r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14157
Expires: Sat, 04 Feb 2023 09:46:41 GMT
Date: Sat, 04 Feb 2023 05:50:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11978
Expires: Sat, 04 Feb 2023 09:10:22 GMT
Date: Sat, 04 Feb 2023 05:50:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 05:36:14 GMT
content-type: application/json
age: 870
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
seguro.sg-multimarcas.com/checkout/payment?cart_token=shopify-ea91d594c9956a86555ca76814840754&utm_source=WhatsApp_Yampi&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=628e68c64d06b054e4a4ae10f998bd72fc99ce82&customerToken=b7bd53a0-a41e-11ed-a3fc-315fcfcf067b
301 Moved Permanently 134 B URL HTTP/1.1 seguro.sg-multimarcas.com/checkout/payment?cart_token=shopify-ea91d594c9956a86555ca76814840754&utm_source=WhatsApp_Yampi&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=628e68c64d06b054e4a4ae10f998bd72fc99ce82&customerToken=b7bd53a0-a41e-11ed-a3fc-315fcfcf067b
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /checkout/payment?cart_token=shopify-ea91d594c9956a86555ca76814840754&utm_source=WhatsApp_Yampi&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=628e68c64d06b054e4a4ae10f998bd72fc99ce82&customerToken=b7bd53a0-a41e-11ed-a3fc-315fcfcf067b HTTP/1.1
Host: seguro.sg-multimarcas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 Feb 2023 05:50:44 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.sg-multimarcas.com:443/checkout/payment?cart_token=shopify-ea91d594c9956a86555ca76814840754&utm_source=WhatsApp_Yampi&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=628e68c64d06b054e4a4ae10f998bd72fc99ce82&customerToken=b7bd53a0-a41e-11ed-a3fc-315fcfcf067b
X-GoCache-CacheStatus: BYPASS
Server: gocache
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13820
Expires: Sat, 04 Feb 2023 09:41:04 GMT
Date: Sat, 04 Feb 2023 05:50:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 34Vpso3GjIz2oAjRhk9RtbNS6KLcaVjrDcWZRBxy4VoPBEGYvYJQBlq0OPmSVY5odnaGNFcBCOI=
x-amz-request-id: KQ2PBT8G40Z8Z0EP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 04:52:42 GMT
age: 3482
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 05:50:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1087e4724f83e298124604897dc67383
d154a033685626736defa3b20ccecfb952e9c0ce
212597aba99ca01dd0ac0d78325fb4e441b9993a7a4c3a78054bee7f3f199ee0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "212597ABA99CA01DD0AC0D78325FB4E441B9993A7A4C3A78054BEE7F3F199EE0"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 04 Feb 2023 11:50:44 GMT
Date: Sat, 04 Feb 2023 05:50:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 05:07:19 GMT
age: 2605
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12749
Expires: Sat, 04 Feb 2023 09:23:14 GMT
Date: Sat, 04 Feb 2023 05:50:45 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nzeJzXavunTHvAFdXHMrhg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6yLCvjEg8SFdZno7NcN3gWM73gQ=
ocsp.digicert.com/
200 OK 279 B IP
Hash 8de6c9e6cb2ee325eeac5809f781f7a9
504b1f5d5c40809063d88ea27a01ceccdcdd66d5
11377b0162a72c549688be1f2b03dbee2ee84c7e15c64c1079662bfdf338a052
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=120126
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Etag: "63dd2474-117"
Expires: Sun, 05 Feb 2023 15:12:52 GMT
Last-Modified: Fri, 03 Feb 2023 15:12:52 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
200 OK 280 B IP
Hash 3471d2f3669afa8e09a035baa80ab899
ef0877f7bb2d543724516cfc38f7451783206cdd
086a6e67ca882c5ce9a3c04d1b7536e8e911aa99b4e32b4a6cbe47b74efebafd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3016
Cache-Control: max-age=170283
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Etag: "63dddc99-118"
Expires: Mon, 06 Feb 2023 05:08:49 GMT
Last-Modified: Sat, 04 Feb 2023 04:18:33 GMT
Server: ECS (amb/6B77)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash 3471d2f3669afa8e09a035baa80ab899
ef0877f7bb2d543724516cfc38f7451783206cdd
086a6e67ca882c5ce9a3c04d1b7536e8e911aa99b4e32b4a6cbe47b74efebafd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 271
Cache-Control: max-age=167538
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Etag: "63dddc99-118"
Expires: Mon, 06 Feb 2023 04:23:04 GMT
Last-Modified: Sat, 04 Feb 2023 04:18:33 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8426
Expires: Sat, 04 Feb 2023 08:11:12 GMT
Date: Sat, 04 Feb 2023 05:50:46 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
secure.mlstatic.com/sdk/javascript/v1/mercadopago.js
200 OK 9.1 kB URL HTTP/1.1 secure.mlstatic.com/sdk/javascript/v1/mercadopago.js
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (25829), with no line terminators
Hash 13e3cc8ff400bf1da09ba98065151e4a
05da8917634372f71cd2f851e42129fecfb2f45f
9fb8f6afd1ae3d95fbd299a8a9b63fb83e653410c7a9cd0e42fbb75b4faf1c36
GET /sdk/javascript/v1/mercadopago.js HTTP/1.1
Host: secure.mlstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 9065
Server: Tengine
Vary: Accept-Encoding
Content-Encoding: gzip
ETag: "825262-9065-1647036440000"
Last-Modified: Fri, 11 Mar 2022 22:07:20 GMT
x-envoy-upstream-service-time: 2
x-envoy-decorator-operation: production.openplatform-sdk-javascript.melifrontends.com
X-Request-Id: d2e52704-7958-472c-b559-cac792b41f98
X-Request-Device-Id: d2e52704-7958-472c-b559-cac792b41f98
X-D2id: d2e52704-7958-472c-b559-cac792b41f98
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: no-referrer-when-downgrade
Cache-Access-Control-Allow-Origin: *
Cache-Control: max-age=3600
Date: Sat, 04 Feb 2023 05:50:46 GMT
Connection: keep-alive
seguro.sg-multimarcas.com/checkout/payment?cart_token=shopify-ea91d594c9956a86555ca76814840754&utm_source=WhatsApp_Yampi&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=628e68c64d06b054e4a4ae10f998bd72fc99ce82&customerToken=b7bd53a0-a41e-11ed-a3fc-315fcfcf067b
302 Found 1.0 kB URL HTTP/2 seguro.sg-multimarcas.com/checkout/payment?cart_token=shopify-ea91d594c9956a86555ca76814840754&utm_source=WhatsApp_Yampi&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=628e68c64d06b054e4a4ae10f998bd72fc99ce82&customerToken=b7bd53a0-a41e-11ed-a3fc-315fcfcf067b
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash 16e4bd2a797ce35a107e943ae4bbeff0
b9111858e1cd5810618ca898830bbe5ed75628fb
351195dcc24e5980d711273b7b2b67f7bc9c06d7d01c57ab876355a55f069017
GET /checkout/payment?cart_token=shopify-ea91d594c9956a86555ca76814840754&utm_source=WhatsApp_Yampi&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=628e68c64d06b054e4a4ae10f998bd72fc99ce82&customerToken=b7bd53a0-a41e-11ed-a3fc-315fcfcf067b HTTP/1.1
Host: seguro.sg-multimarcas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sat, 04 Feb 2023 05:50:45 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.sg-multimarcas.com/checkout/address
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6ImtYbkJybURYQUNmMHdYV3laU0hUS2c9PSIsInZhbHVlIjoiVXpEcTJWTkZVTU1mQ3dLMndzQkNlcXhrdEdZTVlwQ0Y2R0VSQmFzdVNDT2ZZT055Uk1ka2c0WDQ0U3dUdXZ3U3RSUElCN3IwRWp1NUhLa2hKWmE0ekE9PSIsIm1hYyI6IjhkYzk3OTk5MDE3MTFhNTA5YmQ1MTNlOGFkNzY2OTM1MTNlNTUxNmUzZTFiZTI1OGU1MjFkOTRkMDI3ZjViOWIifQ%3D%3D; expires=Sat, 04-Feb-2023 08:50:45 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6Ijkzd2ZseDBJU284S0NEVjg2d3FKSFE9PSIsInZhbHVlIjoiT3lEaXNUeUVWdVNCalhNcGNuNlwvbk1hXC9HK1E5UlREdWpzUzJwbVVzNkZ5NnZkRldzNVJ2VXBhMXNEYWxOczRYSjR0Mmg1RGc5XC81d0MxZ0FxU0g5aEE9PSIsIm1hYyI6Ijg0MDM4YmYzMDJiZGE3MDA0MzNkMzFiZGNmZjM3MDYxOGQ5M2RkNDhlY2Y5ODYxNWY4OTgxN2E4OGU2N2I1NjcifQ%3D%3D; expires=Sat, 04-Feb-2023 08:50:45 GMT; Max-Age=10800; path=/; httponly
