic.com (1) 378 2017-01-30 05:00:15 UTC 2022-09-25 06:13:43 UTC 151.101.86.137
mnemonic passive DNS linkcurto.co (2) 0 2020-11-27 12:00:42 UTC 2022-09-25 10:39:04 UTC 104.21.81.61 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (8) 344 2020-12-02 08:52:13 UTC 2022-09-25 05:02:41 UTC 23.36.77.32
mnemonic passive DNS www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-09-25 04:56:34 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-25 04:51:16 UTC 34.117.237.239
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-25 04:26:31 UTC 34.120.237.76
mnemonic passive DNS seguro.lojasmagazinedigital.com (3) 0 2022-09-03 19:41:22 UTC 2022-09-25 05:25:14 UTC 170.82.174.30 Unknown ranking
mnemonic passive DNS analytics.tiktok.com (40) 1182 2020-02-29 13:09:05 UTC 2022-09-25 05:11:21 UTC 23.36.79.34
mnemonic passive DNS bam.nr-data.net (2) 630 2015-02-10 00:06:27 UTC 2022-09-25 04:59:22 UTC 162.247.241.14
mnemonic passive DNS ocsp.pki.goog (12) 175 2017-06-14 07:23:31 UTC 2022-09-25 04:54:16 UTC 142.250.74.3
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-25 05:42:52 UTC 143.204.55.110
mnemonic passive DNS github.bubbstore.com (7) 0 2018-10-11 16:37:24 UTC 2022-09-24 23:40:20 UTC 172.67.149.218 Unknown ranking
mnemonic passive DNS s3.sa-east-1.amazonaws.com (1) 60686 2017-11-14 13:15:14 UTC 2022-09-25 05:05:51 UTC 52.95.164.59
mnemonic passive DNS awesome-assets.yampi.me (2) 708511 2019-08-08 18:25:49 UTC 2022-09-25 05:05:51 UTC 104.26.2.88
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-25 11:00:52 UTC 142.250.74.10


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.67.157.46

Date UQ / IDS / BL URL IP
2022-11-24 05:00:36 +0000
0 - 0 - 3 linkcurto.co/4cuute3rwbi8c 172.67.157.46
2022-11-16 04:39:05 +0000
0 - 0 - 1 ccpcp.cn/ 172.67.157.46
2022-10-27 22:42:26 +0000
0 - 0 - 2 linkcurto.co/fccazgrho0g8c 172.67.157.46
2022-10-27 14:37:34 +0000
0 - 0 - 2 linkcurto.co/i5jb1sdfxo8ws 172.67.157.46
2022-10-26 04:30:23 +0000
0 - 0 - 4 linkcurto.co/5pcsz2s8ulgk0 172.67.157.46

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-01 14:41:15 +0000
8 - 0 - 4 galvanizedsquaresteel.com/4a548addbfb239bbd12 (...) 172.67.209.149
2022-12-01 14:38:20 +0000
0 - 0 - 7 abcfghkq2ij356de--loading.bv0pbh79x4m7.xyz/sp (...) 104.21.5.245
2022-12-01 14:38:13 +0000
0 - 0 - 5 abcghj123kq456de--loading.5kbwmcjljehc.xyz/sp (...) 188.114.97.1
2022-12-01 14:37:47 +0000
0 - 0 - 4 akrien.wtf/Akrien.exe?__cf_chl_tk=hibj0QM0qrG (...) 104.21.68.54
2022-12-01 14:35:37 +0000
0 - 0 - 5 w3s.link/ipfs/bafybeielogclanvxn2g5vx6xawugn2 (...) 104.18.22.52

Last 5 reports on domain: linkcurto.co

Date UQ / IDS / BL URL IP
2022-11-24 05:00:36 +0000
0 - 0 - 3 linkcurto.co/4cuute3rwbi8c 172.67.157.46
2022-11-08 06:55:26 +0000
0 - 0 - 7 linkcurto.co/8l4bnq3zfk004 104.21.81.61
2022-11-08 05:45:25 +0000
0 - 0 - 1 linkcurto.co/esvqjlkdu5cks 104.21.81.61
2022-10-27 22:42:26 +0000
0 - 0 - 2 linkcurto.co/fccazgrho0g8c 172.67.157.46
2022-10-27 14:37:34 +0000
0 - 0 - 2 linkcurto.co/i5jb1sdfxo8ws 172.67.157.46

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-27 14:31:03 +0000
0 - 0 - 2 seguro.lojasmagazinedigital.com/cart?cart_tok (...) 170.82.173.30
2022-10-25 05:10:34 +0000
0 - 0 - 2 seguro.lojasmagazinedigital.com/cart?cart_tok (...) 170.82.174.30
2022-10-25 05:10:33 +0000
0 - 0 - 2 seguro.lojasmagazinedigital.com/checkout/paym (...) 170.82.174.30
2022-10-24 05:40:24 +0000
0 - 0 - 2 linkcurto.co/cpncjttbh008k 104.21.81.61
2022-10-08 22:26:01 +0000
0 - 0 - 2 seguro.lojasmagazinedigital.com/cart?cart_tok (...) 170.82.174.30


JavaScript

Executed Scripts (48)


Executed Evals (5)

#1 JavaScript::Eval (size: 15713, repeated: 1) - SHA256: a6a083cc365accccd74ba7c2d8fbd56b46d7e9b1620a60d2c9aea5b570a1a71d