sg-multimarcas3_cart=eyJpdiI6IlZtUmVCOENVMmRmaE5nc21hZTVpVEE9PSIsInZhbHVlIjoiWGpmSm5XQ2pXWkI4MEJsVHlYc1QxMitFNE10SUNWVDNLYzNvQ21uQkFwWkFTbDM2NjAwa1FPODdHTW1teWVPU2VzalRBeVFXaUVvSHJtYnZPVWNTMmc9PSIsIm1hYyI6IjBiZjc1MGVjMGEyZjYxYTM4MWVlMTVjMjA2ZmE0OTY3OTI1ZGQ5Zjk5Y2YzZDNiY2Q0ZGQxZDU2ZTkxMWRkNzQifQ%3D%3D; expires=Thu, 09-Feb-2023 05:50:45 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 280 B IP
Hash 3471d2f3669afa8e09a035baa80ab899
ef0877f7bb2d543724516cfc38f7451783206cdd
086a6e67ca882c5ce9a3c04d1b7536e8e911aa99b4e32b4a6cbe47b74efebafd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 271
Cache-Control: max-age=167538
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Etag: "63dddc99-118"
Expires: Mon, 06 Feb 2023 04:23:04 GMT
Last-Modified: Sat, 04 Feb 2023 04:18:33 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash 3471d2f3669afa8e09a035baa80ab899
ef0877f7bb2d543724516cfc38f7451783206cdd
086a6e67ca882c5ce9a3c04d1b7536e8e911aa99b4e32b4a6cbe47b74efebafd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3016
Cache-Control: max-age=170283
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Etag: "63dddc99-118"
Expires: Mon, 06 Feb 2023 05:08:49 GMT
Last-Modified: Sat, 04 Feb 2023 04:18:33 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 471 B IP
Hash d20d8c9b31276f31dc274dd2171b1ee2
6b77c4398414990f051880e327b1e20608bab789
6a221d52b1dc44371718a0860f11857da52065ce829afc9ad91c9f0a069674b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4802
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Last-Modified: Sat, 04 Feb 2023 04:30:44 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
www.googleoptimize.com/optimize.js?id=OPT-N6QHJQM
200 OK 44 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-N6QHJQM
IP
File type ASCII text, with very long lines (1759)
Hash 27870ca9b97564e813131c52910550fc
6ceca1a0a0346d3985526406cfe51cca5e2e3cb4
9a3bc31fff5afcfb61c7ba0b41561e72850243503178e70f05f78a71431bf6d7
GET /optimize.js?id=OPT-N6QHJQM HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 05:50:46 GMT
expires: Sat, 04 Feb 2023 05:50:46 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44264
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.dooki.com.br/fa/4.7.0/fa.css
200 OK 7.4 kB URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.css
IP
Hash c0fc9682b945f8140ce4e67c0149e503
72432a162b10a9a75215eedc99295c2ea08ec26c
93d2b42584623dea79d6cff1c3563a20743e8646f67b50f1ec945c77ee9454e3
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:46 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 3015
expires: Sun, 12 Feb 2023 05:50:46 GMT
cache-control: public, max-age=691200
set-cookie: __cf_bm=DYmffQ8NoezZbW4mEKQyZMGG9_VTYwXerac0V5SnKtg-1675489846-0-AYXmXld2NDWrfxUlTTroM54FvGlcNpfMJTJzTrV6fbq3Vi3Se64mn6TLF7vCdbjkdxEj8XVzlFduMYrzGJIjsEc=; path=/; expires=Sat, 04-Feb-23 06:20:46 GMT; domain=.dooki.com.br; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 794121740ed8b503-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/0698/1825/3633/products/WhatsAppImage2023-01-20at18.39.34_250x250.jpg
200 OK 9.7 kB URL HTTP/2 cdn.shopify.com/s/files/1/0698/1825/3633/products/WhatsAppImage2023-01-20at18.39.34_250x250.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash fda4602d149e232f20bbb7e95709b99c
ef8cce3711c59de76918e0ffdae048e6aedd6448
760ab38c7204913036a864764b1130a7ec41d7f9933250b5d22dfc6e3f885232
GET /s/files/1/0698/1825/3633/products/WhatsAppImage2023-01-20at18.39.34_250x250.jpg HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:46 GMT
content-type: image/avif
content-length: 9734
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0698/1825/3633/products/WhatsAppImage2023-01-20at18.39.34_250x250.jpg>; rel="canonical"
source-length: 104178
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: dae59aa2-de91-4ea6-8742-b70acd8d0ee1
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Fri, 03 Feb 2023 23:09:25 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nu0Cijs1lLFfHNe8zikG%2FO8YoH8vTToWC0bqZK0kbX1hzHtnDrUvw0vY5ZHc5KVVB3r8vUYY4sj3%2BNbbxhdqK%2B1aAoBkE3jai3B7%2FjAJqW90dR%2Fqji9lZL64R%2F8txAWdUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=598.751, imageryFetch;dur=67.332, imageryProcess;dur=530.381;desc="image", cfRequestDuration;dur=181.999922
server: cloudflare
cf-ray: 7941217429581c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8426
Expires: Sat, 04 Feb 2023 08:11:12 GMT
Date: Sat, 04 Feb 2023 05:50:46 GMT
Connection: keep-alive
awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=8b7536cdfd4408a4b16bbd105453ab04
200 OK 90 kB URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=8b7536cdfd4408a4b16bbd105453ab04
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6b876dfa205cd1e3d68f01b05c9ad7df
5a195daf259c2a0ad8d3ef326cbfd87a6d3ed830
0a96004ce055b9141be4bd021abde803a9bae521ee40260340413f6c5a8d9bbe
GET /checkout/build/mix/assets/js/app.js?id=8b7536cdfd4408a4b16bbd105453ab04 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:46 GMT
content-type: application/javascript
x-amz-id-2: ivmnXU8fup0bkKJjX6SDc1+EZcGDdRrWAYJUuoo+5rDhsX6A0T81AlKM1xFDsOaFGsIxuf1VIhk=
x-amz-request-id: C0GMPKKN5RVHSXV4
last-modified: Fri, 03 Feb 2023 13:55:29 GMT
x-amz-version-id: llmQIvzu2Ro180FNTWuXQpzg6MXsHiK9
etag: W/"c6e1d2d2dadddf63fd5e83ea41aee05f"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4611
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bdyQc2NNUOTSFghocTFu9mlJ5fak9qdlx6qEUpEJfF5SAx4fYxCy%2BYGR51GcuwMkdeaa0RduB%2FeYYGOvkmfA0Hzxrsusm%2FxL4xjSfS690PJsyo7wqoVQ4Bwkd%2FfKEpzBu0UO%2FELuOWVu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794121743a6db4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4215
Expires: Sat, 04 Feb 2023 07:01:01 GMT
Date: Sat, 04 Feb 2023 05:50:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4215
Expires: Sat, 04 Feb 2023 07:01:01 GMT
Date: Sat, 04 Feb 2023 05:50:46 GMT
Connection: keep-alive
fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
200 OK 1.0 kB URL HTTP/2 fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
IP
Hash a01f8e8d843a6e97eea05f45afaf2c77
f4e7c865451c4df9a0855bce027a586dc1ee447f
5c76794bc7d6e4e2bececeed69e9f36941e9cc11624673b8dbf922505a660f6e
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 05:50:46 GMT
date: Sat, 04 Feb 2023 05:50:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7afd5ce8fb9ec7b62e528bf97705e49
afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3
b2d93ba6c0ed2c858d91afba1c81251afbffa41c779be2e9203994dcfb7bbc9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7249
x-amzn-requestid: 007ce521-ed5c-4074-a314-684ad0df2e22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9GH5goAMF_ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8053-7060f02b767c90371991a190;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fTV_e56nzjiXo4Guu67WXDDvp3nrjB0Yfyy6ByjcDSx23J-8r0fmQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 27625
etag: "afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 27613
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 27625
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:05 GMT
age: 28961
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65cd12302c9ca5468dbc9a98155970e0
a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1
8463155faca74f13ec4500fed98289d8bfbdc4a989d1cb7580736018eadf1000
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7992
x-amzn-requestid: ba4f95d9-6081-4b34-955c-bbe8e7b2335c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEjGsdIAMF84w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8083-7666baa66ccdec9b5fec8736;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A3c6sSs_b8KkREPa26a8X9NTEZpHGDjElR9hT-NXwg6dYpeuRNZXfA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
etag: "a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1"
content-type: image/jpeg
age: 27625