                                        (function() {
    var S9 = function(S, D) {
            return (D = D.create().shift(), S.K).create().length || S.A.create().length || (S.A = void 0, S.K = void 0), D
        },
        pb = function(S, D, A, Z) {
            for (; S.X.length;) {
                A = (S.o = null, S.X.pop());
                try {
                    Z = D_(S, A)
                } catch (e) {
                    v(S, e)
                }
                if (D && S.o) {
                    D = S.o, D(function() {
                        B(true, true, S)
                    });
                    break
                }
            }
            return Z
        },
        A4 = function(S, D, A, Z, e, p) {
            function V() {
                if (D.j == D) {
                    if (D.D) {
                        var R = [X, Z, A, void 0, e, p, arguments];
                        if (2 == S) var h = B(false, false, (d(D, R), D));
                        else if (1 == S) {
                            var P = !D.X.length;
                            d(D, R), P && B(false, false, D)
                        } else h = D_(D, R);
                        return h
                    }
                    e && p && e.removeEventListener(p, V, H)
                }
            }
            return V
        },
        WP = function(S, D, A, Z, e) {
            for (e = (Z = (S.xE = (S.ja = (S.oy = (S.bJ = (S.Ct = Z_, S[a]), VK), R7(S.I, {get: function() {
                        return this.concat()
                    }
                })), L)[S.I](S.ja, {
                    value: {
                        value: {}
                    }
                }), []), 0); 128 > e; e++) Z[e] = String.fromCharCode(e);
            B(true, true, ((d(S, (d(S, [(N(S, (K(function(p, V, R, h) {
                (R = M((V = M((h = M(p), p)), p)), N)(p, R, f(h, p) || f(V, p))
            }, (N(S, 161, [(K((K(function(p, V, R, h, P) {
                N((V = (P = f((h = (R = M(p), P = M(p), M(p)), V = M(p), h = f(h, p), P), p), f)(V, p), p), R, A4(V, p, h, P))
            }, S, (S.mr = (N(S, (K(function() {}, (N(S, (K(function(p, V, R, h) {
                N(p, (h = (V = f((R = (V = (h = M(p), M)(p), M(p)), V), p), f(h, p)) == V, R), +h)
            }, (N(S, (K(function(p, V, R, h) {
                if (h = p.kE.pop()) {
                    for (R = m(p); 0 < R; R--) V = M(p), h[V] = p.D[V];
                    p.D = ((h[239] = p.D[239], h)[195] = p.D[195], h)
                } else N(p, 110, p.Y)
            }, S, (K(function(p) {
                vP(4, p)
            }, S, ((K(function(p, V, R, h, P, E, x, u, W, Q, C, n) {
                function l(r, F) {
                    for (; W < r;) h |= m(p) << W, W += 8;
                    return h >>= (F = (W -= r, h & (1 << r) - 1), r), F
                }
                for (h = W = (x = M(p), 0), Q = (l(3) | 0) + 1, E = l(5), n = [], P = u = 0; u < E; u++) R = l(1), n.push(R), P += R ? 0 : 1;
                for (C = (P = (u = ((P | 0) - 1).toString(2).length, 0), []); P < E; P++) n[P] || (C[P] = l(u));
                for (u = 0; u < E; u++) n[u] && (C[u] = M(p));
                for (V = []; Q--;) V.push(f(M(p), p));
                K(function(r, F, G, q, k) {
                    for (F = [], q = [], k = 0; k < E; k++) {
                        if (!n[G = C[k], k]) {
                            for (; G >= q.length;) q.push(M(r));
                            G = q[G]
                        }
                        F.push(G)
                    }
                    r.A = (r.K = dx(V.slice(), r), dx)(F, r)
                }, p, x)
            }, (K(function(p) {
                EY(p, 4)
            }, (K(function(p, V, R, h, P) {
                0 !== (h = f((R = (V = (P = M((h = M(p), p)), M(p)), M(p)), h), p.j), R = f(R, p), P = f(P, p), V = f(V, p), h) && (V = A4(1, p, R, V, h, P), h.addEventListener(P, V, H), N(p, 345, [h, P, V]))
            }, S, (K(function(p, V, R, h, P, E) {
                c(false, p, V, true) || (E = e9(p.j), V = E.P, P = E.C, h = E.DA, R = P.length, E = E.nt, V = 0 == R ? new h[V] : 1 == R ? new h[V](P[0]) : 2 == R ? new h[V](P[0], P[1]) : 3 == R ? new h[V](P[0], P[1], P[2]) : 4 == R ? new h[V](P[0], P[1], P[2], P[3]) : 2(), N(p, E, V))
            }, (K((K(function(p, V, R) {
                N(p, (V = M(p), R = M(p), R), "" + f(V, p))
            }, S, (K(function(p, V, R, h) {
                (V = (R = (V = M((h = M(p), p)), M(p)), h = f(h, p), f(V, p)), N)(p, R, h[V])
            }, (K(function(p, V, R) {
                c(false, p, V, true) || (V = M(p), R = M(p), N(p, R, function(h) {
                    return eval(h)
                }(h4(f(V, p.j)))))
            }, S, (N(S, 480, (N(S, ((N(S, (K(function(p, V) {
                (p = (V = M(p), f)(V, p.j), p)[0].removeEventListener(p[1], p[2], H)
            }, (K(function(p, V, R, h, P, E) {
                if (!c(true, p, V, true)) {
                    if ("object" == (p = f((P = f((E = (V = (P = M((V = (R = M(p), M)(p), p)), E = M(p), f(V, p)), f)(E, p), P), p), R), p), BP(p))) {
                        for (h in R = [], p) R.push(h);
                        p = R
                    }
                    for (R = (P = (h = p.length, 0) < P ? P : 1, 0); R < h; R += P) V(p.slice(R, (R | 0) + (P | 0)), E)
                }
            }, S, (K(function(p, V, R) {
                V = (V = M(p), R = M(p), V = f(V, p), BP(V)), N(p, R, V)
            }, S, (K(function(p, V, R, h, P, E, x) {
                for (R = (x = (P = f(259, (V = (h = M(p), $X(p)), E = "", p)), P.length), 0); V--;) R = ((R | 0) + ($X(p) | 0)) % x, E += Z[P[R]];
                N(p, h, E)
            }, (S.Ji = (N(S, (K(function(p, V, R, h, P) {
                for (V = (R = (P = $X((h = M(p), p)), 0), []); R < P; R++) V.push(m(p));
                N(p, h, V)
            }, S, (K(function(p) {
                vP(1, p)
            }, (K(function(p, V, R, h) {
                h = M((R = M(p), V = m(p), p)), N(p, h, f(R, p) >>> V)
            }, S, (N(S, 207, [0, (N(S, (K(function(p, V, R, h) {
                N(p, (R = f((V = (h = M((V = (R = M(p), M(p)), p)), f(V, p)), R), p), h), R in V | 0)
            }, (N(S, (K(function(p) {
                PP(p, 4)
            }, S, (K((K(function(p, V, R, h) {
                !c(false, p, V, true) && (V = e9(p), h = V.P, R = V.DA, p.j == p || h == p.Kt && R == p) && (N(p, V.nt, h.apply(R, V.C)), p.G = p.U())
            }, S, (K(function(p, V, R, h) {
                N(p, (R = (V = (h = (R = M(p), M(p)), f(h, p)), f(R, p)), h), V + R)
            }, (N(S, 479, (N(S, ((S.v = 0, S.O = 1, S.H = (S.K = void 0, []), S.D = [], S.R = (S.Wa = false, S.l = 25, e = window.performance || {}, (S.G = (S.Y = 0, (S.T = 8001, S).W = void 0, 0), S.B = 0, S).V = (S.g = void 0, S.s = !(S.h = void 0, 1), S.J = (S.F = 0, void 0), S.Kt = function(p) {
                this.j = p
            }, void 0), S.o = (S.u = [], null), S.j = (S.S = (S.X = [], false), S.i = 0, S.Ai = 0, S), S.kE = [], []), S).A = void 0, S.Iy = e.timeOrigin || (e.timing || {}).navigationStart || 0, 110), 0), 0)), S), 300), 255)), function(p, V, R) {
                0 != f((R = (R = (V = M(p), M)(p), f(R, p)), V), p) && N(p, 110, R)
            }), S, 162), 283)), 486), Y(4)), S), 79), 476), []), 0), 0]), 157)), S), 171), 374)), 195), 2048), 0), S), 11), 208)), 457)), S), 91), 64), {}), S).Ql = 0, 271), J), 590)), 243)), S), 183), 499)), function(p, V) {
                Xn((V = f(M(p), p), p.j), V)
            }), S, 215), S), 76), 425)), S), 266), S), 74), K)(function(p, V, R, h, P) {
                (h = (P = M((V = M(p), p)), M(p)), p.j) == p && (R = f(V, p), h = f(h, p), P = f(P, p), R[P] = h, 65 == V && (p.g = void 0, 2 == P && (p.J = y(32, p, false), p.g = void 0)))
            }, S, 242), 401)), 84)), 370), S), S), 24), 239), []), S), 225), 345), 0), 0), 20)), function(p) {
                PP(p, 3)
            }), S, 262), 160), 0, 0]), S), 62), 427), 0), xX)]), [U, A])), d)(S, [uR, D]), S))
        },
        m = function(S) {
            return S.K ? S9(S, S.A) : y(8, S, true)
        },
        T = function(S, D, A, Z, e, p) {
            if (S.j == S)
                for (e = f(A, S), 486 == A ? (A = function(V, R, h, P) {
                        if (R = (P = e.length, (P | 0) - 4) >> 3, e.yl != R) {
                            R = (R << 3) - (h = [0, 0, p[1], p[e.yl = R, 2]], 4);
                            try {
                                e.pt = HP(h, a7(e, R), a7(e, (R | 0) + 4))
                            } catch (E) {
                                throw E;
                            }
                        }
                        e.push(e.pt[P & 7] ^ V)
                    }, p = f(207, S)) : A = function(V) {
                        e.push(V)
                    }, Z && A(Z & 255), S = 0, Z = D.length; S < Z; S++) A(D[S])
        },
        Ns = function(S, D, A, Z, e, p, V, R) {
            return (V = L[D.I]((Z = (e = Lb, [(R = A & 7, -49), 81, 60, -23, 96, -93, Z, -15, 53, 53]), D.ja)), V)[D.I] = function(h) {
                R += 6 + (p = h, 7 * A), R &= 7
            }, V.concat = function(h) {
                return (h = (h = +R - 96 * S * S * p - 1104 * p + Z[h = S % 16 + 1, R + 11 & 7] * S * h + (e() | 0) * h - 3888 * S * p + 48 * p * p - h * p + 2 * S * S * h, Z[h]), p = void 0, Z)[(R + 53 & 7) + (A & 2)] = h, Z[R + (A & 2)] = 81, h
            }, V
        },
        EY = function(S, D, A, Z) {
            for (A = (Z = M(S), 0); 0 < D; D--) A = A << 8 | m(S);
            N(S, Z, A)
        },
        a7 = function(S, D) {
            return S[D] << 24 | S[(D | 0) + 1] << 16 | S[(D | 0) + 2] << 8 | S[(D | 0) + 3]
        },
        t = function(S, D, A, Z) {
            for (A = ((Z = [], D) | 0) - 1; 0 <= A; A--) Z[(D | 0) - 1 - (A | 0)] = S >> 8 * A & 255;
            return Z
        },
        d = function(S, D) {
            S.X.splice(0, 0, D)
        },
        o7 = function(S, D, A) {
            if (3 == S.length) {
                for (A = 0; 3 > A; A++) D[A] += S[A];
                for (A = (S = [13, 8, 13, 12, 16, 5, 3, 10, 15], 0); 9 > A; A++) D[3](D, A % 3, S[A])
            }
        },
        y = function(S, D, A, Z, e, p, V, R, h, P, E, x, u, W) {
            if (h = f(110, D), h >= D.Y) throw [O, 31];
            for (E = (V = (W = h, D).bJ.length, S), Z = 0; 0 < E;) x = W >> 3, P = D.u[x], e = W % 8, p = 8 - (e | 0), p = p < E ? p : E, A && (u = D, u.g != W >> 6 && (u.g = W >> 6, R = f(65, u), u.V = HP([0, 0, R[1], R[2]], u.J, u.g)), P ^= D.V[x & V]), Z |= (P >> 8 - (e | 0) - (p | 0) & (1 << p) - 1) << (E | 0) - (p | 0), W += p, E -= p;
            return N(D, 110, (h | 0) + (A = Z, S | 0)), A
        },
        e9 = function(S, D, A, Z, e, p) {
            for (A = (D = M((p = ((Z = M((e = S[Cb] || {}, S)), e).nt = M(S), e.C = [], S.j == S ? (m(S) | 0) - 1 : 1), S)), 0); A < p; A++) e.C.push(M(S));
            for (e.P = f(Z, S); p--;) e.C[p] = f(e.C[p], S);
            return e.DA = f(D, S), e
        },
        Y = function(S, D) {
            for (D = []; S--;) D.push(255 * Math.random() | 0);
            return D
        },
        f = function(S, D) {
            if ((D = D.D[S], void 0) === D) throw [O, 30, S];
            if (D.value) return D.create();
            return D.create(2 * S * S + 81 * S + 23), D.prototype
        },
        D_ = function(S, D, A, Z, e) {
            if ((Z = D[0], Z) == z) S.l = 25, S.N(D);
            else if (Z == a) {
                e = D[1];
                try {
                    A = S.W || S.N(D)
                } catch (p) {
                    v(S, p), A = S.W
                }
                e(A)
            } else if (Z == rx) S.N(D);
            else if (Z == U) S.N(D);
            else if (Z == uR) {
                try {
                    for (A = 0; A < S.R.length; A++) try {
                        e = S.R[A], e[0][e[1]](e[2])
                    } catch (p) {}
                } catch (p) {}(0, D[1])(function(p, V) {
                    S.L(p, true, V)
                }, (S.R = [], function(p) {
                    (p = !S.X.length, d)(S, [Kb]), p && B(false, true, S)
                }))
            } else {
                if (Z == X) return A = D[2], N(S, 4, D[6]), N(S, 64, A), S.N(D);
                Z == Kb ? (S.D = null, S.u = [], S.H = []) : Z == xX && "loading" === J.document.readyState && (S.o = function(p, V) {
                    function R() {
                        V || (V = true, p())
                    }
                    V = false, J.document.addEventListener("DOMContentLoaded", R, H), J.addEventListener("load", R, H)
                })
            }
        },
        Xn = function(S, D) {
            N(S, ((S.kE.push(S.D.slice()), S).D[110] = void 0, 110), D)
        },
        b, Ms = function(S, D, A) {
            return S.L(function(Z) {
                A = Z
            }, false, D), A
        },
        nb = function(S, D, A, Z, e, p) {
            if (!D.W) {
                D.B++;
                try {
                    for (e = (A = (Z = void 0, D).Y, 0); --S;) try {
                        if (p = void 0, D.K) Z = S9(D, D.K);
                        else {
                            if (e = f(110, D), e >= A) break;
                            Z = (p = M((N(D, 479, e), D)), f)(p, D)
                        }
                        c(false, D, (Z && Z[Kb] & 2048 ? Z(D, S) : g([O, 21, p], 0, D), S), false)
                    } catch (V) {
                        f(480, D) ? g(V, 22, D) : N(D, 480, V)
                    }
                    if (!S) {
                        if (D.MV) {
                            nb(171153967572, (D.B--, D));
                            return
                        }
                        g([O, 33], 0, D)
                    }
                } catch (V) {
                    try {
                        g(V, 22, D)
                    } catch (R) {
                        v(D, R)
                    }
                }
                D.B--
            }
        },
        sY = function(S, D, A, Z) {
            try {
                Z = S[((D | 0) + 2) % 3], S[D] = (S[D] | 0) - (S[((D | 0) + 1) % 3] | 0) - (Z | 0) ^ (1 == D ? Z << A : Z >>> A)
            } catch (e) {
                throw e;
            }
        },
        fb = function(S, D) {
            D.push(S[0] << 24 | S[1] << 16 | S[2] << 8 | S[3]), D.push(S[4] << 24 | S[5] << 16 | S[6] << 8 | S[7]), D.push(S[8] << 24 | S[9] << 16 | S[10] << 8 | S[11])
        },
        HP = function(S, D, A, Z, e) {
            for (e = (S = S[2] | (Z = S[3] | 0, 0), 0); 14 > e; e++) A = A >>> 8 | A << 24, Z = Z >>> 8 | Z << 24, Z += S | 0, Z ^= e + 3261, A += D | 0, D = D << 3 | D >>> 29, A ^= S + 3261, D ^= A, S = S << 3 | S >>> 29, S ^= Z;
            return [D >>> 24 & 255, D >>> 16 & 255, D >>> 8 & 255, D >>> 0 & 255, A >>> 24 & 255, A >>> 16 & 255, A >>> 8 & 255, A >>> 0 & 255]
        },
        w, H = {
            passive: true,
            capture: true
        },
        J = this || self,
        PP = function(S, D, A, Z, e) {
            T(S, (((Z = (A = M((Z = (D &= (e = D & 4, 3), M(S)), S)), f(Z, S)), e) && (Z = cP("" + Z)), D) && T(S, t(Z.length, 2), A), Z), A)
        },
        Fn = function(S, D, A, Z) {
            function e() {}
            return Z = YX((A = void 0, S), function(p) {
                e && (D && lR(D), A = p, e(), e = void 0)
            }, !!D)[0], {
                invoke: function(p, V, R, h) {
                    function P() {
                        A(function(E) {
                            lR(function() {
                                p(E)
                            })
                        }, R)
                    }
                    if (!V) return V = Z(R), p && p(V), V;
                    A ? P() : (h = e, e = function() {
                        lR((h(), P))
                    })
                }
            }
        },
        lR = J.requestIdleCallback ? function(S) {
            requestIdleCallback(function() {
                S()
            }, {
                timeout: 4
            })
        } : J.setImmediate ? function(S) {
            setImmediate(S)
        } : function(S) {
            setTimeout(S, 0)
        },
        vP = function(S, D, A, Z) {
            Z = (A = M(D), M)(D), T(D, t(f(A, D), S), Z)
        },
        J4 = function(S, D) {
            if (D = (S = null, J.trustedTypes), !D || !D.createPolicy) return S;
            try {
                S = D.createPolicy("bg", {
                    createHTML: m2,
                    createScript: m2,
                    createScriptURL: m2
                })
            } catch (A) {
                J.console && J.console.error(A.message)
            }
            return S
        },
        v = function(S, D) {
            S.W = ((S.W ? S.W + "~" : "E:") + D.message + ":" + D.stack).slice(0, 2048)
        },
        N = function(S, D, A) {
            if (110 == D || 479 == D) S.D[D] ? S.D[D].concat(A) : S.D[D] = dx(A, S);
            else {
                if (S.s && 65 != D) return;
                161 == D || 486 == D || 476 == D || 239 == D || 207 == D ? S.D[D] || (S.D[D] = Ns(D, S, 86, A)) : S.D[D] = Ns(D, S, 17, A)
            }
            65 == D && (S.J = y(32, S, false), S.g = void 0)
        },
        yK = function(S, D, A, Z) {
            return f(64, (((Z = f(110, A), A.u) && Z < A.Y ? (N(A, 110, A.Y), Xn(A, D)) : N(A, 110, D), nb)(S, A), N(A, 110, Z), A))
        },
        B = function(S, D, A, Z, e, p) {
            if (A.X.length) {
                A.Wa = (A.S && 0(), D), A.S = true;
                try {
                    e = A.U(), A.G = e, A.i = e, A.h = 0, p = pb(A, D), Z = A.U() - A.i, A.F += Z, Z < (S ? 0 : 10) || 0 >= A.l-- || (Z = Math.floor(Z), A.H.push(254 >= Z ? Z : 254))
                } finally {
                    A.S = false
                }
                return p
            }
        },
        $X = function(S, D) {
            return D = m(S), D & 128 && (D = D & 127 | m(S) << 7), D
        },
        cP = function(S, D, A, Z, e) {
            for (A = Z = (e = (S = S.replace(/\r\n/g, "\n"), []), 0); A < S.length; A++) D = S.charCodeAt(A), 128 > D ? e[Z++] = D : (2048 > D ? e[Z++] = D >> 6 | 192 : (55296 == (D & 64512) && A + 1 < S.length && 56320 == (S.charCodeAt(A + 1) & 64512) ? (D = 65536 + ((D & 1023) << 10) + (S.charCodeAt(++A) & 1023), e[Z++] = D >> 18 | 240, e[Z++] = D >> 12 & 63 | 128) : e[Z++] = D >> 12 | 224, e[Z++] = D >> 6 & 63 | 128), e[Z++] = D & 63 | 128);
            return e
        },
        g = function(S, D, A, Z, e, p) {
            if (!A.s) {
                if (S = f(195, ((0 == (e = f(239, ((Z = void 0, S && S[0] === O) && (Z = S[2], D = S[1], S = void 0), A)), e.length) && (p = f(479, A) >> 3, e.push(D, p >> 8 & 255, p & 255), void 0 != Z && e.push(Z & 255)), D = "", S) && (S.message && (D += S.message), S.stack && (D += ":" + S.stack)), A)), 3 < S) {
                    A.j = (Z = (D = (S -= (D = D.slice(0, (S | 0) - 3), D.length | 0) + 3, cP)(D), A.j), A);
                    try {
                        T(A, t(D.length, 2).concat(D), 486, 9)
                    } finally {
                        A.j = Z
                    }
                }
                N(A, 195, S)
            }
        },
        YX = function(S, D, A, Z) {
            return (Z = b[S.substring(0, 3) + "_"]) ? Z(S.substring(3), D, A) : UY(S, D)
        },
        m2 = function(S) {
            return S
        },
        M = function(S, D) {
            if (S.K) return S9(S, S.A);
            return D = y(8, S, true), D & 128 && (D ^= 128, S = y(2, S, true), D = (D << 2) + (S | 0)), D
        },
        c = function(S, D, A, Z, e, p, V, R, h) {
            if (((D.O += (V = (R = (h = (p = (Z || D.h++, 0 < D.v && D.S) && D.Wa && 1 >= D.B && !D.K && !D.o && (!Z || 1 < D.T - A) && 0 == document.hidden, e = 4 == D.h) || p ? D.U() : D.G, h) - D.G, R >> 14), D.J && (D.J ^= V * (R << 2)), V), D).j = V || D.j, e) || p) D.h = 0, D.G = h;
            if (!p || h - D.i < D.v - (S ? 255 : Z ? 5 : 2)) return false;
            return (N(D, (S = f((D.T = A, Z ? 479 : 110), D), 110), D.Y), D.X).push([rx, S, Z ? A + 1 : A]), D.o = lR, true
        },
        R7 = function(S, D) {
            return L[S](L.prototype, {
                document: D,
                call: D,
                prototype: D,
                propertyIsEnumerable: D,
                floor: D,
                pop: D,
                parent: D,
                replace: D,
                splice: D,
                stack: D,
                length: D,
                console: D
            })
        },
        K = function(S, D, A) {
            S[N(D, A, S), xX] = 2796
        },
        BP = function(S, D, A) {
            if ("object" == (D = typeof S, D))
                if (S) {
                    if (S instanceof Array) return "array";
                    if (S instanceof Object) return D;
                    if ("[object Window]" == (A = Object.prototype.toString.call(S), A)) return "object";
                    if ("[object Array]" == A || "number" == typeof S.length && "undefined" != typeof S.splice && "undefined" != typeof S.propertyIsEnumerable && !S.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == A || "undefined" != typeof S.call && "undefined" != typeof S.propertyIsEnumerable && !S.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == D && "undefined" == typeof S.call) return "object";
            return D
        },
        dx = function(S, D, A) {
            return (A = L[D.I](D.xE), A)[D.I] = function() {
                return S
            }, A.concat = function(Z) {
                S = Z
            }, A
        },
        UY = function(S, D) {
            return [(D(function(A) {
                A(S)
            }), function() {
                return S
            })]
        },
        I = function(S, D, A) {
            A = this;
            try {
                WP(this, S, D)
            } catch (Z) {
                v(this, Z), S(function(e) {
                    e(A.W)
                })
            }
        },
        Cb = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        a = [],
        U = [],
        O = {},
        rx = [],
        z = (I.prototype.uJ = (I.prototype.GH = void 0, I.prototype.Z = "toString", void 0), []),
        uR = [],
        Kb = [],
        xX = [],
        X = (I.prototype.MV = false, []),
        Lb = (((fb, Y, function() {})(sY), function() {})(o7), void 0),
        L = ((w = I.prototype, I.prototype).I = "create", O).constructor;
    I.prototype.N = ((w.L = function(S, D, A, Z, e) {
        if (A = "array" === BP(A) ? A : [A], this.W) S(this.W);
        else try {
            e = !this.X.length, Z = [], d(this, [z, Z, A]), d(this, [a, S, Z]), D && !e || B(true, D, this)
        } catch (p) {
            v(this, p), S(this.W)
        }
    }, w.rg = function() {
        return Math.floor(this.U())
    }, (w.NV = function(S, D, A, Z, e, p) {
        for (p = (Z = e = 0, []); e < S.length; e++)
            for (A = A << D | S[e], Z += D; 7 < Z;) Z -= 8, p.push(A >> Z & 255);
        return p
    }, w).YE = function(S, D, A) {
        return (D = (D ^= D << 13, D ^= D >> 17, (D ^ D << 5) & A)) || (D = 1), S ^ D
    }, w).U = ((w.gg = function(S, D, A, Z, e) {
        for (Z = e = 0; Z < S.length; Z++) e += S.charCodeAt(Z), e += e << 10, e ^= e >> 6;
        return e = new Number((e += e << 3, e ^= e >> 11, S = e + (e << 15) >>> 0, S & (1 << D) - 1)), e[0] = (S >>> D) % A, e
    }, window.performance) || {}).now ? function() {
        return this.Iy + window.performance.now()
    } : function() {
        return +new Date
    }, w.Es = function() {
        return Math.floor(this.F + (this.U() - this.i))
    }, function(S, D) {
        return D = (S = (Lb = function() {
                return D == S ? 23 : 41
            }, {}), {}),
            function(A, Z, e, p, V, R, h, P, E, x, u, W, Q, C, n) {
                D = (Q = D, S);
                try {
                    if (E = A[0], E == U) {
                        V = A[1];
                        try {
                            for (x = (R = 0, h = (P = [], atob(V)), 0); x < h.length; x++) p = h.charCodeAt(x), 255 < p && (P[R++] = p & 255, p >>= 8), P[R++] = p;
                            N(this, 65, [(this.u = P, this.Y = this.u.length << 3, 0), 0, 0])
                        } catch (l) {
                            g(l, 17, this);
                            return
                        }
                        nb(8001, this)
                    } else if (E == z) A[1].push(f(476, this).length, f(486, this).length, f(195, this), f(161, this).length), N(this, 64, A[2]), this.D[89] && yK(8001, f(89, this), this);
                    else {
                        if (E == a) {
                            this.j = (n = (W = t((f(161, (R = A[2], this)).length | 0) + 2, 2), this.j), this);
                            try {
                                u = f(239, this), 0 < u.length && T(this, t(u.length, 2).concat(u), 161, 10), T(this, t(this.O, 1), 161, 109), T(this, t(this[a].length, 1), 161), h = 0, Z = f(486, this), h -= (f(161, this).length | 0) + 5, h += f(427, this) & 2047, 4 < Z.length && (h -= (Z.length | 0) + 3), 0 < h && T(this, t(h, 2).concat(Y(h)), 161, 15), 4 < Z.length && T(this, t(Z.length, 2).concat(Z), 161, 156)
                            } finally {
                                this.j = n
                            }
                            if (((x = Y(2).concat(f(161, this)), x)[1] = x[0] ^ 6, x[3] = x[1] ^ W[0], x)[4] = x[1] ^ W[1], e = this.Xj(x)) e = "!" + e;
                            else
                                for (h = 0, e = ""; h < x.length; h++) C = x[h][this.Z](16), 1 == C.length && (C = "0" + C), e += C;
                            return f(161, (N(this, 195, ((f(476, (P = e, this)).length = R.shift(), f(486, this)).length = R.shift(), R.shift())), this)).length = R.shift(), P
                        }
                        if (E == rx) yK(A[2], A[1], this);
                        else if (E == X) return yK(8001, A[1], this)
                    }
                } finally {
                    D = Q
                }
            }
    }());
    var VK, Z_ = (I.prototype[uR] = [0, 0, 1, 1, 0, 1, 1], I.prototype.Us = (I.prototype.Xj = function(S, D, A, Z) {
            if (D = window.btoa) {
                for (A = (Z = 0, ""); Z < S.length; Z += 8192) A += String.fromCharCode.apply(null, S.slice(Z, Z + 8192));
                S = D(A).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else S = void 0;
            return S
        }, I.prototype.ti = 0, 0), /./),
        Tj = U.pop.bind(I.prototype[z]),
        h4 = ((VK = R7(I.prototype.I, (Z_[I.prototype.Z] = Tj, {get: Tj
        })), I.prototype).dg = void 0, function(S, D) {
            return (D = J4()) && 1 === S.eval(D.createScript("1")) ? function(A) {
                return D.createScript(A)
            } : function(A) {
                return "" + A
            }
        }(J));
    ((b = J.botguard || (J.botguard = {}), 40 < b.m) || (b.m = 41, b.bg = Fn, b.a = YX), b).HBW_ = function(S, D, A) {
        return A = new I(D, S), [function(Z) {
            return Ms(A, Z)
        }]
    };
}).call(this);
                                    

#2 JavaScript::Eval (size: 22, repeated: 1) - SHA256: e5683c5a6cd34f26d9e83cd82920f4f254eca60536c547e744adaeb0c46e36ed

                                        0,
function(p) {
    EY(p, 1)
}
                                    

#3 JavaScript::Eval (size: 64, repeated: 1) - SHA256: 1fd69b8f0686d42ddd41501e73001c058475edeaf8efb5bb0c998e05177fcbb5

                                        0,
function(p, V, R) {
    N(p, (V = (R = (V = M(p), M(p)), p.D[V]) && f(V, p), R), V)
}
                                    

#4 JavaScript::Eval (size: 22, repeated: 1) - SHA256: c27350eb28449ea5fe63d2274e8009133c1c7821812e2d4bd0073bca021cc5e2

                                        0,
function(p) {
    EY(p, 2)
}
                                    

#5 JavaScript::Eval (size: 15574, repeated: 1) - SHA256: 4f34657c24016e806ad6855ae168ee70b5948f69a252e7a9c5fdf5940467859f

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var A = function(S) {
            return S
        },
        V = function(S, D) {
            if (!(D = (S = null, Z.trustedTypes), D) || !D.createPolicy) return S;
            try {
                S = D.createPolicy("bg", {
                    createHTML: A,
                    createScript: A,
                    createScriptURL: A
                })
            } catch (p) {
                Z.console && Z.console.error(p.message)
            }
            return S
        },
        Z = this || self;
    (0, eval)(function(S, D) {
        return (D = V()) && 1 === S.eval(D.createScript("1")) ? function(p) {
            return D.createScript(p)
        } : function(p) {
            return "" + p
        }
    }(Z)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var S9=function(S,D){return(D=D.create().shift(),S.K).create().length||S.A.create().length||(S.A=void 0,S.K=void 0),D},pb=function(S,D,A,Z){for(;S.X.length;){A=(S.o=null,S.X.pop());try{Z=D_(S,A)}catch(e){v(S,e)}if(D&&S.o){D=S.o,D(function(){B(true,true,S)});break}}return Z},A4=function(S,D,A,Z,e,p){function V(){if(D.j==D){if(D.D){var R=[X,Z,A,void 0,e,p,arguments];if(2==S)var h=B(false,false,(d(D,R),D));else if(1==S){var P=!D.X.length;d(D,R),P&&B(false,false,D)}else h=D_(D,R);return h}e&&p&&e.removeEventListener(p,V,H)}}return V},WP=function(S,D,A,Z,e){for(e=(Z=(S.xE=(S.ja=(S.oy=(S.bJ=(S.Ct=Z_,S[a]),VK),R7(S.I,{get:function(){return this.concat()}})),L)[S.I](S.ja,{value:{value:{}}}),[]),0);128>e;e++)Z[e]=String.fromCharCode(e);B(true,true,((d(S,(d(S,[(N(S,(K(function(p,V,R,h){(R=M((V=M((h=M(p),p)),p)),N)(p,R,f(h,p)||f(V,p))},(N(S,161,[(K((K(function(p,V,R,h,P){N((V=(P=f((h=(R=M(p),P=M(p),M(p)),V=M(p),h=f(h,p),P),p),f)(V,p),p),R,A4(V,p,h,P))},S,(S.mr=(N(S,(K(function(){},(N(S,(K(function(p,V,R,h){N(p,(h=(V=f((R=(V=(h=M(p),M)(p),M(p)),V),p),f(h,p))==V,R),+h)},(N(S,(K(function(p,V,R,h){if(h=p.kE.pop()){for(R=m(p);0<R;R--)V=M(p),h[V]=p.D[V];p.D=((h[239]=p.D[239],h)[195]=p.D[195],h)}else N(p,110,p.Y)},S,(K(function(p){vP(4,p)},S,((K(function(p,V,R,h,P,E,x,u,W,Q,C,n){function l(r,F){for(;W<r;)h|=m(p)<<W,W+=8;return h>>=(F=(W-=r,h&(1<<r)-1),r),F}for(h=W=(x=M(p),0),Q=(l(3)|0)+1,E=l(5),n=[],P=u=0;u<E;u++)R=l(1),n.push(R),P+=R?0:1;for(C=(P=(u=((P|0)-1).toString(2).length,0),[]);P<E;P++)n[P]||(C[P]=l(u));for(u=0;u<E;u++)n[u]&&(C[u]=M(p));for(V=[];Q--;)V.push(f(M(p),p));K(function(r,F,G,q,k){for(F=[],q=[],k=0;k<E;k++){if(!n[G=C[k],k]){for(;G>=q.length;)q.push(M(r));G=q[G]}F.push(G)}r.A=(r.K=dx(V.slice(),r),dx)(F,r)},p,x)},(K(function(p){EY(p,4)},(K(function(p,V,R,h,P){0!==(h=f((R=(V=(P=M((h=M(p),p)),M(p)),M(p)),h),p.j),R=f(R,p),P=f(P,p),V=f(V,p),h)&&(V=A4(1,p,R,V,h,P),h.addEventListener(P,V,H),N(p,345,[h,P,V]))},S,(K(function(p,V,R,h,P,E){c(false,p,V,true)||(E=e9(p.j),V=E.P,P=E.C,h=E.DA,R=P.length,E=E.nt,V=0==R?new h[V]:1==R?new h[V](P[0]):2==R?new h[V](P[0],P[1]):3==R?new h[V](P[0],P[1],P[2]):4==R?new h[V](P[0],P[1],P[2],P[3]):2(),N(p,E,V))},(K((K(function(p,V,R){N(p,(V=M(p),R=M(p),R),""+f(V,p))},S,(K(function(p,V,R,h){(V=(R=(V=M((h=M(p),p)),M(p)),h=f(h,p),f(V,p)),N)(p,R,h[V])},(K(function(p,V,R){c(false,p,V,true)||(V=M(p),R=M(p),N(p,R,function(h){return eval(h)}(h4(f(V,p.j)))))},S,(N(S,480,(N(S,((N(S,(K(function(p,V){(p=(V=M(p),f)(V,p.j),p)[0].removeEventListener(p[1],p[2],H)},(K(function(p,V,R,h,P,E){if(!c(true,p,V,true)){if("object"==(p=f((P=f((E=(V=(P=M((V=(R=M(p),M)(p),p)),E=M(p),f(V,p)),f)(E,p),P),p),R),p),BP(p))){for(h in R=[],p)R.push(h);p=R}for(R=(P=(h=p.length,0)<P?P:1,0);R<h;R+=P)V(p.slice(R,(R|0)+(P|0)),E)}},S,(K(function(p,V,R){V=(V=M(p),R=M(p),V=f(V,p),BP(V)),N(p,R,V)},S,(K(function(p,V,R,h,P,E,x){for(R=(x=(P=f(259,(V=(h=M(p),$X(p)),E="",p)),P.length),0);V--;)R=((R|0)+($X(p)|0))%x,E+=Z[P[R]];N(p,h,E)},(S.Ji=(N(S,(K(function(p,V,R,h,P){for(V=(R=(P=$X((h=M(p),p)),0),[]);R<P;R++)V.push(m(p));N(p,h,V)},S,(K(function(p){vP(1,p)},(K(function(p,V,R,h){h=M((R=M(p),V=m(p),p)),N(p,h,f(R,p)>>>V)},S,(N(S,207,[0,(N(S,(K(function(p,V,R,h){N(p,(R=f((V=(h=M((V=(R=M(p),M(p)),p)),f(V,p)),R),p),h),R in V|0)},(N(S,(K(function(p){PP(p,4)},S,(K((K(function(p,V,R,h){!c(false,p,V,true)&&(V=e9(p),h=V.P,R=V.DA,p.j==p||h==p.Kt&&R==p)&&(N(p,V.nt,h.apply(R,V.C)),p.G=p.U())},S,(K(function(p,V,R,h){N(p,(R=(V=(h=(R=M(p),M(p)),f(h,p)),f(R,p)),h),V+R)},(N(S,479,(N(S,((S.v=0,S.O=1,S.H=(S.K=void 0,[]),S.D=[],S.R=(S.Wa=false,S.l=25,e=window.performance||{},(S.G=(S.Y=0,(S.T=8001,S).W=void 0,0),S.B=0,S).V=(S.g=void 0,S.s=!(S.h=void 0,1),S.J=(S.F=0,void 0),S.Kt=function(p){this.j=p},void 0),S.o=(S.u=[],null),S.j=(S.S=(S.X=[],false),S.i=0,S.Ai=0,S),S.kE=[],[]),S).A=void 0,S.Iy=e.timeOrigin||(e.timing||{}).navigationStart||0,110),0),0)),S),300),255)),function(p,V,R){0!=f((R=(R=(V=M(p),M)(p),f(R,p)),V),p)&&N(p,110,R)}),S,162),283)),486),Y(4)),S),79),476),[]),0),0]),157)),S),171),374)),195),2048),0),S),11),208)),457)),S),91),64),{}),S).Ql=0,271),J),590)),243)),S),183),499)),function(p,V){Xn((V=f(M(p),p),p.j),V)}),S,215),S),76),425)),S),266),S),74),K)(function(p,V,R,h,P){(h=(P=M((V=M(p),p)),M(p)),p.j)==p&&(R=f(V,p),h=f(h,p),P=f(P,p),R[P]=h,65==V&&(p.g=void 0,2==P&&(p.J=y(32,p,false),p.g=void 0)))},S,242),401)),84)),370),S),S),24),239),[]),S),225),345),0),0),20)),function(p){PP(p,3)}),S,262),160),0,0]),S),62),427),0),xX)]),[U,A])),d)(S,[uR,D]),S))},m=function(S){return S.K?S9(S,S.A):y(8,S,true)},T=function(S,D,A,Z,e,p){if(S.j==S)for(e=f(A,S),486==A?(A=function(V,R,h,P){if(R=(P=e.length,(P|0)-4)>>3,e.yl!=R){R=(R<<3)-(h=[0,0,p[1],p[e.yl=R,2]],4);try{e.pt=HP(h,a7(e,R),a7(e,(R|0)+4))}catch(E){throw E;}}e.push(e.pt[P&7]^V)},p=f(207,S)):A=function(V){e.push(V)},Z&&A(Z&255),S=0,Z=D.length;S<Z;S++)A(D[S])},Ns=function(S,D,A,Z,e,p,V,R){return(V=L[D.I]((Z=(e=Lb,[(R=A&7,-49),81,60,-23,96,-93,Z,-15,53,53]),D.ja)),V)[D.I]=function(h){R+=6+(p=h,7*A),R&=7},V.concat=function(h){return(h=(h=+R-96*S*S*p-1104*p+Z[h=S%16+1,R+11&7]*S*h+(e()|0)*h-3888*S*p+48*p*p-h*p+2*S*S*h,Z[h]),p=void 0,Z)[(R+53&7)+(A&2)]=h,Z[R+(A&2)]=81,h},V},EY=function(S,D,A,Z){for(A=(Z=M(S),0);0<D;D--)A=A<<8|m(S);N(S,Z,A)},a7=function(S,D){return S[D]<<24|S[(D|0)+1]<<16|S[(D|0)+2]<<8|S[(D|0)+3]},t=function(S,D,A,Z){for(A=((Z=[],D)|0)-1;0<=A;A--)Z[(D|0)-1-(A|0)]=S>>8*A&255;return Z},d=function(S,D){S.X.splice(0,0,D)},o7=function(S,D,A){if(3==S.length){for(A=0;3>A;A++)D[A]+=S[A];for(A=(S=[13,8,13,12,16,5,3,10,15],0);9>A;A++)D[3](D,A%3,S[A])}},y=function(S,D,A,Z,e,p,V,R,h,P,E,x,u,W){if(h=f(110,D),h>=D.Y)throw[O,31];for(E=(V=(W=h,D).bJ.length,S),Z=0;0<E;)x=W>>3,P=D.u[x],e=W%8,p=8-(e|0),p=p<E?p:E,A&&(u=D,u.g!=W>>6&&(u.g=W>>6,R=f(65,u),u.V=HP([0,0,R[1],R[2]],u.J,u.g)),P^=D.V[x&V]),Z|=(P>>8-(e|0)-(p|0)&(1<<p)-1)<<(E|0)-(p|0),W+=p,E-=p;return N(D,110,(h|0)+(A=Z,S|0)),A},e9=function(S,D,A,Z,e,p){for(A=(D=M((p=((Z=M((e=S[Cb]||{},S)),e).nt=M(S),e.C=[],S.j==S?(m(S)|0)-1:1),S)),0);A<p;A++)e.C.push(M(S));for(e.P=f(Z,S);p--;)e.C[p]=f(e.C[p],S);return e.DA=f(D,S),e},Y=function(S,D){for(D=[];S--;)D.push(255*Math.random()|0);return D},f=function(S,D){if((D=D.D[S],void 0)===D)throw[O,30,S];if(D.value)return D.create();return D.create(2*S*S+81*S+23),D.prototype},D_=function(S,D,A,Z,e){if((Z=D[0],Z)==z)S.l=25,S.N(D);else if(Z==a){e=D[1];try{A=S.W||S.N(D)}catch(p){v(S,p),A=S.W}e(A)}else if(Z==rx)S.N(D);else if(Z==U)S.N(D);else if(Z==uR){try{for(A=0;A<S.R.length;A++)try{e=S.R[A],e[0][e[1]](e[2])}catch(p){}}catch(p){}(0,D[1])(function(p,V){S.L(p,true,V)},(S.R=[],function(p){(p=!S.X.length,d)(S,[Kb]),p&&B(false,true,S)}))}else{if(Z==X)return A=D[2],N(S,4,D[6]),N(S,64,A),S.N(D);Z==Kb?(S.D=null,S.u=[],S.H=[]):Z==xX&&"loading"===J.document.readyState&&(S.o=function(p,V){function R(){V||(V=true,p())}V=false,J.document.addEventListener("DOMContentLoaded",R,H),J.addEventListener("load",R,H)})}},Xn=function(S,D){N(S,((S.kE.push(S.D.slice()),S).D[110]=void 0,110),D)},b,Ms=function(S,D,A){return S.L(function(Z){A=Z},false,D),A},nb=function(S,D,A,Z,e,p){if(!D.W){D.B++;try{for(e=(A=(Z=void 0,D).Y,0);--S;)try{if(p=void 0,D.K)Z=S9(D,D.K);else{if(e=f(110,D),e>=A)break;Z=(p=M((N(D,479,e),D)),f)(p,D)}c(false,D,(Z&&Z[Kb]&2048?Z(D,S):g([O,21,p],0,D),S),false)}catch(V){f(480,D)?g(V,22,D):N(D,480,V)}if(!S){if(D.MV){nb(171153967572,(D.B--,D));return}g([O,33],0,D)}}catch(V){try{g(V,22,D)}catch(R){v(D,R)}}D.B--}},sY=function(S,D,A,Z){try{Z=S[((D|0)+2)%3],S[D]=(S[D]|0)-(S[((D|0)+1)%3]|0)-(Z|0)^(1==D?Z<<A:Z>>>A)}catch(e){throw e;}},fb=function(S,D){D.push(S[0]<<24|S[1]<<16|S[2]<<8|S[3]),D.push(S[4]<<24|S[5]<<16|S[6]<<8|S[7]),D.push(S[8]<<24|S[9]<<16|S[10]<<8|S[11])},HP=function(S,D,A,Z,e){for(e=(S=S[2]|(Z=S[3]|0,0),0);14>e;e++)A=A>>>8|A<<24,Z=Z>>>8|Z<<24,Z+=S|0,Z^=e+3261,A+=D|0,D=D<<3|D>>>29,A^=S+3261,D^=A,S=S<<3|S>>>29,S^=Z;return[D>>>24&255,D>>>16&255,D>>>8&255,D>>>0&255,A>>>24&255,A>>>16&255,A>>>8&255,A>>>0&255]},w,H={passive:true,capture:true},J=this||self,PP=function(S,D,A,Z,e){T(S,(((Z=(A=M((Z=(D&=(e=D&4,3),M(S)),S)),f(Z,S)),e)&&(Z=cP(""+Z)),D)&&T(S,t(Z.length,2),A),Z),A)},Fn=function(S,D,A,Z){function e(){}return Z=YX((A=void 0,S),function(p){e&&(D&&lR(D),A=p,e(),e=void 0)},!!D)[0],{invoke:function(p,V,R,h){function P(){A(function(E){lR(function(){p(E)})},R)}if(!V)return V=Z(R),p&&p(V),V;A?P():(h=e,e=function(){lR((h(),P))})}}},lR=J.requestIdleCallback?function(S){requestIdleCallback(function(){S()},{timeout:4})}:J.setImmediate?function(S){setImmediate(S)}:function(S){setTimeout(S,0)},vP=function(S,D,A,Z){Z=(A=M(D),M)(D),T(D,t(f(A,D),S),Z)},J4=function(S,D){if(D=(S=null,J.trustedTypes),!D||!D.createPolicy)return S;try{S=D.createPolicy("bg",{createHTML:m2,createScript:m2,createScriptURL:m2})}catch(A){J.console&&J.console.error(A.message)}return S},v=function(S,D){S.W=((S.W?S.W+"~":"E:")+D.message+":"+D.stack).slice(0,2048)},N=function(S,D,A){if(110==D||479==D)S.D[D]?S.D[D].concat(A):S.D[D]=dx(A,S);else{if(S.s&&65!=D)return;161==D||486==D||476==D||239==D||207==D?S.D[D]||(S.D[D]=Ns(D,S,86,A)):S.D[D]=Ns(D,S,17,A)}65==D&&(S.J=y(32,S,false),S.g=void 0)},yK=function(S,D,A,Z){return f(64,(((Z=f(110,A),A.u)&&Z<A.Y?(N(A,110,A.Y),Xn(A,D)):N(A,110,D),nb)(S,A),N(A,110,Z),A))},B=function(S,D,A,Z,e,p){if(A.X.length){A.Wa=(A.S&&0(),D),A.S=true;try{e=A.U(),A.G=e,A.i=e,A.h=0,p=pb(A,D),Z=A.U()-A.i,A.F+=Z,Z<(S?0:10)||0>=A.l--||(Z=Math.floor(Z),A.H.push(254>=Z?Z:254))}finally{A.S=false}return p}},$X=function(S,D){return D=m(S),D&128&&(D=D&127|m(S)<<7),D},cP=function(S,D,A,Z,e){for(A=Z=(e=(S=S.replace(/\\r\\n/g,"\\n"),[]),0);A<S.length;A++)D=S.charCodeAt(A),128>D?e[Z++]=D:(2048>D?e[Z++]=D>>6|192:(55296==(D&64512)&&A+1<S.length&&56320==(S.charCodeAt(A+1)&64512)?(D=65536+((D&1023)<<10)+(S.charCodeAt(++A)&1023),e[Z++]=D>>18|240,e[Z++]=D>>12&63|128):e[Z++]=D>>12|224,e[Z++]=D>>6&63|128),e[Z++]=D&63|128);return e},g=function(S,D,A,Z,e,p){if(!A.s){if(S=f(195,((0==(e=f(239,((Z=void 0,S&&S[0]===O)&&(Z=S[2],D=S[1],S=void 0),A)),e.length)&&(p=f(479,A)>>3,e.push(D,p>>8&255,p&255),void 0!=Z&&e.push(Z&255)),D="",S)&&(S.message&&(D+=S.message),S.stack&&(D+=":"+S.stack)),A)),3<S){A.j=(Z=(D=(S-=(D=D.slice(0,(S|0)-3),D.length|0)+3,cP)(D),A.j),A);try{T(A,t(D.length,2).concat(D),486,9)}finally{A.j=Z}}N(A,195,S)}},YX=function(S,D,A,Z){return(Z=b[S.substring(0,3)+"_"])?Z(S.substring(3),D,A):UY(S,D)},m2=function(S){return S},M=function(S,D){if(S.K)return S9(S,S.A);return D=y(8,S,true),D&128&&(D^=128,S=y(2,S,true),D=(D<<2)+(S|0)),D},c=function(S,D,A,Z,e,p,V,R,h){if(((D.O+=(V=(R=(h=(p=(Z||D.h++,0<D.v&&D.S)&&D.Wa&&1>=D.B&&!D.K&&!D.o&&(!Z||1<D.T-A)&&0==document.hidden,e=4==D.h)||p?D.U():D.G,h)-D.G,R>>14),D.J&&(D.J^=V*(R<<2)),V),D).j=V||D.j,e)||p)D.h=0,D.G=h;if(!p||h-D.i<D.v-(S?255:Z?5:2))return false;return(N(D,(S=f((D.T=A,Z?479:110),D),110),D.Y),D.X).push([rx,S,Z?A+1:A]),D.o=lR,true},R7=function(S,D){return L[S](L.prototype,{document:D,call:D,prototype:D,propertyIsEnumerable:D,floor:D,pop:D,parent:D,replace:D,splice:D,stack:D,length:D,console:D})},K=function(S,D,A){S[N(D,A,S),xX]=2796},BP=function(S,D,A){if("object"==(D=typeof S,D))if(S){if(S instanceof Array)return"array";if(S instanceof Object)return D;if("[object Window]"==(A=Object.prototype.toString.call(S),A))return"object";if("[object Array]"==A||"number"==typeof S.length&&"undefined"!=typeof S.splice&&"undefined"!=typeof S.propertyIsEnumerable&&!S.propertyIsEnumerable("splice"))return"array";if("[object Function]"==A||"undefined"!=typeof S.call&&"undefined"!=typeof S.propertyIsEnumerable&&!S.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==D&&"undefined"==typeof S.call)return"object";return D},dx=function(S,D,A){return(A=L[D.I](D.xE),A)[D.I]=function(){return S},A.concat=function(Z){S=Z},A},UY=function(S,D){return[(D(function(A){A(S)}),function(){return S})]},I=function(S,D,A){A=this;try{WP(this,S,D)}catch(Z){v(this,Z),S(function(e){e(A.W)})}},Cb=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),a=[],U=[],O={},rx=[],z=(I.prototype.uJ=(I.prototype.GH=void 0,I.prototype.Z="toString",void 0),[]),uR=[],Kb=[],xX=[],X=(I.prototype.MV=false,[]),Lb=(((fb,Y,function(){})(sY),function(){})(o7),void 0),L=((w=I.prototype,I.prototype).I="create",O).constructor;I.prototype.N=((w.L=function(S,D,A,Z,e){if(A="array"===BP(A)?A:[A],this.W)S(this.W);else try{e=!this.X.length,Z=[],d(this,[z,Z,A]),d(this,[a,S,Z]),D&&!e||B(true,D,this)}catch(p){v(this,p),S(this.W)}},w.rg=function(){return Math.floor(this.U())},(w.NV=function(S,D,A,Z,e,p){for(p=(Z=e=0,[]);e<S.length;e++)for(A=A<<D|S[e],Z+=D;7<Z;)Z-=8,p.push(A>>Z&255);return p},w).YE=function(S,D,A){return(D=(D^=D<<13,D^=D>>17,(D^D<<5)&A))||(D=1),S^D},w).U=((w.gg=function(S,D,A,Z,e){for(Z=e=0;Z<S.length;Z++)e+=S.charCodeAt(Z),e+=e<<10,e^=e>>6;return e=new Number((e+=e<<3,e^=e>>11,S=e+(e<<15)>>>0,S&(1<<D)-1)),e[0]=(S>>>D)%A,e},window.performance)||{}).now?function(){return this.Iy+window.performance.now()}:function(){return+new Date},w.Es=function(){return Math.floor(this.F+(this.U()-this.i))},function(S,D){return D=(S=(Lb=function(){return D==S?23:41},{}),{}),function(A,Z,e,p,V,R,h,P,E,x,u,W,Q,C,n){D=(Q=D,S);try{if(E=A[0],E==U){V=A[1];try{for(x=(R=0,h=(P=[],atob(V)),0);x<h.length;x++)p=h.charCodeAt(x),255<p&&(P[R++]=p&255,p>>=8),P[R++]=p;N(this,65,[(this.u=P,this.Y=this.u.length<<3,0),0,0])}catch(l){g(l,17,this);return}nb(8001,this)}else if(E==z)A[1].push(f(476,this).length,f(486,this).length,f(195,this),f(161,this).length),N(this,64,A[2]),this.D[89]&&yK(8001,f(89,this),this);else{if(E==a){this.j=(n=(W=t((f(161,(R=A[2],this)).length|0)+2,2),this.j),this);try{u=f(239,this),0<u.length&&T(this,t(u.length,2).concat(u),161,10),T(this,t(this.O,1),161,109),T(this,t(this[a].length,1),161),h=0,Z=f(486,this),h-=(f(161,this).length|0)+5,h+=f(427,this)&2047,4<Z.length&&(h-=(Z.length|0)+3),0<h&&T(this,t(h,2).concat(Y(h)),161,15),4<Z.length&&T(this,t(Z.length,2).concat(Z),161,156)}finally{this.j=n}if(((x=Y(2).concat(f(161,this)),x)[1]=x[0]^6,x[3]=x[1]^W[0],x)[4]=x[1]^W[1],e=this.Xj(x))e="!"+e;else for(h=0,e="";h<x.length;h++)C=x[h][this.Z](16),1==C.length&&(C="0"+C),e+=C;return f(161,(N(this,195,((f(476,(P=e,this)).length=R.shift(),f(486,this)).length=R.shift(),R.shift())),this)).length=R.shift(),P}if(E==rx)yK(A[2],A[1],this);else if(E==X)return yK(8001,A[1],this)}}finally{D=Q}}}());var VK,Z_=(I.prototype[uR]=[0,0,1,1,0,1,1],I.prototype.Us=(I.prototype.Xj=function(S,D,A,Z){if(D=window.btoa){for(A=(Z=0,"");Z<S.length;Z+=8192)A+=String.fromCharCode.apply(null,S.slice(Z,Z+8192));S=D(A).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else S=void 0;return S},I.prototype.ti=0,0),/./),Tj=U.pop.bind(I.prototype[z]),h4=((VK=R7(I.prototype.I,(Z_[I.prototype.Z]=Tj,{get:Tj})),I.prototype).dg=void 0,function(S,D){return(D=J4())&&1===S.eval(D.createScript("1"))?function(A){return D.createScript(A)}:function(A){return""+A}}(J));((b=J.botguard||(J.botguard={}),40<b.m)||(b.m=41,b.bg=Fn,b.a=YX),b).HBW_=function(S,D,A){return A=new I(D,S),[function(Z){return Ms(A,Z)}]};}).call(this);'));
}).call(this);
                                    