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa139f02-bb4d-4058-8a17-82e241e61bf2.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa139f02-bb4d-4058-8a17-82e241e61bf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75b9c67fbf2d207afec78eb14b95d7ec
c0b7e9e9ca9ee71761489e738a3a308ff0b6e5c8
42ddfef2fc1e0200a1ff3d615fd6da42fd8bdea4551344580c13af07092d401f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa139f02-bb4d-4058-8a17-82e241e61bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5917
x-amzn-requestid: 095185b4-b608-4ac8-9041-6e5fcf9033d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEW_EA4IAMFxVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd80f9-1d780a2a58fcc30613bdfdab;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:47:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -4TwLeMENj7WdI_QQWKgwxTj9MldN5z7qmo7_OX_eXIVba9zjDEoaA==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:17:42 GMT
age: 27184
etag: "c0b7e9e9ca9ee71761489e738a3a308ff0b6e5c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
images.yampi.me/assets/stores/sg-multimarcas3/uploads/testimonies/63c01f2540a7d.jpg
200 OK 10 kB URL HTTP/2 images.yampi.me/assets/stores/sg-multimarcas3/uploads/testimonies/63c01f2540a7d.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 150x150, components 3\012- data
Hash e295332ed5dad8ae71a135b60d59a2d9
b6e2ce32954a1f6a01f249c2b6779ad072da3f5d
4f7de3914466458ddfee75b4d34b66f08c74e5d0393e913b06ae1abfb1cc172e
GET /assets/stores/sg-multimarcas3/uploads/testimonies/63c01f2540a7d.jpg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:46 GMT
content-type: image/jpeg
content-length: 10010
x-amz-id-2: qFZZI0k8ayDbDnZPuZXuWHixmYt055P7fYgj2pHgLuKFC+t/WarQ3wWlNI5C6UNMJoDCFyzBEGk=
x-amz-request-id: TAHW2MRJE442BGVY
last-modified: Thu, 12 Jan 2023 16:28:03 GMT
x-amz-version-id: djrYQDRc38knqcJu8ISwcd7O6Papbjt9
etag: "e295332ed5dad8ae71a135b60d59a2d9"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4whtkgg9cKc%2FI24qPeyv8uAPVkds2sVvYZ1ITpCq31EOmpo0s40vOYDdsh8I6WWSXv5oj1pkcfrayhWQ0GAnkeXmz%2FleQe9efyYxCDe3Agr7dX6U6OaHUZyYLuyKY%2B8bKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794121741a5db4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
images.yampi.me/assets/stores/sg-multimarcas3/uploads/testimonies/63c03498ab713.jpg
200 OK 8.4 kB URL HTTP/2 images.yampi.me/assets/stores/sg-multimarcas3/uploads/testimonies/63c03498ab713.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 150x150, components 3\012- data
Hash f2dfbd0b197c469f31a655280e0fc438
a29d0a8b773e0c49e029ce747217e602f69ca6c6
39da37c6c18d68a7e8932e15ac94f27cdd9c57a68e0754d4c62772d277139cdb
GET /assets/stores/sg-multimarcas3/uploads/testimonies/63c03498ab713.jpg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:46 GMT
content-type: image/jpeg
content-length: 8383
x-amz-id-2: 5lJZqbyC/Eipumj6G2uOVoDkxjqXcqKsTqoF/E5V//VmKrlAd0D/sQkE5HmlfcboKCuowmEErKg=
x-amz-request-id: TAHK7YSTT4XTJVGK
last-modified: Thu, 12 Jan 2023 16:28:03 GMT
x-amz-version-id: QFoVlTCMxtPfwRKfabI7QHCchV3P0Hl0
etag: "f2dfbd0b197c469f31a655280e0fc438"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LW8DERngPNpOfpb%2BjPMhseoeDj8KT%2BaR6648%2BsNi0Zs8lP%2BJKcy1lj2tSTALLNC2si1jDDCfcELPHaBweMzaNAZYhGDQoQXehaFMkOn4s7vN33i9zBjzydrlFNCyD1IifQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794121741a5cb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 63b7ecdf44933ad5b0cf92c6bcd64aa6
8bbe78fd1ef82a3393832bd076b8409137cf67e0
560acfb6dc2299b5b9713fd3858ff19a9267018f4779e1cb7aa3419c0de4118c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=116866
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:46 GMT
Etag: "63dd17b8-116"
Expires: Sun, 05 Feb 2023 14:18:32 GMT
Last-Modified: Fri, 03 Feb 2023 14:18:32 GMT
Server: nginx
Content-Length: 278
ocsp.digicert.com/
200 OK 278 B IP
Hash 63b7ecdf44933ad5b0cf92c6bcd64aa6
8bbe78fd1ef82a3393832bd076b8409137cf67e0
560acfb6dc2299b5b9713fd3858ff19a9267018f4779e1cb7aa3419c0de4118c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=116866
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:47 GMT
Etag: "63dd17b8-116"
Expires: Sun, 05 Feb 2023 14:18:33 GMT
Last-Modified: Fri, 03 Feb 2023 14:18:32 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data
Hash c21e7acd53a6d80fa451f1af92d9a492
4096e12b96fa2549e4f169044a49b6ec60214008
6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd
GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:13:11 GMT
expires: Fri, 02 Feb 2024 00:13:11 GMT
cache-control: public, max-age=31536000
age: 193056
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 9ec964db317e4aae0e12259e1df0dc3c
8776dc40c871320303fc4f0005d3e8ce99d19d14
cda68b86385da0b0be688692b5081eb7e1d9c5dcd314640a45480db08318a35e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1346
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:47 GMT
Etag: "63dc7355-1d7"
Last-Modified: Sat, 04 Feb 2023 05:28:22 GMT
Server: ECS (amb/6BBC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 9ec964db317e4aae0e12259e1df0dc3c
8776dc40c871320303fc4f0005d3e8ce99d19d14
cda68b86385da0b0be688692b5081eb7e1d9c5dcd314640a45480db08318a35e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 225
Cache-Control: max-age=161401
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:47 GMT
Etag: "63ddc4cf-1d7"
Expires: Mon, 06 Feb 2023 02:40:48 GMT
Last-Modified: Sat, 04 Feb 2023 02:37:03 GMT
Server: ECS (amb/6B77)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 9ec964db317e4aae0e12259e1df0dc3c
8776dc40c871320303fc4f0005d3e8ce99d19d14
cda68b86385da0b0be688692b5081eb7e1d9c5dcd314640a45480db08318a35e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4813
Cache-Control: max-age=165989
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:47 GMT
Etag: "63ddc4cf-1d7"
Expires: Mon, 06 Feb 2023 03:57:16 GMT
Last-Modified: Sat, 04 Feb 2023 02:37:03 GMT
Server: ECS (amb/6B83)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 9ec964db317e4aae0e12259e1df0dc3c
8776dc40c871320303fc4f0005d3e8ce99d19d14
cda68b86385da0b0be688692b5081eb7e1d9c5dcd314640a45480db08318a35e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2958
Cache-Control: max-age=164134
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:47 GMT
Etag: "63ddc4cf-1d7"
Expires: Mon, 06 Feb 2023 03:26:21 GMT
Last-Modified: Sat, 04 Feb 2023 02:37:03 GMT
Server: ECS (amb/6B94)
X-Cache: HIT
Content-Length: 471
api.mercadopago.com/v1/device_sessions/web_device
200 OK 0 B URL HTTP/2 api.mercadopago.com/v1/device_sessions/web_device
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/device_sessions/web_device HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://seguro.sg-multimarcas.com/
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:47 GMT
content-type: application/json; charset=utf-8
content-length: 0
access-control-allow-origin: https://seguro.sg-multimarcas.com
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-allow-headers: content-type
access-control-max-age: 86400
x-request-id: 2743bca8-29d1-420a-91c3-c5a3467690cb
x-trace-digest-73: pNMpLP0W4orCE9OMAKr7SyMdvjaS9AVWtP7p30QN2Ks4JMcdJ9NZHs4d1uHVppEw
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-73,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: e244c94b61fff82e
x-b3-traceid: e244c94b61fff82e
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
timing-allow-origin: *
X-Firefox-Spdy: h2
www.mercadopago.com/v2/security.js
200 OK 1.7 kB URL HTTP/2 www.mercadopago.com/v2/security.js
IP
File type ASCII text, with very long lines (4206), with no line terminators
Hash 8b34452a0f2e361a4480c92c0c8cbb97
291cbebabf3c1bf91473cdaa5b791fe04539fb65
259de1151758a77314de838e448bc0bfc7a8371d9f6f5fcf9d5ea3cac725993e
GET /v2/security.js HTTP/1.1
Host: www.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 04 Feb 2023 05:50:46 GMT