Executed Writes (0)



HTTP Transactions (118)


Request Response
                                        
                                            GET /ny1piy83dzk8g HTTP/1.1 
Host: linkcurto.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.21.81.61
HTTP/1.1 301 Moved Permanently
                                        
Date: Sun, 25 Sep 2022 12:30:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 25 Sep 2022 13:30:17 GMT
Location: https://linkcurto.co/ny1piy83dzk8g
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q4ra3D8FS%2Fzp8t1ZsEdb2c5JTFD7l3fO1IkhCVH8KH7LNPMWAKDN1%2FYPdH3bryR2RqlO5P2QJT%2FueWvylkQ%2BP6%2BorGh8obwQ9sgRVtYndXNhH%2FLtTYH5P%2BOf%2BN40ybI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7503c52e989cb521-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 12:14:56 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gYtkb8wvE_HEOMASL8CqCXawyKYSCRiDJlAkQ2k4kEf5di5nnulhfA==
Age: 921


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12120
Expires: Sun, 25 Sep 2022 15:52:17 GMT
Date: Sun, 25 Sep 2022 12:30:17 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sCO35YX_qBRQP8dJMvXz5n-ab-zaxvfkyVBEIoksDWKVCR1iTDCgag==
age: 28503
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 25 Sep 2022 12:30:17 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 25 Sep 2022 12:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 25 Sep 2022 12:14:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: U5I-fNfk3tLAo7H-ZfuUzpo8uws5zO3c6MQ7lplYfQhs--1rd15Aow==
Age: 1561


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6131
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 12:30:18 GMT
Last-Modified: Sun, 25 Sep 2022 10:48:07 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QrNeQ33krmNYal2Iyb/H2A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.38.146.2
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CU9Ifhu5H6wJ6kTXeluRL9hR0L8=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5F74E5DCA5C86CE12014521DE7305220B2C022D1CE2FAEE751E50517068BA69B"
Last-Modified: Fri, 23 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 25 Sep 2022 18:30:18 GMT
Date: Sun, 25 Sep 2022 12:30:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14746
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 12:30:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14746
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 12:30:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14746
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 12:30:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14746
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 12:30:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14746
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 12:30:19 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:19 GMT
age: 53580
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size:   12826
Md5:    b3a72e81317074689a71dac7059e4b6a
Sha1:   b6d56333d7f1ea7ddc8838d84de498ff913c5464
Sha256: e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6199
x-amzn-requestid: d26f22d9-4e9b-4764-8c96-2e1c7ce36340
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--OKHowoAMFbQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7727-7adb7c4925e6e50e13889544;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LryqVGSkKbiNOwcqXMULY9FXbOuZBBenjgGPDME3NZLZOdp5divXmw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:02:29 GMT
age: 52070
etag: "358e74de395352a9529ff1c17856daf8900888c5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6199
Md5:    714af732a9aa1db2b13ffb62810fd532
Sha1:   358e74de395352a9529ff1c17856daf8900888c5
Sha256: 1d2035cfcd283560ebe8494f9438e52f8d96cd092dd41cb0eb899a3f905c1e05
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8715
x-amzn-requestid: d5e237f4-4c0e-4e3b-b3ae-ea1eb5b7cafc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5JmTEAwIAMF_Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d22f4-48a975a866edc1755858600f;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 03:07:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Sm6N8Un8XKHtGGZwxLd1aYygBns1l8siRvcc2w_9V2imJopvt8Ockw==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 07:09:15 GMT
age: 19264
etag: "79c83cc27996b2339bd63764dbb2ae9744db6d70"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8715
Md5:    a89e7161745036637a66e8ab5b7efdf9
Sha1:   79c83cc27996b2339bd63764dbb2ae9744db6d70
Sha256: 13b990c3c6a9bee6def25d007e14628c52e427b6f4c718895b1817d5e8e59760
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8914
x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EUHqJoAMF7MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kdF6En2vbJhRH1bkYMOuNm5XOIsT1qs3FE281N1SKn1FbyW-oNZsEw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:06 GMT
etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5"
age: 53593
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8914
Md5:    dfdacc8edea3c24dad020d7e9c11b3f4
Sha1:   2b6e37596e88b62f288dc8e8c937fd904fae28d5
Sha256: 338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4723
x-amzn-requestid: 4be5e73a-e648-40a4-8566-cb3417e5843b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EKHYcoAMFgMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7880-4682134275162910149d09ec;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 67JgCuzx90IROr0JQJq0jbsntmkbD0dReobbS4G1V6pPD22qOosLrg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:15:14 GMT
age: 51305
etag: "8324b383c89771a2b1155ec6d069bf5a47338acd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4723
Md5:    3d35df1f57d0736995615b0d8f50b8a3
Sha1:   8324b383c89771a2b1155ec6d069bf5a47338acd
Sha256: 9f381d59d2e4b086d43d784d7660e27f6f7760dc2b4eb9beee4b6e94801cb6db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5305
x-amzn-requestid: df7ba218-d20c-4389-8895-affd870ad15f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5JqKGtHoAMFcJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d230d-1854a5420f7091316aa4f211;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 03:07:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v37Rjs_OtmFd6UKau0Flv_J6GAWTe0UdA8hXaDmmn6SmLXQbEHeBVQ==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 03:45:44 GMT
age: 31475
etag: "db601663fa6ee5564eddaf8d3d84c7b04bf3871c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5305
Md5:    9773faaac4deac40b96cd0802e974f36
Sha1:   db601663fa6ee5564eddaf8d3d84c7b04bf3871c
Sha256: 40e7a573f510ff29db04b3fbfacde2ad6ecd67b4c0be30034e057654c86408a4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 12:30:20 GMT
Server: ECS (amb/6BB9)
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BE2DA8F3F37D430FC0F7EE4522259B928A931F13381685B7BA01A56B2A8CFEEB"
Last-Modified: Sat, 24 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14239
Expires: Sun, 25 Sep 2022 16:27:39 GMT
Date: Sun, 25 Sep 2022 12:30:20 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/pWyJAO6WNqQ HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/files/1/0644/5518/0512/products/Design_sem_nome_6_250x250.png HTTP/1.1 
Host: cdn.shopify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.255.71
HTTP/2 200 OK
content-type: image/avif
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
content-length: 12251
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0644/5518/0512/products/Design_sem_nome_6_250x250.png>; rel="canonical"
server-timing: imagery;dur=684.239, imageryFetch;dur=96.309, imageryProcess;dur=587.278;desc="image"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 7f21093f-2f46-45c5-b292-14a06152158f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Fri, 23 Sep 2022 10:31:31 GMT
cf-cache-status: HIT
age: 46200
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WsZm4ZxwjkFa1gJ2X%2FL3MiuBZhb7qTOXfUgnJ28Oo%2BUF5iy3kZLssSUtwWxKmzBPt9DnSe2vdwmm71GIEvunVmhlbElMxE1JF2d1DmNUrQVnZlYB%2BHGQHPyduYff8VWXVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7503c540ea4c1c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   12251
Md5:    70bda43e3c1348f2415b9304cd582ff5
Sha1:   4ddbd8a9bcf82f11e0057155e19c51046ba57921
Sha256: d634cdcf9f01110274dc8478d29b642e0edd69fa1361c530b3ec6857c25a5485
                                        