set-cookie: _d2id=2ee6705c-bbfc-4e81-a50e-2506110733c2-n; Path=/; Domain=.mercadopago.com; Expires=Sun, 04 Feb 2024 05:50:46 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: get_off_widget
content-encoding: gzip
x-request-id: 2ee6705c-bbfc-4e81-a50e-2506110733c2
x-request-device-id: 2ee6705c-bbfc-4e81-a50e-2506110733c2
x-d2id: 2ee6705c-bbfc-4e81-a50e-2506110733c2
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: Miss from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cigUWA6Wb6qufD9997vxE2qE3rczD7eHOUHcXZQwJiXoGJIrU0PWdA==
X-Firefox-Spdy: h2
fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
200 OK 77 kB URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
IP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:47 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: ityEvi0xqB4zsdvu0DWHeTA41aUFxL4lgV7xI7+1h3wMe2mNM44SsxBV4+bDjmAP0naNtoKMZOo=
x-amz-request-id: 9REC7ZSD88H0KW2M
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: MISS
expires: Sun, 12 Feb 2023 05:50:47 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=.emz0O_NsKjOrS7Paw0RdF.SJZZ5FKFD_L66eJRJUYA-1675489847-0-AU4CXj2vQvmvjkDowx5ujShQNkS+9Dhz3O57wYXwmiC1yxOdLmdCy/I3p05cKC8Has4ui5cVwTVgZO2l18Y4/WM=; path=/; expires=Sat, 04-Feb-23 06:20:47 GMT; domain=.dooki.com.br; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 794121780e551c0e-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5304
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:48 GMT
Last-Modified: Sat, 04 Feb 2023 04:22:25 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 04 Feb 2023 05:44:08 GMT
expires: Sat, 04 Feb 2023 07:44:08 GMT
cache-control: public, max-age=7200
age: 400
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background/etid
200 OK 0 B URL HTTP/2 www.mercadolibre.com/jms/lgz/background/etid
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jms/lgz/background/etid HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 0
date: Sat, 04 Feb 2023 05:50:48 GMT
server: Tengine
set-cookie: _d2id=7cf24539-e5b6-4f86-8764-c15153383d7a-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 04 Feb 2024 05:50:48 GMT
access-control-allow-origin: *
access-control-expose-headers: Etag
etag: 563b93de-79dc-411d-a91e-1ad9575404c3-1675489848107
cache-control: private, must-revalidate, proxy-revalidate
x-envoy-upstream-service-time: 3
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 7cf24539-e5b6-4f86-8764-c15153383d7a
x-request-device-id: 7cf24539-e5b6-4f86-8764-c15153383d7a
x-d2id: 7cf24539-e5b6-4f86-8764-c15153383d7a
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7aT_F-S1r4O3MDFpLRY1jSQc9b6WzYO-iQQaKmra8o8sAMPQRNgupw==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7815df9178e9a1b99aacd0e4b012d9e0
24d0c3c04404356ce1fbffabcf82fc196fa0e99c
02661905ba6f91909a98b1038f9b260f9e7e524515246775567d6ed26a0f4a48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 08:53:11 GMT
expires: Wed, 31 Jan 2024 08:53:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
age: 334657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background/etid
200 OK 0 B URL HTTP/2 www.mercadolibre.com/jms/lgz/background/etid
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jms/lgz/background/etid HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 0
date: Sat, 04 Feb 2023 05:50:48 GMT
server: Tengine
set-cookie: _d2id=71b0b517-e0f1-4aa8-896b-dd5e208cd49e-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 04 Feb 2024 05:50:48 GMT
access-control-allow-origin: *
access-control-expose-headers: Etag
etag: 0d4edb43-5d79-4009-be42-50289877a0ec-1675489848132
cache-control: private, must-revalidate, proxy-revalidate
x-envoy-upstream-service-time: 1
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 71b0b517-e0f1-4aa8-896b-dd5e208cd49e
x-request-device-id: 71b0b517-e0f1-4aa8-896b-dd5e208cd49e
x-d2id: 71b0b517-e0f1-4aa8-896b-dd5e208cd49e
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GrPhmhInuF7Fk9IrolEcRDmUW2S5q7bdvNyrN8ihmQus44AHulmjaA==
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
302 Found 387 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (377)
Hash 2ccdf2f27997ab3212560f7e62d71146
74e96f0dc8895a02bbe8b1c2757420b1c6f02fe4
644bdda5dba571184e5e388a89e6e087ebcd63cf47c96777e1dcc045a8271a52
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 Feb 2023 05:50:48 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S-16708364%3A1675489848197528&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AWnogHfHedYnkGzrqpjeWcbz6ntdNVmjeB68AtxPcIHNBc9HEaHWl45Lh_dUDs2fzOKkldZIStoX
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-Y052vaP1Gee_I8JZZQzxcA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 387
server: GSE
set-cookie: __Host-GAPS=1:nzIdynnTTKO4pObyaAopveyMG1-CVA:5kXtGp2otN1yzi4G;Path=/;Expires=Mon, 03-Feb-2025 05:50:48 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=8426267&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.sg-multimarcas.com%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20SG%20Multimarcas&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=1168736972&gjid=842899425&cid=2079548046.1675489882&tid=UA-45745009-5&_gid=711928841.1675489882&_r=1&_slc=1&z=1452629982
200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=8426267&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.sg-multimarcas.com%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20SG%20Multimarcas&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=1168736972&gjid=842899425&cid=2079548046.1675489882&tid=UA-45745009-5&_gid=711928841.1675489882&_r=1&_slc=1&z=1452629982
IP
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=8426267&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.sg-multimarcas.com%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20SG%20Multimarcas&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=1168736972&gjid=842899425&cid=2079548046.1675489882&tid=UA-45745009-5&_gid=711928841.1675489882&_r=1&_slc=1&z=1452629982 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://seguro.sg-multimarcas.com
date: Sat, 04 Feb 2023 05:50:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 683
Cache-Control: max-age=94549
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:48 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 08:06:37 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
script.hotjar.com/modules.bca0d1c28285412bb689.js
200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rt_pVaBgULvFd_Dm0MoHUBmc_Zz_F4Aj6OpmTzaosKho71d26rwqUA==
age: 60042
X-Firefox-Spdy: h2
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NL5nurSlhTopANRXNGjPovpwLiy09IxdWvrUATBksMiCyFAnEnVeMw==
age: 60042
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/v3/signin/identifier?dsh=S-16708364%3A1675489848197528&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AWnogHfHedYnkGzrqpjeWcbz6ntdNVmjeB68AtxPcIHNBc9HEaHWl45Lh_dUDs2fzOKkldZIStoX
403 Forbidden 808 B URL HTTP/2 accounts.google.com/v3/signin/identifier?dsh=S-16708364%3A1675489848197528&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AWnogHfHedYnkGzrqpjeWcbz6ntdNVmjeB68AtxPcIHNBc9HEaHWl45Lh_dUDs2fzOKkldZIStoX
IP
Hash 21b68133a384ec1a09a79d2c6ea5c662
cd500f173a5f0b0b33ed04e4451f1bfde2d0a350
bd3f1d693bf87c6adfc30bc95bf8ee869958611996a0a07da1c2ce5502f35789
GET /v3/signin/identifier?dsh=S-16708364%3A1675489848197528&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AWnogHfHedYnkGzrqpjeWcbz6ntdNVmjeB68AtxPcIHNBc9HEaHWl45Lh_dUDs2fzOKkldZIStoX HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://seguro.sg-multimarcas.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 Feb 2023 05:50:48 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-4-6bnZyQMjtgyW8SY0CwLQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 111 kB IP
File type gzip compressed data, from Unix\012- data
Size 111 kB (110894 bytes)
Hash ed28775f5be967a73680625dbc54091b
653a75cd88271513b9330c9fd22d980e0fab2685
0784cff54f874c462b783933bef184f8ab1dcc8bf61dcdc309560ddae5d1d882
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=694142949054162&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sg-multimarcas.com%2Fcheckout%2Faddress&rl=&if=false&ts=1675489882788&cd[content_ids]=%5B%228108547866945%22%5D&cd[content_type]=product_group&cd[value]=69.99&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.1.1675489882784.359527706&it=1675489882479&coo=false&eid=InitiateCheckout_sarcnrr19&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=694142949054162&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sg-multimarcas.com%2Fcheckout%2Faddress&rl=&if=false&ts=1675489882788&cd[content_ids]=%5B%228108547866945%22%5D&cd[content_type]=product_group&cd[value]=69.99&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.1.1675489882784.359527706&it=1675489882479&coo=false&eid=InitiateCheckout_sarcnrr19&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=694142949054162&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.sg-multimarcas.com%2Fcheckout%2Faddress&rl=&if=false&ts=1675489882788&cd[content_ids]=%5B%228108547866945%22%5D&cd[content_type]=product_group&cd[value]=69.99&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.1.1675489882784.359527706&it=1675489882479&coo=false&eid=InitiateCheckout_sarcnrr19&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:50:48 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=694142949054162&ev=PageView&dl=https%3A%2F%2Fseguro.sg-multimarcas.com%2Fcheckout%2Faddress&rl=&if=false&ts=1675489882785&cd[content_ids]=%5B%228108547866945%22%5D&cd[content_type]=product_group&cd[value]=69.99&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.1.1675489882784.359527706&it=1675489882479&coo=false&eid=PageView_s2il0x4sw&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=694142949054162&ev=PageView&dl=https%3A%2F%2Fseguro.sg-multimarcas.com%2Fcheckout%2Faddress&rl=&if=false&ts=1675489882785&cd[content_ids]=%5B%228108547866945%22%5D&cd[content_type]=product_group&cd[value]=69.99&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.1.1675489882784.359527706&it=1675489882479&coo=false&eid=PageView_s2il0x4sw&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=694142949054162&ev=PageView&dl=https%3A%2F%2Fseguro.sg-multimarcas.com%2Fcheckout%2Faddress&rl=&if=false&ts=1675489882785&cd[content_ids]=%5B%228108547866945%22%5D&cd[content_type]=product_group&cd[value]=69.99&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.1.1675489882784.359527706&it=1675489882479&coo=false&eid=PageView_s2il0x4sw&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:50:48 GMT
X-Firefox-Spdy: h2
js-agent.newrelic.com/692.215647de-1223.js
200 OK 1.1 kB URL HTTP/2 js-agent.newrelic.com/692.215647de-1223.js
IP
File type ASCII text, with very long lines (2024), with no line terminators
Hash 1dc08a1beb61f5f16d5972c0bee130e4
9f79e0cdf3d763c3caa0c0be870c86b2d64a8dc9
cdd769feea442da1672ab541a2d9846e1561520bb24484e8ee09d1d5d17570f0
GET /692.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2yt9zIT4kPGAHbZR3GCMZ5QoLheWqVlcJX0f/njjzvUTTdDRBkBy06VpOX/u//lzjAgeAveu2U8=
x-amz-request-id: 29B921PPM35DC69W
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "2a9c8457fef96067bf92a4ec54fb10b8"
x-amz-version-id: I.n_PBR7fU5g2cmlAwgMlzr4Oik5bP_f
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:50:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 1614
x-timer: S1675489849.728679,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1087
X-Firefox-Spdy: h2
js-agent.newrelic.com/112.215647de-1223.js
200 OK 2.8 kB URL HTTP/2 js-agent.newrelic.com/112.215647de-1223.js
IP
File type ASCII text, with very long lines (7285), with no line terminators
Hash 51f26008d21e2bd91b8a9baa4c356ab9
59888996bcb03c11b1d2e61a868009e57846b8cb
feebd27b271ee3a7198d3dbc69610281a43503080d724ec0fcb7c4bfa13d42f6
GET /112.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 89jhP8k1dPBysMYdCzqbzxQ1KxABx3MYRt9LPVpreRIcgdqnpH5bT0LvyouOsXZFM+UKIfDjy0I=
x-amz-request-id: 29BA48WT782NR5G3
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "b225b095bddb200dcb67ba7625a14e0b"
x-amz-version-id: 9bSPwe8fMEYRcVSv2EMBWMHRAeUObfWk
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:50:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 954
x-timer: S1675489849.730718,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2800
X-Firefox-Spdy: h2
js-agent.newrelic.com/960.215647de-1223.js
200 OK 2.2 kB URL HTTP/2 js-agent.newrelic.com/960.215647de-1223.js
IP
File type ASCII text, with very long lines (4860), with no line terminators
Hash e760ffc71afd5bd3c903e8f29818c668
11e73304cc011c73068a27c4ae873eb2adf85f7d
b3128fc00ad75d145325e82722ae64fb77919f398989850180eb5a821cbd4504
GET /960.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: gNdtGXUJfleX+6Y/31csogbPXnzsvAdQ2x0ORpMeZLnvhbSRfapicWEnWrmVHTcguxNTc34ROLE=
x-amz-request-id: 29B7ET22KYPXWQTJ
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "57e420fb6a7c52d0c27d5548fef4de16"
x-amz-version-id: iCdpSHjuiF_zf7kNvVpWKcwVkVeojeJa
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:50:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 710
x-timer: S1675489849.731023,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2233
X-Firefox-Spdy: h2
js-agent.newrelic.com/307.215647de-1223.js
200 OK 3.6 kB URL HTTP/2 js-agent.newrelic.com/307.215647de-1223.js
IP
File type ASCII text, with very long lines (9700), with no line terminators
Hash ee729b93fd1e54d7c6108a4a252b67a2
e87fca8b97e56a89980ad6eb488ef1ac50116366
b48a5e5b92d4d04becc06d85a678fffe33bf31611398c217ec232171f6d11f8f
GET /307.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: xbAyM3B6Z/Ooy6PMw2GgjfE/Ir1lbwXjKVU7JKeSJnjmMgE/GpUd1AOACsKLCPxaWbQWAHrYzE0=
x-amz-request-id: KRHE8V2CFA00B292
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "cca13aa273adc25aced599968bea0601"
x-amz-version-id: ED2qEQGkNHGjLDyC2ELlsbsj8AXnsN9k
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:50:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 740
x-timer: S1675489849.731231,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3648
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 6c3eb064d03373ee5151d7fcc22f1d86
3df00d6dbfec3c902b5f5887c6c185cb64eb652a
e053161d9c696d0f3e6e5ce011546d9673e646981a28167aa2dfccd2878ac7f1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=140626
Date: Sat, 04 Feb 2023 05:50:48 GMT
Etag: "63dd667c-1d7"
Expires: Sun, 05 Feb 2023 20:54:34 GMT
Last-Modified: Fri, 03 Feb 2023 19:54:36 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aenMB0M2vSt4rzmeZPB181CZtdvM6pOoYm-3d5SxslCcmTjkRcb7QA==
Age: 3598
js-agent.newrelic.com/817.215647de-1223.js
200 OK 1.0 kB URL HTTP/2 js-agent.newrelic.com/817.215647de-1223.js
IP
File type ASCII text, with very long lines (2422), with no line terminators
Hash f899718de7c8c66eeb4bbfa0c22acf5e
ec2a6857256c2ed00c401b4888ff36871baf6b43
809f4867eaf293e35d10315d6e65aa69289d7eee0ab7e8de437b18c2a06fed94
GET /817.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: sWkU684Mr3Z5/fJ2O0srvU3HupQDLlairtucn7ucXJIoplwlZJHmVmeQSK82HUlRykCYQPaNYBk=
x-amz-request-id: 29BE804GA0J43Q99
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "a5dc24e5a104adfcf70621ff7fb620ff"
x-amz-version-id: fbj3lJUaysglBYTWHHCwffYncZ19MQ50
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:50:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 739
x-timer: S1675489849.737625,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1044
X-Firefox-Spdy: h2
js-agent.newrelic.com/378.215647de-1223.js