                                            GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Sun, 25 Sep 2022 12:30:20 GMT
date: Sun, 25 Sep 2022 12:30:20 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (884), with no line terminators
Size:   585
Md5:    7d84c4456027d3c2e042f55c624444cb
Sha1:   ae1299213270a14574bac01f8f91d29a4c9ffd7c
Sha256: 5ac486ab075825fc510d276894e2a289866e243bbb1efe2f5246c710f307aae4
                                        
                                            GET /v0.js HTTP/1.1 
Host: js.upnid.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         130.211.14.112
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
vary: Origin
content-encoding: gzip
via: 1.1 google
content-length: 8884
date: Sat, 24 Sep 2022 23:40:20 GMT
age: 46200
last-modified: Tue, 19 Jan 2021 20:16:07 GMT
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (23050)
Size:   8884
Md5:    960c2f02f796ed460b2c3911ee0f498d
Sha1:   862e007ff302286b83d9e5b4b880acdf5894ac1a
Sha256: d5112369b9ae06973e98285df7d92749ddae470430912d01fd70f7c45207592f
                                        
                                            GET /cart?cart_token=shopify-b26b87b7ad428885ef427109e8806bca&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=c465959b50f562ffa73453f817b030733f866d64&customerToken=6a742020-3cb8-11ed-b788-ebcc7c38ef3a HTTP/1.1 
Host: seguro.lojasmagazinedigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         170.82.174.30
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Sun, 25 Sep 2022 12:30:18 GMT
location: https://seguro.lojasmagazinedigital.com/checkout/payment?cart_token=shopify-b26b87b7ad428885ef427109e8806bca&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=c465959b50f562ffa73453f817b030733f866d64&customerToken=6a742020-3cb8-11ed-b788-ebcc7c38ef3a
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6ImtNOFZXeVVkSjdPelJRYVBOdUNWbXc9PSIsInZhbHVlIjoiRXh5N3hCQVNlQlp2bUxuRWFZTUJUVFBUNllhdlJPbDE2czh6UUpIdXFsd29lWDlYMmE5Sm9PcVE3YXN6Y0M1NzJjVlN3aUlKTTlneTNKZE05U0VUbGc9PSIsIm1hYyI6IjdmMDZiZTFhMzU2MThmNjBhYTlhYzMwNTAzMGU5NDEwNDQyMWJjNTVjMzc3MTY5M2IyZWUwZTYxYTU4YWFlMTMifQ%3D%3D; expires=Sun, 25-Sep-2022 15:30:18 GMT; Max-Age=10800; path=/ bubbstore_checkout=eyJpdiI6IkdIWk5cL2RwV3BKcFR3Y1JzdE1DREhRPT0iLCJ2YWx1ZSI6ImVHQVdERnpVT3J5Y251bzNUT01KUStybHFSSEhpOFlDSUxxeSt1dXBcL0JLMXI3Q3hIdTlcL3hYT2lDbHlhb0V6dUltYUlhYUNNempneERYSWFGUm5ZOVE9PSIsIm1hYyI6IjQ0ODFlYTYxMjgzN2Y0YTcwNWUwNjJiMmI3ZjFmODIwNzM3MjcyZDFkODFkMTU5OWI4N2JiMTY5M2QyZDljZDIifQ%3D%3D; expires=Sun, 25-Sep-2022 15:30:18 GMT; Max-Age=10800; path=/; httponly digitalmagazine_cart=eyJpdiI6ImtcL1BIQ3F0ZVZ1aGtmN3NqUmQrZjFBPT0iLCJ2YWx1ZSI6ImZvbW5kRlNTNXIrZW1vaVVabkRYRkh6OTFYMEtGRERVelc1YjB6bWgwbENXVlRcL3p2bWVqUTFIMzBRS25iQWM0c2pxRzVcL3ZWdG1uQ2FLOVlBTExoVmc9PSIsIm1hYyI6ImMwMjdjZWI0ZDljN2NmNWY1YjI0YzZiYmFhYzU1NjhlMzg5ODJiN2NkZWNlMDhjZDQ4MmRmZDVmNzNhZTUzMWQifQ%3D%3D; expires=Fri, 30-Sep-2022 12:30:18 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   55269
Md5:    07fb18226b68479a987913d154b4801a
Sha1:   5b30df3e9aca0b8187b342b9071d6524071f6e44
Sha256: 909c6f9baa19e40940ade0d920874cdae1164f50504cdb1931530ace516a921d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/pWyJAO6WNqQ HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 12:30:20 GMT
Last-Modified: Sun, 25 Sep 2022 10:48:39 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: t0nrVzpPGEWu6tPVV8wpiIz-pqjyMMVBgyEyLnYjf8im4SXcSRj0EA==
Age: 6102

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /jquery/jquery.js HTTP/1.1 
Host: cdn.yampi.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.2.88
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
x-amz-id-2: 7gxTttBd/kCkn0bd/hyRfHdpqJ9gzq8f1yoBkZ3x5D4QwamXpqfrXGunCOTo8cwqgRppri0a9Bk=
x-amz-request-id: 98FT7W7KHGHEXVPW
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dFYNFUQy9Oj8biJwKaqgdw0gD9LRcopMsRcZmBpf1MbcM9XD66Vqgk10Oo4noqjiMXOubQxffoc7heTZwkPruX%2B9OHOxzqcOoba0%2BMIEuD7wUkPF%2FdkN2%2FdauiI%2BLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7503c5409d82b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32060)
Size:   35401
Md5:    21fc41081d28572ea6745c7cfdc893d0
Sha1:   25565ef57febad48ec1c8b912502cdba737d1b2e
Sha256: 08a5ab0fd2e500fea958125beaca8fca1e8fa959b5db424b56a6cd3ba94574e8
                                        
                                            GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:08:19 GMT
expires: Tue, 19 Sep 2023 21:08:19 GMT
cache-control: public, max-age=31536000
age: 487321
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Size:   33580
Md5:    848cd2ecd011428969dc6b90431bc482
Sha1:   6b1a7b562a56bd54510e0f6f95e26babca331a1b
Sha256: 981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
                                        
                                            GET /fa/4.7.0/fa.css HTTP/1.1 
Host: fonts.dooki.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.0.53
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: REVALIDATED
expires: Mon, 03 Oct 2022 12:30:20 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 7503c540dab3b515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   7359
Md5:    2d7f0dcf85d923162fd44d3936fe3e4c
Sha1:   5249608a8717b9124a7f54d5b26a0f463c292d7a
Sha256: 4cf6f544b309f80db3d1c9bab451f3a3a0cbefbe03c8a7d2d2eecfd6c576a77b
                                        
                                            GET /svg/card-hipercard.svg HTTP/1.1 
Host: github.bubbstore.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.149.218
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-54bc"
expires: Sun, 25 Sep 2022 12:40:20 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 1F7C:4FA9:A2485E:A7FA72:631CED48
via: 1.1 varnish
x-served-by: cache-bma1680-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662840137.860379,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: 5a9873bf3e3be401e007339ec8459d7c1527e216
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NLVK5HMtDcrK3V2kilMeIz3SfV0vl3yEdfSQ5n8iH8XG2rJ6O6G56NxM9gXj%2Bo1NPIY122WM4%2FMrXVjAcWAdEWUfRZVYYJSEzjRza59QOceh%2FSF3h8QdBOi0nBk0856DiH%2B59byXaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7503c540b93cb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3869)
Size:   12224
Md5:    54a5e88b02d5bf17f37c46fcb9d41b66
Sha1:   075246895fe29d0c69e74c75485b8d2106ce8a99
Sha256: 6b8ec0211bc226a2c341a2a402dd25d277bdb975ac6d233b731d2b6ca3979746
                                        
                                            GET /king-assets.yampi.me/dooki/6152682e36845/6152682e3684b.png HTTP/1.1 
Host: s3.sa-east-1.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.95.164.59
HTTP/1.1 200 OK
Content-Type: image/png
                                        
x-amz-id-2: 681k6LVHGwQ2NgRao7q8mTow5W2XPKlFSWr19VfpVK+Om+GiMGbdGVzgMB42CdWXCMLjBJCtgGI=
x-amz-request-id: Y8CEHAKF8NWTY3FG
Date: Sun, 25 Sep 2022 12:30:21 GMT
Last-Modified: Tue, 28 Sep 2021 00:56:15 GMT
ETag: "38c2a5c9cc0ecfe5bfc40cfcac18032b"
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 8154


--- Additional Info ---
Magic:  PNG image data, 440 x 114, 8-bit colormap, non-interlaced\012- data
Size:   8154
Md5:    38c2a5c9cc0ecfe5bfc40cfcac18032b
Sha1:   037a2564566555f14ae0cfd555eb83e34c2741a0
Sha256: 92dc6bc90d38b5a10a6ab828981c9270e1aede9f79ade793bc80c84fb9e54a1f
                                        
                                            GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1 
Host: fonts.dooki.com.br
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.0.53
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
date: Sun, 25 Sep 2022 12:30:21 GMT
content-length: 77160
x-amz-id-2: rLrE4XGfKqbD/mq1jyfkaoesrgO1LdibKaQ4W9EHMkDHL14d/Z3KV/XbwvB2sO79d7v9rNJUA58=
x-amz-request-id: 34YF5E6XQMKNMT73
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: REVALIDATED
expires: Mon, 03 Oct 2022 12:30:21 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
server: cloudflare
cf-ray: 7503c544c9e21bfe-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
                                        
                                            GET /i18n/pixel/events.js?sdkid=CCMDK43C77U9QMO0QN50&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20220925123020AF28A888615095BFBF1A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923ccae6b2e211d73d46a08e1a73d25432d91add367782a0cf38bded527aea782e2d5ff4d3ae992fd6c536f0cc2aced3643b0eaaaf17ff98bfc777270a98a429b2515
content-encoding: gzip
content-length: 56133
x-origin-response-time: 176,23.36.66.38
x-akamai-request-id: 3aa9742c.2f42eff7
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-36-66-38.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=150, origin; dur=176, inner; dur=2
x-parent-response-time: 326,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65467)
Size:   56133
Md5:    5c4cf9d6e53171ad67940ff7c46630aa
Sha1:   42cdf6cf260ff6172f8407ca8581aadf56838868
Sha256: 8a9dea5b0ef4afe710abcc943f5f958cc48817d3d2015dc0cfd6b3141b7fa4ec
                                        
                                            GET /i18n/pixel/config.js?sdkid=CCMAR9JC77UB4C8P4BM0&hostname=seguro.lojasmagazinedigital.com HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209251230213C2371E07F6F54B94EDE
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad270d1ce35e9b646a2b49bffb05730b146277bee86ad656a249c1b78ff511de69101a9531e32b6255532042d2546ba1517e531da8471c9892c4e07cbd8164994b5f3
content-encoding: gzip
content-length: 354
x-origin-response-time: 6,23.217.116.228
x-akamai-request-id: 796b9f37.2f42f19f
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
set-cookie: _ttp=2FGCQzOyHnbd4N16cSe57QJDYMu; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-217-116-228.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=100, origin; dur=6, inner; dur=4
x-parent-response-time: 106,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   354
Md5:    5e4cea85c37f8ea94272859945b68529
Sha1:   1ce948d23226b324ad6bdf300bec10eb670c93a7
Sha256: dedffc559fb0963920859fdee833c5fd70570bdcf7155a808902f1dba41948d8
                                        
                                            GET /i18n/pixel/events.js?sdkid=CCMD5QJC77UB1O51GNH0&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20220925123020EF4ADDC98A05F0884444
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad2702347aaf72b2e05b3fa450b75e4ea0e0c92e663cc1599858186999c73bd6aa94caafb71562699d1fc4a5a69b9e5aa951c79dcf8e4ea79e991a580c89ce88ecd67
content-encoding: gzip
x-origin-response-time: 42,23.217.116.142
x-akamai-request-id: 7e805d4c.2f42f025
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-217-116-142.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=42, inner; dur=2
x-parent-response-time: 145,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65467)
Size:   56658
Md5:    413934e763d63817b88c164001ed79cc
Sha1:   3c56c7d3cc4afe40474f94d12fe49777bcd22687
Sha256: 30340687317b54bdaf5b1b4aeacf693209d2718a486434df5454d15b513a334f
                                        
                                            GET /i18n/pixel/config.js?sdkid=CCMC903C77UB4C8P4F80&hostname=seguro.lojasmagazinedigital.com HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209251230211153C05FE5B346984730
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad27048279063ba8b77d9e905a6e278ebee150eb20d8e1ac0906a7b2fede9afeb749b82ac88b38311480a2f7c4ec8c69067ba5cae211ad6349c26d3e94fed4cb7c78c
content-encoding: gzip
content-length: 354
x-origin-response-time: 8,23.217.116.247
x-akamai-request-id: 3fde2b37.2f42f1b9
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
set-cookie: _ttp=2FGCR2DF97DZgplPQhi3bxsOZ5B; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-217-116-247.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=8, inner; dur=3
x-parent-response-time: 109,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   354
Md5:    4f8596cea63de96f108bd2bb54d8be54
Sha1:   3470369e610eda926d840ff8189dd783605faee2
Sha256: 84bb7ad97481fcbc1797b2c0e54d40e68adbd1803ad0d0c7922b985909f3e038
                                        
                                            GET /i18n/pixel/config.js?sdkid=CCMBBHRC77UE78HT46EG&hostname=seguro.lojasmagazinedigital.com HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20220925123021E2FE9A15350557A039C3
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923ccc0cfca4c18b381ffab1c2c72f285c33f000f245f2853a0d40e08aef8ad1fae6ee3536f3ae5de8614941df15a2769163925bb448bc8f7409c51811b2f9376a1d1
content-encoding: gzip
content-length: 355
x-origin-response-time: 22,23.36.66.41
x-akamai-request-id: 26a036bb.2f42f1b1
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
set-cookie: _ttp=2FGCQylLkIP6ugEYH3kgbQzBx6p; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-36-66-41.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=98, origin; dur=22, inner; dur=3
x-parent-response-time: 120,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   355
Md5:    3cb2b0ef3e7e60f8381b99f1bdbc562b
Sha1:   b8df7a18cb3c59dc5cfb84807436e0d1018aa5bd
Sha256: 84bb86e737a40406a027cec1cf9ebb3902b2811b8e853a7eb8324370b59870d7
                                        
                                            GET /i18n/pixel/config.js?sdkid=CCMD5QJC77UB1O51GNH0&hostname=seguro.lojasmagazinedigital.com HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20220925123021EF4ADDC98A05F088447F
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad2702347aaf72b2e05b3fa450b75e4ea0e0c9abc0d78c9bab198580e0c8e7556342f3cc4b1457fb070062a53e4a0b3a6069ef51b5e18eb98b545e1cb3334f3f365c4
content-encoding: gzip
content-length: 358
x-origin-response-time: 6,23.217.116.142
x-akamai-request-id: 7e80916d.2f42f1d4
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
set-cookie: _ttp=2FGCR2ZyfEnjKgBm8j9JzfIYYj8; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-217-116-142.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=100, origin; dur=6, inner; dur=4
x-parent-response-time: 106,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   358
Md5:    e1724313f9a38ebe178b4ed0318b9f97
Sha1:   cb2888212d89c71027c4b90d62d8d4711d1842d4
Sha256: c606707fef3feb15d192c50dc4da31ffd05f2cbc4fc5a5875bc885c1b4b883e8
                                        