200 OK 6.4 kB URL HTTP/2 js-agent.newrelic.com/378.215647de-1223.js
IP
File type ASCII text, with very long lines (17828), with no line terminators
Hash d58a3a565fc0bbaf659cdd5bf0c3cd4f
8cd110e6b7199e11de72368b73abb8a3afddfff8
bd6f2c9e271f74ce10d1ad05fdde0fa7bf0ffa34ea85f6076a58e50111df8de7
GET /378.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jhmNL7TL7NMx1UoOR5WpT5kMljdWRrYGpnmm3iqO7tDQcfjU0mie9CCq0LQCgRqufry0GCFQmEg=
x-amz-request-id: 93FTN287CT7M20VW
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "2705e6768fceda2e9c8355d65e268d7c"
x-amz-version-id: tRin0ET_go6ogNo.J2ffgT9M6xH6BEos
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:50:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 513
x-timer: S1675489849.753202,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 6410
X-Firefox-Spdy: h2
js-agent.newrelic.com/779.215647de-1223.js
200 OK 3.5 kB URL HTTP/2 js-agent.newrelic.com/779.215647de-1223.js
IP
File type ASCII text, with very long lines (8307), with no line terminators
Hash 411c3ac790a3a8f8f71906adf57df690
ceef347ad1356a868f3c371ffc84c205958aed6d
59a8f0bcbad548fd487a595f4a2c3642268a19437d80096f1f0e3a67301132ac
GET /779.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: oJiVqgUxxXTGlb3WHfPODQ+0hnRNaK4Wu3C5q0qzLW1Wy1zUCv3lJDvZMbOZXlmpWlVHYmT68X8=
x-amz-request-id: 29B6GFQJDW5ETZPK
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "1f9dc6167676d6db728e844d20a97ad5"
x-amz-version-id: d0hMUd3mWD9ItciiSIXCSy8OWToOTtsf
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:50:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 1614
x-timer: S1675489849.753181,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3516
X-Firefox-Spdy: h2
js-agent.newrelic.com/785.215647de-1223.js
200 OK 2.1 kB URL HTTP/2 js-agent.newrelic.com/785.215647de-1223.js
IP
File type ASCII text, with very long lines (5141), with no line terminators
Hash 7fa55562924d9fae72bef9c581681545
2a9f69db97168913e41c20b42278f0b020f19e02
9ab186c1c3c7132d927edd774e14412550e0127ae67bcf04353f94ce22dd1b5f
GET /785.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +m4UupLkIm012wjkD0AOw3MWK5aT8Y0g0D4hdCiEX5xVgPPr8nsRchoPSx3Y9Rb4NP65eTC0O6I=
x-amz-request-id: 29B11CZV4JJHK42G
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "85340359c90104ea511047eb2b57ebb5"
x-amz-version-id: 24gfKeCbKAAA6djjTUpWk6gRfGGq6MlZ
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:50:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 1605
x-timer: S1675489849.753158,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2103
X-Firefox-Spdy: h2
js-agent.newrelic.com/823.215647de-1223.js
200 OK 1.4 kB URL HTTP/2 js-agent.newrelic.com/823.215647de-1223.js
IP
File type ASCII text, with very long lines (3147), with no line terminators
Hash 87de67cddb1db12fc7ee256669fcd9ba
5c882b5cc4bff34d8f4c603d6077f424b442a0df
42e88e7da2ca5f5fbd6fb461147d562a317c22508508c937cc57ad65c04e5986
GET /823.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5Fb4P8xJczd5vSJcDjiJeEIdldSbkECuaWyErtMTeAtEHKfdyrVuRuzSrltAg1+Dqn5ZyguqAlc=
x-amz-request-id: 29B2ND18W5AQM0T8
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "ce7762cf4b6665f79c15503dbccd6c68"
x-amz-version-id: W2tA0gkaWp6JlPnYeFhc2plzNBl_myPN
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:50:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 1608
x-timer: S1675489849.753148,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1365
X-Firefox-Spdy: h2
js-agent.newrelic.com/325.215647de-1223.js
200 OK 560 B URL HTTP/2 js-agent.newrelic.com/325.215647de-1223.js
IP
File type ASCII text, with very long lines (1119), with no line terminators
Hash dbb8514b0fe73ed1c9a3bb94d6bd624b
083e321a63d3e24555e87c564d3b52588ed49ae1
10a720318922a38e6bf41921f3adc6f56bc61f215e251be7f5f37ec991d9b852
GET /325.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: y2K+rpeLF3Ym/3l6sNpa29RWC/g7TNS9+AlxD2Yrljl995Eo6bNRqMUpU5PNsi1SzBJybaX6onw=
x-amz-request-id: 5D6X5R0HEXVCYE0Y
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "8bfb1318203f2143642fa7f2620e90b9"
x-amz-version-id: TZXfN40R6cv9QsF3fTfxRxppzwQ_LugL
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:50:48 GMT
via: 1.1 varnish
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 1605
x-timer: S1675489849.753106,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 560
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 898f2627abdf76442cfedb15f426cc3e
e184e19ebed3935474b0b56f5c4556f466dedebc
730d6522e76cc14dbd5cdf5867fcd1fab9fc93af00c643062e7fb50d1dc6e1fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=142440
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:48 GMT
Etag: "63dd7ba0-1d7"
Expires: Sun, 05 Feb 2023 21:24:48 GMT
Last-Modified: Fri, 03 Feb 2023 21:24:48 GMT
Server: nginx
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 898f2627abdf76442cfedb15f426cc3e
e184e19ebed3935474b0b56f5c4556f466dedebc
730d6522e76cc14dbd5cdf5867fcd1fab9fc93af00c643062e7fb50d1dc6e1fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=142440
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:48 GMT
Etag: "63dd7ba0-1d7"
Expires: Sun, 05 Feb 2023 21:24:48 GMT
Last-Modified: Fri, 03 Feb 2023 21:24:48 GMT
Server: nginx
Content-Length: 471
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/63c82c8570159/63c82c857015f.png
200 OK 40 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/63c82c8570159/63c82c857015f.png
IP
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b946d33f7605518197ebdd02d0f7920
ec6fcae098ec274ead2a6210bb346f57f28f481c
bd2b3e2d96983bfe63829b97571a57938d8811d0d36645870e30b3e5f3c10413
GET /king-assets.yampi.me/dooki/63c82c8570159/63c82c857015f.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ONmY1L6AuspgSXBRcfSqvUuOqOqJ22IMMe5YRNhD5AN20psXbXgmRDAOLVgUJvLm/BqKfIiObcs=
x-amz-request-id: FAQHD29AJ6VSNKRD
Date: Sat, 04 Feb 2023 05:50:49 GMT
Last-Modified: Wed, 18 Jan 2023 17:29:42 GMT
ETag: "1b946d33f7605518197ebdd02d0f7920"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 40342
ocsp.digicert.com/
200 OK 471 B IP
Hash 511a81ddc5300e50f0bca90cd2e438d6
28322a98c7e3e738eb5baf49ca9d0f715bab4e77
4370ace82b76df0f6d6c5e82a93fa0c99ae11feea98d95f720faf28c3f407dd0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2383
Cache-Control: max-age=150223
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:50:49 GMT
Etag: "63dd90ba-1d7"
Expires: Sun, 05 Feb 2023 23:34:32 GMT
Last-Modified: Fri, 03 Feb 2023 22:54:50 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
www.mercadolibre.com/jms/lgz/background?dps=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad
200 OK 3.2 kB URL HTTP/2 www.mercadolibre.com/jms/lgz/background?dps=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (716)
Hash 53fc0c9034bb2d9174e141346731b22f
d51a314be8d99e3a2d04cbc3145dd6c36837224f
73a2085a0c57751277b80fd416416ac47e0a40b3ee0c56afaef734156e0a14c0
GET /jms/lgz/background?dps=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Sat, 04 Feb 2023 05:50:49 GMT
server: Tengine
set-cookie: _d2id=7710ddf8-2e07-4660-a203-10382b965672-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 04 Feb 2024 05:50:49 GMT
access-control-allow-origin: *
x-transaction-name: cross_domain_profiler
content-encoding: gzip
x-envoy-upstream-service-time: 4
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 7710ddf8-2e07-4660-a203-10382b965672
x-request-device-id: 7710ddf8-2e07-4660-a203-10382b965672
x-d2id: 7710ddf8-2e07-4660-a203-10382b965672
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mOL0lSvPVovK3PCxJagHKeGa6rFaUwNtTIJYdPI9MIQ1VcnhAd-MOQ==
X-Firefox-Spdy: h2
bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1223.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=5878&ck=0&s=5ae5942a7446ca1b&ref=https://seguro.sg-multimarcas.com/checkout/address