                                            GET /i18n/pixel/config.js?sdkid=CCMCQHBC77U2DQ2A81JG&hostname=seguro.lojasmagazinedigital.com HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209251230211CF8A815BB3B97CB49EF
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60e61c37bdca6ced69b9e47e07af19d536947e4522b585c7767cd5b3f83ff4c6fc120f584c70d14beb49c7c2fea69be09bef34e78543fe930e1fc9bff6e399af2813cc32fb68235476247aed96b2aedd76
content-encoding: gzip
content-length: 355
x-origin-response-time: 7,23.48.36.231
x-akamai-request-id: 3f8764a1.2f42f1c3
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
set-cookie: _ttp=2FGCR3IYCDq4ZaqUoSnFP93675K; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-48-36-231.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=7, inner; dur=3
x-parent-response-time: 111,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   355
Md5:    026bd1eff2ada9415b44270460f91a64
Sha1:   a116ef68473429571afbc81971efa87c54993655
Sha256: eabbee024cfe9ea4e866ab3310e7159d8e359963f612e271877aec2f1a1ed3e1
                                        
                                            GET /i18n/pixel/config.js?sdkid=CCMDDL3C77UEI4U7VNDG&hostname=seguro.lojasmagazinedigital.com HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20220925123021D16AD87D4E068C8F67A1
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923cc8ff87cc473534874c09abb372b6a59b6a8ac23ffee152bdc57226fc58cb2ab5204ca96eed03d272315a802e401a5769dc3e82c41c29cbad4d08ef4e7e5cf5f32
content-encoding: gzip
content-length: 355
x-origin-response-time: 5,23.36.66.10
x-akamai-request-id: 31e2018f.2f42f1dd
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
set-cookie: _ttp=2FGCQxCRTJFFcB8FvUeqAbdnrCD; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-36-66-10.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=5, inner; dur=3
x-parent-response-time: 106,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   355
Md5:    6cb268c32c766f697edccaafe9c638e8
Sha1:   e1caf39986c3f82c6c65f2f65787676e07695895
Sha256: c94fa9cc8bf570b96a360a97460219572378b9d7974753bf37e1f20d7b8a62f7
                                        
                                            GET /i18n/pixel/events.js?sdkid=CCMEDK3C77U9QMO0QOFG&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20220925123020F5C6B872F98FC5925D34
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923cc0bb69677cdc4451348764fe2f9390d9a0a89389be7e723af4ecb8d495f4cf482d9c4ff91960e0c62c01c5ee6552f417ae9a8cffd2c30411809fad57f9bbde687
content-encoding: gzip
x-origin-response-time: 11,23.36.66.41
x-akamai-request-id: 26a03e96.2f42f007
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-36-66-41.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=11, inner; dur=2
x-parent-response-time: 115,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65467)
Size:   56408
Md5:    c473f409d593a642d1e3b8cbd05b98ae
Sha1:   14f7bcc0fda1e17f026fdbc58a372783116c8ed0
Sha256: e50e9b1423498aaf1cad33b931f9243fa05c4da12b92cfc12266e29a8228b50e
                                        
                                            GET /svg/card-diners.svg HTTP/1.1 
Host: github.bubbstore.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.149.218
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-99b"
expires: Sun, 25 Sep 2022 12:40:20 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 0800:969A:E15464:E843D6:632E163E
via: 1.1 varnish
x-served-by: cache-bma1681-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663964735.863914,VS0,VE114
vary: Accept-Encoding
x-fastly-request-id: 6e88c662b36369d30e77438d2b060be3751497bc
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9CcFV0FeuJuDzAU%2B26nLMfzmf%2BX%2B%2BE0r9ZSBzNT4fGKRYgsKERASk13EoGUlHKYa1ygUqo1X%2Bm4KF9XtUsT%2BzxZcTiRYfHjCjbcCvrOsxJt4a4vRpunSxCbNRHFryWLHinBNr7hvuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7503c540b939b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1368)
Size:   57393
Md5:    7ba07ec7b928700eca685a6796a423ef
Sha1:   0762af7498269932f83923b211356e46876c9ab1
Sha256: 2f69aa0caa0ee831320f4e5b45d3a96ecee2f33a6093b70922f8429a57d44c0a
                                        
                                            GET /i18n/pixel/config.js?sdkid=CCMEDK3C77U9QMO0QOFG&hostname=seguro.lojasmagazinedigital.com HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209251230210EEF577665499493DD4A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad270ccafff3532de4ee8defeebd77c1a8473013e04ecde5ba86001587a5892025f3fecfc0bbc86302715eb8b249ef1040046bdf09dc7b5ed3910db569ccf404c2622
content-encoding: gzip
content-length: 355
x-origin-response-time: 19,23.217.116.151
x-akamai-request-id: 39b68867.2f42f1fa
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
set-cookie: _ttp=2FGCQyDTAPxNsBijXnCaTlW5jyo; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-217-116-151.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=266, origin; dur=18, inner; dur=3
x-parent-response-time: 283,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   355
Md5:    a46cd91bcec4b79a3c1142d6f93ceb64
Sha1:   ca6e49c4434668811cc1a42dd9af25f6c8bd1bde
Sha256: 874f14a175fa50c35d03fd4a2af5d006c5ec2418956c1039913edf172c73d547
                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 893
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR2DF97DZgplPQhi3bxsOZ5B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022092512302182E7F8B9BBC344B85F4C
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad2701f7de3c554db532de9fe313f09a1305bc8266f7bdfd2c239f50fa9ced9de32c65c317fe1aef2e9571fc388641ae337d0d94c8597c3fd89538acbe3ebee046a6a
x-origin-response-time: 15,23.217.116.223
x-akamai-request-id: 76db0205.2f42f315
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-223.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=106, origin; dur=15, inner; dur=12
x-parent-response-time: 117,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1067
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR2DF97DZgplPQhi3bxsOZ5B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209251230211A46BC8FAA66ABC766E9
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad270d1ce35e9b646a2b49bffb05730b146275ead7144f32c8ea7a318f6b362910109ce4277dccb08b4b21ed36287363853eeed3ad78aa1483cbb7a65790973f97858
x-origin-response-time: 28,23.217.116.228
x-akamai-request-id: 796ba1b2.2f42f31e
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-228.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=28, inner; dur=13
x-parent-response-time: 128,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1067
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCQyjMvDqb53caKeok3G8CtE3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220925123021919DE9690FF0F28E367C
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60e61c37bdca6ced69b9e47e07af19d5369dc059d2f324080ec91377435f63f7376bae6a94701cee94a754e2a52f48c2daadaf8bc810cbfb53ac10fddfc7ae982b333ad2294410681192add0d8487862fd
x-origin-response-time: 14,23.48.36.231
x-akamai-request-id: 3f87660e.2f42f328
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-48-36-231.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=109, origin; dur=14, inner; dur=12
x-parent-response-time: 119,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 893
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCQyjMvDqb53caKeok3G8CtE3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209251230211153C05FE5B34698474E
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad27048279063ba8b77d9e905a6e278ebee15c5bbf0e1808ca1c6f45158bf95219efcae5f0efbe91da723c7ce1fd06d349ee05ef8b2130fb4fe2f38277e1f91a45179
x-origin-response-time: 73,23.217.116.247
x-akamai-request-id: 3fde2ce6.2f42f322
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-247.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=105, origin; dur=73, inner; dur=60
x-parent-response-time: 175,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            GET /i18n/pixel/events.js?sdkid=CCMBBHRC77UE78HT46EG&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209251230206147755E0E3F4A967EBF
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60e61c37bdca6ced69b9e47e07af19d536947e4522b585c7767cd5b3f83ff4c6fc7c50a69f3dc7d8384257077b3d2256aa318131659ad924442d50e5b9270f9a390ecfdf274d077635b6647d92c8ff5504
content-encoding: gzip
x-origin-response-time: 14,23.48.36.231
x-akamai-request-id: 3f87379b.2f42f019
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-48-36-231.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=14, inner; dur=2
x-parent-response-time: 118,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65467)
Size:   56180
Md5:    7660d2b87d1d2d130ecf5edec99c3457
Sha1:   cbc5331296aba62aa1adaa3c93dbb2569a582dd3
Sha256: 78908b1f8ec2f43c1a61f33e2c0acf4e3641f479a4efd84d6d5233ccb0f7e208
                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 893
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR3kPRwXOQmrDpTkPtOqpRd6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209251230217A4B9B9F8017288EA6D0
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad2700eaf0dc2e3e0cc4c0d283bee186f01c622762d3f943797a2b321f6306843c33c864c177cd272d3a60a3d4571d045c12c8de60854b5042410801797a40fab2ee0
x-origin-response-time: 15,23.217.116.207
x-akamai-request-id: 7a985f1f.2f42f378
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-207.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=109, origin; dur=15, inner; dur=12
x-parent-response-time: 116,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1067
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR3kPRwXOQmrDpTkPtOqpRd6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209251230217208DB30016CC3957314
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923cc8caabc2e169b9531f287983d6d3a94501768522367b1f965905b56eb7c46ec06622be2b0857cca446640e7d125af9f80640ed261c326c1f1f6c81aff9a68f786
x-origin-response-time: 19,23.36.66.39
x-akamai-request-id: 274874b5.2f42f372
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-36-66-39.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=111, origin; dur=19, inner; dur=16
x-parent-response-time: 122,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 893
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR3kPRwXOQmrDpTkPtOqpRd6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209251230212E9D8B6A80E53699BFC8
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923cccff44a9f32ca87ec196128ecb45047427e36808962b825a55ec1b1b7f0cc584528bb6a44f9f095153b7390a079f3cded9c88605f6c4f15d114f56130601c680e
x-origin-response-time: 15,23.36.66.5
x-akamai-request-id: 214579a1.2f42f386
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-36-66-5.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=113, origin; dur=15, inner; dur=12
x-parent-response-time: 114,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 893
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR3kPRwXOQmrDpTkPtOqpRd6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022092512302135459B5E8CC0C7928BA6
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923ccfc1d97545480579eee860b59c7b19c5736e34611902cc7543319bd624e8f01ea54c2d71ec45e8727abd69ea356ecb4482a42778b1e93918efe7ae1231635b891
x-origin-response-time: 69,23.36.66.38
x-akamai-request-id: 3aa97792.2f42f36d
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-36-66-38.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=192, origin; dur=69, inner; dur=54
x-parent-response-time: 253,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 893
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR3IYCDq4ZaqUoSnFP93675K
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209251230216539759D36D12D9FADE2
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad270e10629a1638b5e31f7bfdd0551429216e3a426de53f7a4200a9ab6beb85be6ce51cce82205e4cee618c79b5c8c77865957315e05d8a77b3fe4724ff55cbbbb55
x-origin-response-time: 20,23.217.116.165
x-akamai-request-id: 7609c1ef.2f42f32a
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-165.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=315, origin; dur=20, inner; dur=16
x-parent-response-time: 326,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1067
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR3IYCDq4ZaqUoSnFP93675K
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220925123021D251644F7C06F1929347
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad270b292d817df9b2e78ab953c32acf5689a021be520face1cea54d915861b605abcf39fcd407b9f6f1a43bcef03eec02f5edc5b6ee4ca41b6892c8f1c53025cdc8d
x-origin-response-time: 19,23.217.116.167
x-akamai-request-id: 14beb596.2f42f335
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-167.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=313, origin; dur=19, inner; dur=12
x-parent-response-time: 325,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1067
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR0hLiylTslfHo2sI1uJzVAE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220925123021091ABD6231F57EC59008
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad270da823dc8577c1fdf78dcc484dfb9900a0c548c286029c6d144d290b154d8b71cf80570f441a9a9620f7683ffde5f9f77ec4f112116102bf9f5ac938034703d94
x-origin-response-time: 19,23.217.116.188
x-akamai-request-id: 36e7d505.2f42f356
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-188.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=308, origin; dur=19, inner; dur=17
x-parent-response-time: 318,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1067
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR2ZyfEnjKgBm8j9JzfIYYj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220925123021D7F8E853E9AA9690731C
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad270ac34626020ee3eb543d20fd76536e759d2517cc5b68180e0aa5cbef2734c818cb8df643ef9f33fac3fa2934b5a4a27e097d9c8f3a510477061c7eba5e1558c04
x-origin-response-time: 27,23.217.116.181
x-akamai-request-id: 68ca8ccf.2f42f345
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-181.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=312, origin; dur=27, inner; dur=15
x-parent-response-time: 329,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 893
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCQxCRTJFFcB8FvUeqAbdnrCD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220925123021FEE52723D7E25796D1F8
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad270a131fd43f0c189292e7a24d14dfe546428e31c820995419442b7251885fe419eb57ddf2a414edcff390953ba708607021330bd4cde6edce7c39e74a41d2e78a3
x-origin-response-time: 22,23.217.116.183
x-akamai-request-id: 3da316ab.2f42f348
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-183.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=314, origin; dur=22, inner; dur=11
x-parent-response-time: 325,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1067
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCQyDTAPxNsBijXnCaTlW5jyo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209251230217D37CE8D71C814B66116
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923ccbaec62bb4e20a586f8434181fed5b588cc3f7bf8ebd87f3ed8c58a5ab7b0650bd29f1d8bdfb2a832eef9e6286768778558987ae5a3638f4d98b1246477538a04
x-origin-response-time: 15,23.36.66.39
x-akamai-request-id: 274876e5.2f42f482
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-36-66-39.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=108, origin; dur=15, inner; dur=12
x-parent-response-time: 119,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 07:11:34 GMT
expires: Fri, 22 Sep 2023 07:11:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
age: 278327
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (826)
Size:   158248
Md5:    db1b5789e9915e9c82f5df92e5982980
Sha1:   2e193e502995501c85f45fd89d9f83707a7f9573
Sha256: db9c82b18117d7cff0f674de758f5bbb39bc6dee969cee679c741090968b9206
                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 893
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCQyrjy2sbzMGMXFx5wnNykeG
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220925123021760ED6AE06201695ACDE
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad2701b1a1ae68b252ce20655c61cafe4fc717307d5214386128e7c4e5e992d6df2d26b82b70d5c0106412723efdd6f9f1daff7e8698935997920c3493b8a3b7dd356
x-origin-response-time: 19,23.217.116.197
x-akamai-request-id: 294723a8.2f42f35f
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-197.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=314, origin; dur=19, inner; dur=13
x-parent-response-time: 323,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 893
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCQzOyHnbd4N16cSe57QJDYMu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209251230217919F14FB111B895CF0D
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923cccf23214f002fc754dd70373abba84350f5695ef5933ae84c2c4d5b3c959ed1a2a7090ca355f767e475e3aec2dac48759eaab75e264676ae9b5aa5f9953a63cec
x-origin-response-time: 54,23.36.66.28
x-akamai-request-id: 39b6b8e5.2f42f451
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-36-66-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=105, origin; dur=54, inner; dur=51
x-parent-response-time: 153,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 893
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCQyDTAPxNsBijXnCaTlW5jyo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220925123021E2FE9A15350557A03A0E
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923ccc0cfca4c18b381ffab1c2c72f285c33fa8e9343ebaacd82217a80548515e2051f2e039d3b3e81f2d0c743f762cc0532fdf679bb0beeaa4188e8144dd78d1636e
x-origin-response-time: 18,23.36.66.41
x-akamai-request-id: 26a044d6.2f42f489
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-36-66-41.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=109, origin; dur=18, inner; dur=14
x-parent-response-time: 123,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 893
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR2ZyfEnjKgBm8j9JzfIYYj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220925123021F67038A853B58CBA81F8
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad2700ff3b410f6ce24087af573e205560109a1bbcbecee24176b7a66d977b71bbfeeb9f5a2cc50e3cb700fae3c680237c5a062364ba5fbeaa06bf6c740298d405ea6
x-origin-response-time: 47,23.217.116.173
x-akamai-request-id: 2e43646a.2f42f33f
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-173.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=316, origin; dur=47, inner; dur=15
x-parent-response-time: 356,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1067
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCQyDTAPxNsBijXnCaTlW5jyo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220925123021CC8F360BBB230E9569AD
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad2701f7de3c554db532de9fe313f09a1305bdc635aa688e531db94cfa6c6d91b4b507735190d958d2cad9d33afa709c91b0b3fe5be65be5e07988e6cdfc248202cbb
x-origin-response-time: 21,23.217.116.223
x-akamai-request-id: 76db0532.2f42f48a
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-223.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=110, origin; dur=21, inner; dur=15
x-parent-response-time: 124,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1067
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR3kPRwXOQmrDpTkPtOqpRd6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209251230213F2C9CBA6924A1910105
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad270201c8b26cad2a04d08e0f4bbae3fce6875ded0ae68adc9228f5c1f38d63396a5ea6fe926b5826ea91c1f6ce155540ff1c4a80098222d2ac3d8119500dc45369a
x-origin-response-time: 22,23.217.116.198
x-akamai-request-id: 2d35cabc.2f42f369
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-198.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=327, origin; dur=22, inner; dur=11
x-parent-response-time: 339,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1067
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCR3kPRwXOQmrDpTkPtOqpRd6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209251230213D7FD44D85B1B3BBCE50
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad2700d6e39eb77d9e9c9906ce16e5150d98f58155288de13423f24fc4d35760e48d882f79713c1d15840daa614e75cc2950cd84bdf81a03240cef53f4a3d5384475d
x-origin-response-time: 18,23.217.116.206
x-akamai-request-id: 811f3e54.2f42f390
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-217-116-206.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=309, origin; dur=18, inner; dur=11
x-parent-response-time: 316,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4801
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 12:30:21 GMT
Last-Modified: Sun, 25 Sep 2022 11:10:20 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1067
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Cookie: _ttp=2FGCQzOyHnbd4N16cSe57QJDYMu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220925123021BB62292D5F99449B110C
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923cc2c9062cf7d6ad0b96a47859a49792c4b6da049a41a5d8136ec31bcebbf28100eaf9d1a149349e712451a9754a1656b6b855a74730b7b604eeddf232efbd55385
x-origin-response-time: 31,23.36.66.34
x-akamai-request-id: 2ca7e308.2f42f45a
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-36-66-34.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=192, origin; dur=31, inner; dur=10
x-parent-response-time: 219,23.36.79.30
X-Firefox-Spdy: h2

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sun, 25 Sep 2022 10:41:09 GMT
expires: Sun, 25 Sep 2022 12:41:09 GMT
cache-control: public, max-age=7200
age: 6552
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: zDlPjYnGEk+pCs+08hF+8LdeTCZ/eR0zq+sf9Zyw1zL3srvw4jl64fTCzxHihBq8APWg6n5c42zwG4tGd/9wTg==
content-length: 26840
x-fb-trip-id: 1679558926
date: Sun, 25 Sep 2022 12:30:21 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   26840
Md5:    e1327a02d76346c7e23d114e4e508b30
Sha1:   195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
Sha256: 331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
                                        
                                            GET /plugins/ua/ecommerce.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 738
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 11:49:49 GMT
expires: Sun, 25 Sep 2022 12:49:49 GMT
cache-control: public, max-age=3600
age: 2432
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (745)
Size:   738
Md5:    f804aa0b574b678d24df5281ed71a61d
Sha1:   2fc02211b273e1ab4d362df05d592f2d822c2add
Sha256: 1d2d8c7f3502f4459478fe8c7495a27464d6f178b1d564333a107d310c0ea74d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4801
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 12:30:21 GMT
Last-Modified: Sun, 25 Sep 2022 11:10:20 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /j/collect?v=1&_v=j97&a=1652880603&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D6a742020-3cb8-11ed-b788-ebcc7c38ef3a&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Mercad%C3%A3o%20Online&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=2005777134&gjid=671733193&cid=1879833650.1664109020&tid=UA-45745009-5&_gid=1118111003.1664109020&_r=1&_slc=1&z=31657337 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://seguro.lojasmagazinedigital.com
date: Sun, 25 Sep 2022 12:30:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    9e92e190700c1af4539b40c2171320a9
Sha1:   209bcdb79e6067b51091ce8586d4b977f25b67d8
Sha256: aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?v=1&_v=j97&a=1652880603&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D6a742020-3cb8-11ed-b788-ebcc7c38ef3a&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Mercad%C3%A3o%20Online&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=KGDAAAATAAAAAC~&jid=1138737690&gjid=159071796&cid=1879833650.1664109020&tid=UA-45745009-32&_gid=1118111003.1664109020&_r=1&_slc=1&z=781767495 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://seguro.lojasmagazinedigital.com
date: Sun, 25 Sep 2022 12:30:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    38684612f0c6bb6dfa16da92f4a6878f
Sha1:   6fe62d0dd7db314b7f9bb945672f078e01d27f0f
Sha256: a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
                                        
                                            POST /e/t HTTP/1.1 
Host: seguro.lojasmagazinedigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImViY2QwMjBmYmE4OGRjYWMiLCJ0ciI6IjAyMDlhMmVhNWEwNjZmZmE4NGRkMzdlMmI2NjZmNmJiIiwidGkiOjE2NjQxMDkwMTk0Nzl9fQ==
traceparent: 00-0209a2ea5a066ffa84dd37e2b666f6bb-ebcd020fba88dcac-01
tracestate: 2935249@nr=0-1-2935249-1134170823-ebcd020fba88dcac----1664109019479
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 365
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=6a742020-3cb8-11ed-b788-ebcc7c38ef3a
Cookie: XSRF-TOKEN=eyJpdiI6IlVuNXBESlU1U0ZcL21PU05OempTMzRBPT0iLCJ2YWx1ZSI6ImZ6bHFlb1U4RDNlOEJ4QkxnUnFNdDlIZE94NmV0R0psT29LUXFNNENYdDZpRmtoZlFqODRyVHZpUlF0OW1wUlV2SjMrXC92T3pJbTVrQ1VraFRITWhzQT09IiwibWFjIjoiYzdkZWVhZDBhNTY5OTg1OGY2ZDViMGM5MjAxOWQ5MmRlNjg2MzkyZjVkMzk0ZDIzNzAzYjdiM2JlMDNhZTlmMSJ9; bubbstore_checkout=eyJpdiI6IkJrXC9Qd0dFTk8ydU1mRHBtTXROcEt3PT0iLCJ2YWx1ZSI6InN0VkpDTHJlbmxoWXpORG1zM29MZGo4SmJ4V2JvZjg0bGdMTEk4dmQ3UGhTZjRzZ1I0R1pMRTFMeFZGVjh3WmNEQ2YzMGhUOEM4ajgwZzFySDJqeFB3PT0iLCJtYWMiOiJkNGM1MTcyMDdhMzMzOTVhN2I3YTliZTgyNzdlZDJiYjIxNjU3NDNkZTczMjAxYWI2ODFhMGIxMGMzY2Q3OGIwIn0%3D; digitalmagazine_cart=eyJpdiI6ImtcL1BIQ3F0ZVZ1aGtmN3NqUmQrZjFBPT0iLCJ2YWx1ZSI6ImZvbW5kRlNTNXIrZW1vaVVabkRYRkh6OTFYMEtGRERVelc1YjB6bWgwbENXVlRcL3p2bWVqUTFIMzBRS25iQWM0c2pxRzVcL3ZWdG1uQ2FLOVlBTExoVmc9PSIsIm1hYyI6ImMwMjdjZWI0ZDljN2NmNWY1YjI0YzZiYmFhYzU1NjhlMzg5ODJiN2NkZWNlMDhjZDQ4MmRmZDVmNzNhZTUzMWQifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         170.82.174.30
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sun, 25 Sep 2022 12:30:21 GMT
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjVOWXYxMk1JVFhXTUhpNTN6REwzZGc9PSIsInZhbHVlIjoiYWprM09kN2JlVjVNTXU2bFk2WUNNekFyaG84alBVOUtoeFl4YzBlWmtRT3pNNHVYYlNNcEJUcWU4eG1EajVYVzU1ZmtNTVdMUlVcL2RqNEd1UnJxVmNRPT0iLCJtYWMiOiI1MmI0YzJhOWQ2Y2YwOGI2YTdlZTI4ODM0MzZmNjI0NjNhNWJjMzdhMGNmZmY5NDU4NWRmOTk0NTRkMmVkNDBiIn0%3D; expires=Sun, 25-Sep-2022 15:30:21 GMT; Max-Age=10800; path=/ bubbstore_checkout=eyJpdiI6InBLQW05dUY0WTJ5SytYRGpJS3BqQ0E9PSIsInZhbHVlIjoiN3IwQWFpUGtMeGNcL1lsWTBnclwvdmtEaTYrNWxqVnFjTTVrR0F5cHBHSUhMXC9qbUZRM29PODZVak1ORFhOdklXM2hWSG91WEtyVENlMWt2bER6QzFBZVE9PSIsIm1hYyI6ImQ0Njg0YTM3MWEwMGJkOTNmNTFkOGVmMjdjNzhlNDFkZmEwZmJlYWZlZjRiZWJlOWUyNWVmODU5ODE0OGQxZTIifQ%3D%3D; expires=Sun, 25-Sep-2022 15:30:21 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (34974)
Size:   22187
Md5:    5034b4811749284cb6bdcce46e095f6e
Sha1:   3faaff3ac79cdf8a1fc241689f1753dc7b7df2e9
Sha256: 27c3528f9e6382c67be484795c8d66260932e1ec45c6b9e457b2e58b89dc7bad

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-45745009-5&cid=1879833650.1664109020&jid=2005777134&gjid=671733193&_gid=1118111003.1664109020&_u=IEDAAAASAAAAAC~&z=688218079 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         64.233.162.157
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://seguro.lojasmagazinedigital.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 25 Sep 2022 12:30:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   85833
Md5:    a0bde1816460fe3e37ccd6470694d9c9
Sha1:   dfbfffe27a4403c8072dc217b6b289f291c553ea
Sha256: 763d8a54cab7f2ee78b085b704da5cdc1172f9f4c87cfa6014502d09cd0f96bf
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 25 Sep 2022 12:30:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /tr/?id=1779630119052433&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D6a742020-3cb8-11ed-b788-ebcc7c38ef3a&rl=&if=false&ts=1664109021292&cd[content_ids]=%5B%227857130012896%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664109021291.744131745&it=1664109020473&coo=false&eid=PageView_lae6flct0&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 12:30:22 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   171665
Md5:    a46e1533e4dfb76125a1f9b1449c4099
Sha1:   bcf35afb5205f5fe86457bc46c29d5125d5de786
Sha256: 0cf671b894d485cf1ee81cc145ec9f848bcee064bdd5882b6fd80acea498d879
                                        
                                            GET /tr/?id=5022391064533067&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D6a742020-3cb8-11ed-b788-ebcc7c38ef3a&rl=&if=false&ts=1664109021311&cd[content_ids]=%5B%227857130012896%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664109021291.744131745&it=1664109020473&coo=false&eid=AddPaymentInfo_hjedgsqb6&tm=1&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 12:30:22 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   85833
Md5:    0cb03b0668cec89e4b65e0ab0dbb82f9
Sha1:   6e17f92d003249bbc65514e49c6a3e037a15a62c
Sha256: f317b971c984d59bb5f2d7eae6b08444463591c7bc97d41a7d5785d9cd628266
                                        
                                            GET /i18n/pixel/events.js?sdkid=CCMCIF3C77UB1O51GMPG&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209251230207542CBBD7A63A19C1857
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad2700eaf0dc2e3e0cc4c0d283bee186f01c653925cd5924ae7cc6ed5241dfa7e19b73253702528c33f4a97e42fba4365ac5dc72b73ebd343681330a9f164eef27ff9
content-encoding: gzip
x-origin-response-time: 8,23.217.116.207
x-akamai-request-id: 7a98599c.2f42efe4
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-217-116-207.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=110, origin; dur=8, inner; dur=3
x-parent-response-time: 118,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65467)
Size:   56089
Md5:    f05b1bbbdeca5d386afb8e7b909e5775
Sha1:   dd6bbbadd5a26019fcce25132f6ff660521079df
Sha256: a8b918b7146d0c6c03d49cb2e140ddb59d8af32bdd54b615e95d440b23a04faa
                                        
                                            GET /tr/?id=5022391064533067&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D6a742020-3cb8-11ed-b788-ebcc7c38ef3a&rl=&if=false&ts=1664109021303&cd[content_ids]=%5B%227857130012896%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664109021291.744131745&it=1664109020473&coo=false&eid=PageView_lae6flct0&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 12:30:22 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /i18n/pixel/identify.js HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209251230218238E3B12498AC982F46
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923ccbaec62bb4e20a586f8434181fed5b58843e1084ea358d628b821b129b48b20543a217cdae67d464cb10a06ff4a9bc416e28ff0f54a6f22ca7f2dc6dca60b76c7
content-encoding: gzip
x-origin-response-time: 14,23.36.66.39
x-akamai-request-id: 274872f3.2f42f18c
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-36-66-39.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=14, inner; dur=3
x-parent-response-time: 118,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   30735
Md5:    b281d7c5c8094f36adf951e1dded3b06
Sha1:   c3d0c8a67f4064f8d5e8d7fd4b6310f6032cdbf7
Sha256: ddcc98bc61a3218da196ebf8279e865f480af0062036231835c1556fd74051a6
                                        
                                            GET /tr/?id=940557220191489&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D6a742020-3cb8-11ed-b788-ebcc7c38ef3a&rl=&if=false&ts=1664109021307&cd[content_ids]=%5B%227857130012896%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664109021291.744131745&it=1664109020473&coo=false&eid=AddPaymentInfo_10ypiks4t&tm=1&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 12:30:22 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /tr/?id=1025528038127175&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D6a742020-3cb8-11ed-b788-ebcc7c38ef3a&rl=&if=false&ts=1664109021309&cd[content_ids]=%5B%227857130012896%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664109021291.744131745&it=1664109020473&coo=false&eid=AddPaymentInfo_tz3zrohwr&tm=1&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 12:30:22 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /tr/?id=2024311724429199&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D6a742020-3cb8-11ed-b788-ebcc7c38ef3a&rl=&if=false&ts=1664109021310&cd[content_ids]=%5B%227857130012896%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664109021291.744131745&it=1664109020473&coo=false&eid=AddPaymentInfo_cdm2ryukf&tm=1&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 12:30:22 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /tr/?id=2024311724429199&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D6a742020-3cb8-11ed-b788-ebcc7c38ef3a&rl=&if=false&ts=1664109021302&cd[content_ids]=%5B%227857130012896%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664109021291.744131745&it=1664109020473&coo=false&eid=PageView_lae6flct0&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 12:30:22 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   85832
Md5:    d2ed18d73492dce508132bf3e3eca537
Sha1:   c98b2a8c6e52806e659f9398ede34997d910cd2b
Sha256: 7bf7b2eb3995c978668f1723dd4ec4b9fb31359e8e6f09047011b112ae7d8b8d
                                        
                                            GET /tr/?id=1025528038127175&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D6a742020-3cb8-11ed-b788-ebcc7c38ef3a&rl=&if=false&ts=1664109021298&cd[content_ids]=%5B%227857130012896%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664109021291.744131745&it=1664109020473&coo=false&eid=PageView_lae6flct0&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 12:30:22 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /i18n/pixel/events.js?sdkid=CCMC903C77UB4C8P4F80&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 2022092512302079631B5FCAFC4C975B0E
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923cccff44a9f32ca87ec196128ecb45047427e36808962b825a55ec1b1b7f0cc58450eed0c0122058c8054ac1f93e5f7b69caa581e59654fb8c8d07d2fb8bd54a9d7
content-encoding: gzip
x-origin-response-time: 7,23.36.66.5
x-akamai-request-id: 21457441.2f42f01c
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-36-66-5.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=107, origin; dur=7, inner; dur=3
x-parent-response-time: 114,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   382195
Md5:    67d908184eb9c17e97064f852b42927b
Sha1:   142e9aa68f145430c4354307f1bb359e24c6c4a5
Sha256: fe7c4d4d9015911cc9c9cf589dafd2d9c059af321773efc2c303189498fd3f04
                                        
                                            GET /nr-spa-1216.min.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sun, 25 Sep 2022 12:30:22 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 3002
x-timer: S1664109023.907636,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32010)
Size:   18216
Md5:    6561a2403142205f966207d61576f1a6
Sha1:   1310e72f494e12ab63a4280fc1600a2c89dc9bb8
Sha256: 0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5759
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 12:30:23 GMT
Last-Modified: Sun, 25 Sep 2022 10:54:24 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=5687&ck=1&ref=https://seguro.lojasmagazinedigital.com/checkout/payment&ap=185&be=2803&fe=5548&dc=3606&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664109015855,%22n%22:0,%22f%22:1938,%22dn%22:1938,%22dne%22:1938,%22c%22:1938,%22s%22:1938,%22ce%22:1938,%22rq%22:1941,%22rp%22:2766,%22rpe%22:2766,%22dl%22:2786,%22di%22:3499,%22ds%22:3605,%22de%22:3671,%22dc%22:5547,%22l%22:5547,%22le%22:5550%7D,%22navigation%22:%7B%7D%7D&fcp=3662&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Sun, 25 Sep 2022 12:30:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7503c552bbc50b59-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=fc7de0db8a9a3986; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   72
Md5:    107d93e382e2c9b00fbf9fb0edc65d86
Sha1:   77e750e3ebf9706f4f6dd253785602d70be17c6c
Sha256: a1ee50b689ea433a0acdccbf4ee4629e9ea3f9c4bcdd21effb334359a2f9e937
                                        