200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1223.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=5878&ck=0&s=5ae5942a7446ca1b&ref=https://seguro.sg-multimarcas.com/checkout/address
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1223.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=5878&ck=0&s=5ae5942a7446ca1b&ref=https://seguro.sg-multimarcas.com/checkout/address HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 964
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:50:50 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 7941218a3e94b515-OSL
Access-Control-Allow-Origin: https://seguro.sg-multimarcas.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
api.mercadopago.com/v1/device_sessions/anonymous_device_session
200 OK 0 B URL HTTP/2 api.mercadopago.com/v1/device_sessions/anonymous_device_session
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/device_sessions/anonymous_device_session HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://seguro.sg-multimarcas.com/
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:50 GMT
content-type: application/json; charset=utf-8
content-length: 0
access-control-allow-origin: https://seguro.sg-multimarcas.com
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-allow-headers: content-type
access-control-max-age: 86400
x-request-id: 2071458d-34b9-4691-968b-a99ef456cdbc
x-trace-digest-73: XMAkMgPj+n7FA0XmxG6XFQt9E56NCBl5qvEUuLW+SPzEaDY1HSWeYx4KYGT33LC1
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-73,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: 659c5bb5a217c9d4
x-b3-traceid: 659c5bb5a217c9d4
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
timing-allow-origin: *
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background?dps=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad
200 OK 3.5 kB URL HTTP/2 www.mercadolibre.com/jms/lgz/background?dps=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad
IP
Hash 417f1180ff3f534a8b3e760a0af21d59
5e4e96471610d45f0db9f99e6b16157053cc59f2
c1995f30c3b6ac7cf4a3f09e0042307a88411658107d2c612792cb220b3b1784
GET /jms/lgz/background?dps=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Sat, 04 Feb 2023 05:50:49 GMT
server: Tengine
set-cookie: _d2id=7ebd6334-1672-4bdd-ba77-a9963cde72f8-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 04 Feb 2024 05:50:49 GMT
access-control-allow-origin: *
x-transaction-name: cross_domain_profiler
content-encoding: gzip
x-envoy-upstream-service-time: 9
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 7ebd6334-1672-4bdd-ba77-a9963cde72f8
x-request-device-id: 7ebd6334-1672-4bdd-ba77-a9963cde72f8
x-d2id: 7ebd6334-1672-4bdd-ba77-a9963cde72f8
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: N4V_geal-Q1F9PaNRe0YIFU0YXnYdcS_fDX-Ut0BbbEPgLdDmt2vXQ==
X-Firefox-Spdy: h2
seguro.sg-multimarcas.com/e/t
200 OK 0 B URL HTTP/2 seguro.sg-multimarcas.com/e/t
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.sg-multimarcas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjkzMWNmNjc2NDNkOTI5YjUiLCJ0ciI6ImI4MTkzNzkwMTM1MzNmMDk2NGYzMTc5M2M5ZGYwMzUwIiwidGkiOjE2NzU0ODk4ODEzMTd9fQ==
traceparent: 00-b819379013533f0964f31793c9df0350-931cf67643d929b5-01
tracestate: 2935249@nr=0-1-2935249-1134170823-931cf67643d929b5----1675489881317
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 366
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IldVTTV0YVlPWmxTMmppVk9rS08xM3c9PSIsInZhbHVlIjoiMFc5MVZ5NTVBU2dcLzJ3Z3FPM3YwdE1SXC9SWDlhWmUwN01tUjBsc01qRUdrbkdUZ1JqT1R6QTRXeFUzUXExd3ZzdyswQkJPR1VzV1dyWTRrdUZ5Z1BGdz09IiwibWFjIjoiNDFjMzQwNjE1OGE3NGVjNjJjMThmNTlkMzM2ZTQ2M2E2YmZkNDczNGM1NDhmMTI5MzUwMTczYWJhZTZiYmNkMyJ9; bubbstore_checkout=eyJpdiI6IlwvanFoNHo2YVh0Uk1BTDdqaE5WajV3PT0iLCJ2YWx1ZSI6ImVqZXJ4bGpRcm9TdjJndzkwZ1wvVEdSaEp5NFp2bENZUUxnVE9oN0ZBRFJERVFsOGd1V2l6QWxnM2JuTDV5NW42SEtlVWhKQUJvU1ZNQ3RIcEphV0xoZz09IiwibWFjIjoiNjliOTgyMjhkYjhmZjI5NjcwZTQwNzNmZjFjMGI5OGJlYjZmZDFiNDUwYWYzMDJlYWI2MDllNGJhYmY3YjUxOCJ9; sg-multimarcas3_cart=eyJpdiI6IlZtUmVCOENVMmRmaE5nc21hZTVpVEE9PSIsInZhbHVlIjoiWGpmSm5XQ2pXWkI4MEJsVHlYc1QxMitFNE10SUNWVDNLYzNvQ21uQkFwWkFTbDM2NjAwa1FPODdHTW1teWVPU2VzalRBeVFXaUVvSHJtYnZPVWNTMmc9PSIsIm1hYyI6IjBiZjc1MGVjMGEyZjYxYTM4MWVlMTVjMjA2ZmE0OTY3OTI1ZGQ5Zjk5Y2YzZDNiY2Q0ZGQxZDU2ZTkxMWRkNzQifQ%3D%3D; cart_auth_311427597=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%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:47 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6Imo0WjNBNGF2UGhmUXo1TXJZeWpWaUE9PSIsInZhbHVlIjoieFBadW9sNlwvODNmbXIwd2xiaU1JbnM2dTFlcmNIdm1cLyt0VktBbDIydUdHc1dEZWwraHd5NUJDY3NmcDRhQzVqeFd5SmM1VlA5T1pJZ1hxcGJCaFE1QT09IiwibWFjIjoiNzgzYWFmYWViNWFmOGZmNDI3NmVmNGQ1YTQxNWZhODk0ZmJjYmVmYjQ4MDYyYThiYjRkYWU5ZjYxNWM5MTE4MiJ9; expires=Sat, 04-Feb-2023 08:50:47 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkJNMTdjRmtDdUVOQ05naUVMWVF2R0E9PSIsInZhbHVlIjoibGFcL3JVRDNJemtvc1hjbWNBR3hBUXhQYmcrWUlGS0xzWUFtRlkzc3Z3THMreWNmazQ4QllcL2VuTlpsMzB6YmZPTmlicVRXUVl3YTZqQURla0ZUUENiZz09IiwibWFjIjoiODdjZDViYzhjZGExNmQ2NjM3ODU3MDczOWM5ZTg0MGQ5ZGJkODdiMGM2NjE3Njg4YTE0ODU2NzE0NTViOGU0NCJ9; expires=Sat, 04-Feb-2023 08:50:47 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApQCQENHh5UFUMDWQEDXQUBA1VQDwUEBVBXFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.yampi.me/jquery/jquery.js
200 OK 0 B URL HTTP/2 cdn.yampi.me/jquery/jquery.js
IP
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:46 GMT
content-type: application/javascript
x-amz-id-2: b8J52wSEpze4FlN3dX2TqWupD/sySsVQvoB5Jpvti0cedxLHeGKRaRv5M+2xmF8XdHnOA+cVbrg=
x-amz-request-id: BJMNA4FFS98BPTKM
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4611
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rlIAmQlDV30NA5YTDMhOEUQHKneXW%2F2Llia%2FGazIhNu6qyLZ92hskmh4G13EgwqtFegGWXVkXKDh1PLXxz4%2Fpsvy9DJMs5VNw14Sd5NpjCCrDU4v%2Fu55B7cteIH0dg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794121741a5eb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.mercadolivre.com/jms/mlb/lgz/background/session/armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad?background=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad&message=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%3D
200 OK 0 B URL HTTP/2 www.mercadolivre.com/jms/mlb/lgz/background/session/armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad?background=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad&message=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%3D
IP
GET /jms/mlb/lgz/background/session/armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad?background=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad&message=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%3D HTTP/1.1
Host: www.mercadolivre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 04 Feb 2023 05:50:49 GMT
server: Tengine
set-cookie: _d2id=a7b6aaf7-c3e0-4670-bfd7-10bc870b2c17-n; Path=/; Domain=.mercadolivre.com; Expires=Sun, 04 Feb 2024 05:50:49 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
content-encoding: gzip
x-envoy-upstream-service-time: 2
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: a7b6aaf7-c3e0-4670-bfd7-10bc870b2c17
x-request-device-id: a7b6aaf7-c3e0-4670-bfd7-10bc870b2c17
x-d2id: a7b6aaf7-c3e0-4670-bfd7-10bc870b2c17
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: o6q-hLN9Cr0PQDIM4AXGCrPCDnPzJJ0MbBwvWYjAmxx84J1qrVrKQg==
X-Firefox-Spdy: h2
seguro.sg-multimarcas.com/checkout/address
200 OK 0 B URL HTTP/2 seguro.sg-multimarcas.com/checkout/address
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
GET /checkout/address HTTP/1.1