                                            POST /events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=6163&ck=1&ref=https://seguro.lojasmagazinedigital.com/checkout/payment HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 617
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 25 Sep 2022 12:30:24 GMT
Content-Length: 24
Connection: keep-alive
CF-Ray: 7503c554ad8b0b59-OSL
Access-Control-Allow-Origin: https://seguro.lojasmagazinedigital.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   24
Md5:    bc32ed98d624acb4008f986349a20d26
Sha1:   2d3df8c11d2168ce2c27e0937421d11d85016361
Sha256: 0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
                                        
                                            GET /cart/recomm HTTP/1.1 
Host: seguro.lojasmagazinedigital.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImYzMWNlMzBmYTgzM2Y5MDIiLCJ0ciI6ImFhMjdmMDQyOWVjYzc2ODU0Y2NmYzk2NTVhZTEwNWE3IiwidGkiOjE2NjQxMDkwMTk0NzB9fQ==
traceparent: 00-aa27f0429ecc76854ccfc9655ae105a7-f31ce30fa833f902-01
tracestate: 2935249@nr=0-1-2935249-1134170823-f31ce30fa833f902----1664109019470
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=6a742020-3cb8-11ed-b788-ebcc7c38ef3a
Cookie: XSRF-TOKEN=eyJpdiI6IlVuNXBESlU1U0ZcL21PU05OempTMzRBPT0iLCJ2YWx1ZSI6ImZ6bHFlb1U4RDNlOEJ4QkxnUnFNdDlIZE94NmV0R0psT29LUXFNNENYdDZpRmtoZlFqODRyVHZpUlF0OW1wUlV2SjMrXC92T3pJbTVrQ1VraFRITWhzQT09IiwibWFjIjoiYzdkZWVhZDBhNTY5OTg1OGY2ZDViMGM5MjAxOWQ5MmRlNjg2MzkyZjVkMzk0ZDIzNzAzYjdiM2JlMDNhZTlmMSJ9; bubbstore_checkout=eyJpdiI6IkJrXC9Qd0dFTk8ydU1mRHBtTXROcEt3PT0iLCJ2YWx1ZSI6InN0VkpDTHJlbmxoWXpORG1zM29MZGo4SmJ4V2JvZjg0bGdMTEk4dmQ3UGhTZjRzZ1I0R1pMRTFMeFZGVjh3WmNEQ2YzMGhUOEM4ajgwZzFySDJqeFB3PT0iLCJtYWMiOiJkNGM1MTcyMDdhMzMzOTVhN2I3YTliZTgyNzdlZDJiYjIxNjU3NDNkZTczMjAxYWI2ODFhMGIxMGMzY2Q3OGIwIn0%3D; digitalmagazine_cart=eyJpdiI6ImtcL1BIQ3F0ZVZ1aGtmN3NqUmQrZjFBPT0iLCJ2YWx1ZSI6ImZvbW5kRlNTNXIrZW1vaVVabkRYRkh6OTFYMEtGRERVelc1YjB6bWgwbENXVlRcL3p2bWVqUTFIMzBRS25iQWM0c2pxRzVcL3ZWdG1uQ2FLOVlBTExoVmc9PSIsIm1hYyI6ImMwMjdjZWI0ZDljN2NmNWY1YjI0YzZiYmFhYzU1NjhlMzg5ODJiN2NkZWNlMDhjZDQ4MmRmZDVmNzNhZTUzMWQifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         170.82.174.30
HTTP/2 200 OK
content-type: application/json
                                        
date: Sun, 25 Sep 2022 12:30:21 GMT
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IkdkTkVUNGM5VnVEV0ZRZ3AxUjFtYkE9PSIsInZhbHVlIjoiYlZabzFcL0dqelJ2bHpqUGdreE9iRjVHZ2xab2NRa1pWS2dDYlRhcFNGYVZJMWVNTitYQ3JkdjFxVUhDNGsxTWUyMTdSSXRxNTZEM2V3dEVFMUQrNDFnPT0iLCJtYWMiOiJjOGFhZjJkZTllZTc4YzRjOTRlNjg1YWUxOGMzYjk1ZWU4YTA1ODgwY2E1ZjNlOTU1ZDM1NzEzYzRkYWZhN2ZkIn0%3D; expires=Sun, 25-Sep-2022 15:30:21 GMT; Max-Age=10800; path=/ bubbstore_checkout=eyJpdiI6IkJ2dHpiNVBqYWxcL1pBdUwwWFRVSTlnPT0iLCJ2YWx1ZSI6InhhcTRtV2ZOWjRBalwvZ216SUo3ZFN0XC9XcWpXTVNMcG1rTGxHUWdIU0kybGpRdHRJd1I2TVA5R25mK2s4TzRxMGoyTWVkbGFsaXUrRUJOMDJ4TXptRGc9PSIsIm1hYyI6IjQwOGNhYWQ2YTE1ZGI5ZDc1ZjFhYzM4MTdkYjg5OTg3YzMxMjA1NDYyMDQwODI3NGYxYmZlZDFkOWZkY2M4YTUifQ%3D%3D; expires=Sun, 25-Sep-2022 15:30:21 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFtSQhBPEFJSWAsJExoDTFZTUgBSFFIWCAYKA1IVTABNEVUAUgBUBVoOBQZXVFJSUgBESFdXXxEDPg==
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /svg/card-visa.svg HTTP/1.1 
Host: github.bubbstore.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.149.218
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-1288"
expires: Sun, 25 Sep 2022 12:40:20 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 080F:BA4A:C12DCF:C7B63A:631CED48
via: 1.1 varnish
x-served-by: cache-bma1677-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662840137.862588,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: bc9167c4d57cb1243a401a61289361b6ca04bef8
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Vg7DEPOJemPEvudLYSw7wndwDIICt98SVBExQKY86JfX%2Fh7xK%2Bj73Yl%2FdHbajOv3w6oUpzVXNHpLkjVP6TR2weVYgkGX0Nw3nvkqiYvqmLwZn%2FeI1eTkqrHH6k1Hj1IfmTcHIp1bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7503c540b93bb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /i18n/pixel/events.js?sdkid=CCMCQHBC77U2DQ2A81JG&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20220925123020262FEE94825A5CC846EB
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923cccf23214f002fc754dd70373abba84350b653a93cca54dcace026f73c10da1abbd02280642445459977dc4a1855007419f56732c1375e6a18025a2cd81c61b48e
content-encoding: gzip
x-origin-response-time: 12,23.36.66.28
x-akamai-request-id: 39b6b496.2f42f02a
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-36-66-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=96, origin; dur=12, inner; dur=4
x-parent-response-time: 108,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /svg/card-aura.svg HTTP/1.1 
Host: github.bubbstore.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.149.218
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-111a"
expires: Sun, 25 Sep 2022 12:40:20 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: B422:11A5A:557696:58A091:632E999D
via: 1.1 varnish
x-served-by: cache-bma1622-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663998366.957191,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: e9447ce22297c9d72dbc2e3ccf55aaf3fd8e3101
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KMCWhnLcsfEln7oRYozTv%2Bi9Q%2FxcJ9eSKWkxeVyg%2FVAFrrfws3ESJUfEEkpRAQ%2FRtfvfKTQiFBXSyq5J4Vo56VD5WzS4fvkxs6bnnxC8hcgOPwI4JgNVCt5HBSKBFB%2BcMWtFCSZjLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7503c540b93db4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /checkout/build/mix/assets/css/app.css?id=7364aba5f3dee28d2e44945e07923648 HTTP/1.1 
Host: awesome-assets.yampi.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.26.2.88
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
x-amz-id-2: Qj7EbVaOzs8MNzFSFYu+F7Fau6uHOEiS63He5IgdSms8LkdReTd0C8kmdRiJVRtdn4WnzUqXD+w=
x-amz-request-id: E1MMEP58KEDKHX8J
last-modified: Fri, 16 Sep 2022 12:44:10 GMT
x-amz-version-id: tDzvH5UD3dj0x1ZKqkC6HAxsINUfeKtz
etag: W/"7364aba5f3dee28d2e44945e07923648"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SkCJpqoYuhudeVq31ozBehfG93zL0UG4jh9Y4ubNiQmHwIWYADn6pkCLV2J%2Bp53in1k0bTetfnrIMgjv7GB8zwvKWSw%2Fq%2FPxSL1vjZv4B%2FEn1mfM%2FVcjZV5UhF2Zd%2F8iqOSCAzhyEU4m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7503c5407d65b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /checkout/build/mix/assets/js/app.js?id=3fe06e3b4774e1e22f744c5b2a2ca9cd HTTP/1.1 
Host: awesome-assets.yampi.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.2.88
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
x-amz-id-2: 49aS28FBIXTkl4bKE9+ha7pacAkt3+NPapOS5vMqPTKi5sJ2v0MBnHg6Lcnqo/fcOUnIIah3z3c=
x-amz-request-id: 5RVP5GJAWC4BBHRT
last-modified: Fri, 16 Sep 2022 12:44:10 GMT
x-amz-version-id: RKgRxk_0tWs0Zu8xEYsEG4VN1R862O0o
etag: W/"20baf997b7e31a089f0a9544550cf45a"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 601
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2S1dHjf3zFtTGdUg7p4QeD%2FUF%2BStL5mE5liL4fcAmuJhoWRrthgDGmm6sjqPRo4NUjouZxDxfUMgMI7I3uEDl2OflN5CdRgaGWa8HySM61OD4cIjzSCm2F9vWx%2B0S%2FdAhVm%2B4%2B0NLXxN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7503c5407d67b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /svg/card-mastercard.svg HTTP/1.1 
Host: github.bubbstore.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.149.218
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-5b3"
expires: Sun, 25 Sep 2022 12:40:20 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 0806:B85F:1B57AC3:1C37171:632E163E
via: 1.1 varnish
x-served-by: cache-bma1650-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663964735.866228,VS0,VE189
vary: Accept-Encoding
x-fastly-request-id: a75574c12ed1c2655df1b723e6ed59a44d72e3a5
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IDac1En3BG%2F%2BuXEw7MKlh9ov25ueR8W4VuTobGDI55ohBrYQWa94ExJ0GPE%2BOb%2FoeB%2BLh35vHcgrCorzrJuc282F4U0AKkdtLpWAChzcP6LEXcFlytqvRHQUW77TtIWmTDnf0iyCWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7503c540b938b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /i18n/pixel/events.js?sdkid=CCMDDL3C77UEI4U7VNDG&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 2022092512302082E7F8B9BBC344B85EFD
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6096bbf8361f002a5ac23d95c38d5ad2701f7de3c554db532de9fe313f09a1305b71f21ac46adeb8e463eb8c793a9aea4763c846668d87df8e0ac0d0822239888a50702a9d4275c803385accd10f78beca
content-encoding: gzip
x-origin-response-time: 10,23.217.116.223
x-akamai-request-id: 76dafb08.2f42efeb
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-217-116-223.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=107, origin; dur=10, inner; dur=3
x-parent-response-time: 116,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /ny1piy83dzk8g HTTP/1.1 
Host: linkcurto.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         172.67.157.46
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
                                        
date: Sun, 25 Sep 2022 12:30:18 GMT
location: https://seguro.lojasmagazinedigital.com/cart?cart_token=shopify-b26b87b7ad428885ef427109e8806bca&utm_source=SMS&utm_campaign=Carrinho Abandonado 1&forceCheckout=1&skipToCheckout=1&store_token=c465959b50f562ffa73453f817b030733f866d64&customerToken=6a742020-3cb8-11ed-b788-ebcc7c38ef3a
set-cookie: XSRF-TOKEN=eyJpdiI6IjROWmV3NGk1STdqaUh2ekJmVlVJdkE9PSIsInZhbHVlIjoiS2hiSlphZm14bUc5cnpSNk1LZjJpTGZVWHpZeVQ0WmZXVmZYR0NueDlUdS9yUkpPa2l0V3RuWndzUXJHbXlOM2ZmQzYreTR2ZFFRWjVEek9iQ1I2V2w4bU5LeDRNcGZadENaUmxsNXMybDF0QkJEM0kxY2t6K040QnovOGlUZjUiLCJtYWMiOiJlMDhjMzE1YWZjNWUxNzFmMTVjZjI0MzA3NDdhNTU4Y2RhMzg2YzE2MmRiOWNmNmFiMTRjNzVmMzZjOGQyM2Q0In0%3D; expires=Sun, 25-Sep-2022 14:30:18 GMT; Max-Age=7200; path=/; samesite=lax linkcurto_session=eyJpdiI6IkJ4TmdrK0duMDZ6K2t6RTVkY1IxOUE9PSIsInZhbHVlIjoiU3BCZjdGZGlIZzJyQUpUbE4xa1JkU1FidndEZmVUd0dSK2Mvck91VWxldDJjaS9CNGNTamtTVW9BZnJnZDQySElPM29LcGRxbEhQcUpQWTNyc1QvbmhzQkpWWUZUaDB0cmZOUGF0MnpiaEdyTDQ1T2xGWUhsSmNDU1JHc1A2RVEiLCJtYWMiOiI1ZjkzZmQ5OTdlZTE5ZGI2NGJhNTJkYjM3ODNhOTQ0ODU3NDEzNjNlZWVhNWYxMmEzM2E4Yjk1NTFmYzBhNTEwIn0%3D; expires=Sun, 25-Sep-2022 14:30:18 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VJ9h4ksDkLENU8jUnp2PYAjuv5N37kUJeyq48mayF7httKr92zKPjgDf7abiaxToyUaEpmK8bTSPeIQjiA1hgw48kTOAaW8MLqKvGp64t5N2Yg1MRWWXkXKDBrRxOYg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7503c5304eb9b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /svg/card-amex.svg HTTP/1.1 
Host: github.bubbstore.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.149.218
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-5f3"
expires: Sun, 25 Sep 2022 12:40:20 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 5EA6:132CD:1652233:17113BE:632E163E
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663964735.864231,VS0,VE126
vary: Accept-Encoding
x-fastly-request-id: 6d985dfbefad384748332539c39d62a9c358f376
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kMwMgr4sdQbhkLpxlFqvLKZjpJW%2BOAGrGxqfzDEIWtKHELsCpTYSOKOpXQIJ5niQQtTlzCOJC3%2BBf4%2BiZHziCjgP6Wzy4Qz8YPs99ZCIzqvp7Q6XGsNhiaOFwCzWOoWDLavWfhyDFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7503c540b941b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Sep 2022 12:30:20 GMT
date: Sun, 25 Sep 2022 12:30:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /svg/card-discover.svg HTTP/1.1 
Host: github.bubbstore.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.149.218
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 25 Sep 2022 12:30:20 GMT
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-f89"
expires: Sun, 25 Sep 2022 12:39:37 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 1014:0A90:4B789E:D04ADA:629E764A
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1654556035.983946,VS0,VE101
vary: Accept-Encoding
x-fastly-request-id: d0464c181bd44a3b4ddea5e69abcb252f448f82a
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4dmHS2jW%2FZXCwpi9c%2BQAy39w15eK%2FIxNHkNAcQJMtv%2Ff3N4AawpIx8gdIAX%2FVHpyeqAPfV3d0gCaLaBq%2B4PZCG7zGSW8gCGvd1lWRjhVIh6GwnI6aF%2FxXbDxGaWZtEM1lgA8CTgtAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7503c540b940b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /i18n/pixel/events.js?sdkid=CCMDVUJC77U1F3L1D9Q0&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209251230205AFABD6F4AAE2F92778C
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923cc8caabc2e169b9531f287983d6d3a94502e8ae958f03e820f3d0c87b216da98389816c355c3f1c7f1bff3815c2a95244e361e50b756ef4f829ce1f4543266c471
content-encoding: gzip
x-origin-response-time: 8,23.36.66.39
x-akamai-request-id: 27487050.2f42effe
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-36-66-39.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=112, origin; dur=8, inner; dur=4
x-parent-response-time: 118,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /i18n/pixel/events.js?sdkid=CCMAR9JC77UB4C8P4BM0&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.34
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20220925123020B7AE6DD04709168A8948
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6028d2b86232f62e57d275f1fc326923cc05c5f73bd4d342e3ba3ea286e6e93f657fdfe8de4dd8221ae452f915498bedf0530e34ca1f077a0b0410aae3f3b3b8c5f17198d99dcd709039e0a77aea2a8270
content-encoding: gzip
x-origin-response-time: 10,23.36.66.10
x-akamai-request-id: 31e1fe30.2f42f022
expires: Sun, 25 Sep 2022 12:30:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 12:30:21 GMT
x-cache: TCP_MISS from a23-36-79-30.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-36-66-10.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=10, inner; dur=3
x-parent-response-time: 113,23.36.79.30
X-Firefox-Spdy: h2


--- Additional Info ---