Host: seguro.sg-multimarcas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImtYbkJybURYQUNmMHdYV3laU0hUS2c9PSIsInZhbHVlIjoiVXpEcTJWTkZVTU1mQ3dLMndzQkNlcXhrdEdZTVlwQ0Y2R0VSQmFzdVNDT2ZZT055Uk1ka2c0WDQ0U3dUdXZ3U3RSUElCN3IwRWp1NUhLa2hKWmE0ekE9PSIsIm1hYyI6IjhkYzk3OTk5MDE3MTFhNTA5YmQ1MTNlOGFkNzY2OTM1MTNlNTUxNmUzZTFiZTI1OGU1MjFkOTRkMDI3ZjViOWIifQ%3D%3D; bubbstore_checkout=eyJpdiI6Ijkzd2ZseDBJU284S0NEVjg2d3FKSFE9PSIsInZhbHVlIjoiT3lEaXNUeUVWdVNCalhNcGNuNlwvbk1hXC9HK1E5UlREdWpzUzJwbVVzNkZ5NnZkRldzNVJ2VXBhMXNEYWxOczRYSjR0Mmg1RGc5XC81d0MxZ0FxU0g5aEE9PSIsIm1hYyI6Ijg0MDM4YmYzMDJiZGE3MDA0MzNkMzFiZGNmZjM3MDYxOGQ5M2RkNDhlY2Y5ODYxNWY4OTgxN2E4OGU2N2I1NjcifQ%3D%3D; sg-multimarcas3_cart=eyJpdiI6IlZtUmVCOENVMmRmaE5nc21hZTVpVEE9PSIsInZhbHVlIjoiWGpmSm5XQ2pXWkI4MEJsVHlYc1QxMitFNE10SUNWVDNLYzNvQ21uQkFwWkFTbDM2NjAwa1FPODdHTW1teWVPU2VzalRBeVFXaUVvSHJtYnZPVWNTMmc9PSIsIm1hYyI6IjBiZjc1MGVjMGEyZjYxYTM4MWVlMTVjMjA2ZmE0OTY3OTI1ZGQ5Zjk5Y2YzZDNiY2Q0ZGQxZDU2ZTkxMWRkNzQifQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:45 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IldVTTV0YVlPWmxTMmppVk9rS08xM3c9PSIsInZhbHVlIjoiMFc5MVZ5NTVBU2dcLzJ3Z3FPM3YwdE1SXC9SWDlhWmUwN01tUjBsc01qRUdrbkdUZ1JqT1R6QTRXeFUzUXExd3ZzdyswQkJPR1VzV1dyWTRrdUZ5Z1BGdz09IiwibWFjIjoiNDFjMzQwNjE1OGE3NGVjNjJjMThmNTlkMzM2ZTQ2M2E2YmZkNDczNGM1NDhmMTI5MzUwMTczYWJhZTZiYmNkMyJ9; expires=Sat, 04-Feb-2023 08:50:45 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlwvanFoNHo2YVh0Uk1BTDdqaE5WajV3PT0iLCJ2YWx1ZSI6ImVqZXJ4bGpRcm9TdjJndzkwZ1wvVEdSaEp5NFp2bENZUUxnVE9oN0ZBRFJERVFsOGd1V2l6QWxnM2JuTDV5NW42SEtlVWhKQUJvU1ZNQ3RIcEphV0xoZz09IiwibWFjIjoiNjliOTgyMjhkYjhmZjI5NjcwZTQwNzNmZjFjMGI5OGJlYjZmZDFiNDUwYWYzMDJlYWI2MDllNGJhYmY3YjUxOCJ9; expires=Sat, 04-Feb-2023 08:50:45 GMT; Max-Age=10800; path=/; httponly
cart_auth_311427597=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%3D%3D; expires=Sat, 04-Feb-2023 06:00:45 GMT; Max-Age=600; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
api.mercadopago.com/v1/device_sessions/web_device
200 OK 0 B URL HTTP/2 api.mercadopago.com/v1/device_sessions/web_device
IP
POST /v1/device_sessions/web_device HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 48
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:47 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://seguro.sg-multimarcas.com
x-request-id: 8884f8dc-165c-43bd-bf0b-5e74533746c8
x-trace-digest-73: Etlvc2V96FobRmffJ+n2RNHDP8mW8czLXAltLoMUk3VI2qefdosp6257muyspZr+
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-73,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: 64cb8712b65deebc
x-b3-traceid: 64cb8712b65deebc
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
access-control-allow-credentials: true
vary: Accept-Encoding, Accept,Accept-Encoding
cache-control: max-age=0
set-cookie: profile=1675489847495;Path=/;Max-Age=220752000;HttpOnly;SameSite=none;Secure
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: Content-Type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background/session/armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad?background=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D
200 OK 0 B URL HTTP/2 www.mercadolibre.com/jms/lgz/background/session/armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad?background=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D
IP
GET /jms/lgz/background/session/armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad?background=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 04 Feb 2023 05:50:49 GMT
server: Tengine
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
set-cookie: _d2id=36c56ce8-1542-4a82-8bae-5ea4ad382917-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 04 Feb 2024 05:50:49 GMT
dsid=be542d54-7d40-43f5-b0f8-3d2f5cc0b24c-1675489849239;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
edsid=4e62352f-d571-4867-9c2c-2f2b8aaed8c0-1675489849239;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 27
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 36c56ce8-1542-4a82-8bae-5ea4ad382917
x-request-device-id: 36c56ce8-1542-4a82-8bae-5ea4ad382917
x-d2id: 36c56ce8-1542-4a82-8bae-5ea4ad382917
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: crcqmPZdXgGVfxGP_okecn0AoOZZjjwSmRz729VNRZfHkFxA8NjJrw==
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background/session/armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiI2ZjkwNjllNi02NGI3LTQ2M2QtYmVjYy1hODBjMWMwOTk3MzQtMTY3NTQ4OTg0OTIxNSIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiMDA1ZjU3N2UtZWM1Mi00MWVjLWJkNDktMDc0NmY2OGVjOWEwLTE2NzU0ODk4NDkyMTUifQ%3D%3D%22%7D&callback=dp_jsonp.process
200 OK 0 B URL HTTP/2 www.mercadolibre.com/jms/lgz/background/session/armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiI2ZjkwNjllNi02NGI3LTQ2M2QtYmVjYy1hODBjMWMwOTk3MzQtMTY3NTQ4OTg0OTIxNSIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiMDA1ZjU3N2UtZWM1Mi00MWVjLWJkNDktMDc0NmY2OGVjOWEwLTE2NzU0ODk4NDkyMTUifQ%3D%3D%22%7D&callback=dp_jsonp.process
IP
GET /jms/lgz/background/session/armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiI2ZjkwNjllNi02NGI3LTQ2M2QtYmVjYy1hODBjMWMwOTk3MzQtMTY3NTQ4OTg0OTIxNSIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiMDA1ZjU3N2UtZWM1Mi00MWVjLWJkNDktMDc0NmY2OGVjOWEwLTE2NzU0ODk4NDkyMTUifQ%3D%3D%22%7D&callback=dp_jsonp.process HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mercadolibre.com/jms/lgz/background?dps=armor.2f3b2cb74a1db90b92d1336dd472c674ee7745e40fdfc06b494fb16f921b3df2f6912fc5e95c8f278764c1cf967be3cafa7f736c1458b84e9872a273a9f45a9a67fe40196c3db15fdd33172b98cf02854b30f2222cd14661c78466d5dd13bab7.2a6019b88a56566d8635599d26c0e2ad
Connection: keep-alive
Cookie: dsid=be542d54-7d40-43f5-b0f8-3d2f5cc0b24c-1675489849239; edsid=4e62352f-d571-4867-9c2c-2f2b8aaed8c0-1675489849239
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
date: Sat, 04 Feb 2023 05:50:49 GMT
server: Tengine
set-cookie: _d2id=856ef259-1f81-4026-91dd-77d0d6a16e0b-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 04 Feb 2024 05:50:49 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_cross_domain_profiling
content-encoding: gzip
x-envoy-upstream-service-time: 1
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 856ef259-1f81-4026-91dd-77d0d6a16e0b
x-request-device-id: 856ef259-1f81-4026-91dd-77d0d6a16e0b
x-d2id: 856ef259-1f81-4026-91dd-77d0d6a16e0b
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pIuTt08lpFicGszWk0KdhazzFJ6_rXVaXU4n-U5T-zrhK18GWG1Wog==
X-Firefox-Spdy: h2
cdn.yampi.io/ana/ana.min.js?t=1675555200000
200 OK 0 B URL HTTP/2 cdn.yampi.io/ana/ana.min.js?t=1675555200000
IP
GET /ana/ana.min.js?t=1675555200000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:47 GMT
content-type: application/javascript
x-amz-id-2: Y4HCWoota7bOp6v/moCK5H/WC/r+RmQIUlHlg2BZxLVNlT66IrLLzi2s5jtzRim+yxXTE1tpHPQ=
x-amz-request-id: 066Q4S32AQQVQNV7
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
age: 3015
expires: Sun, 04 Feb 2024 05:50:47 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 79412177ef3cb524-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
seguro.sg-multimarcas.com/cart/recomm
200 OK 0 B URL HTTP/2 seguro.sg-multimarcas.com/cart/recomm
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
GET /cart/recomm HTTP/1.1
Host: seguro.sg-multimarcas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6Ijk3YWFhYzkzYTRhYmYzYTAiLCJ0ciI6IjczNjQwZTZiYTdmMTIwNjUxNGRlNjExMGFiMzkxN2YwIiwidGkiOjE2NzU0ODk4ODEzMDN9fQ==
traceparent: 00-73640e6ba7f1206514de6110ab3917f0-97aaac93a4abf3a0-01
tracestate: 2935249@nr=0-1-2935249-1134170823-97aaac93a4abf3a0----1675489881303
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IldVTTV0YVlPWmxTMmppVk9rS08xM3c9PSIsInZhbHVlIjoiMFc5MVZ5NTVBU2dcLzJ3Z3FPM3YwdE1SXC9SWDlhWmUwN01tUjBsc01qRUdrbkdUZ1JqT1R6QTRXeFUzUXExd3ZzdyswQkJPR1VzV1dyWTRrdUZ5Z1BGdz09IiwibWFjIjoiNDFjMzQwNjE1OGE3NGVjNjJjMThmNTlkMzM2ZTQ2M2E2YmZkNDczNGM1NDhmMTI5MzUwMTczYWJhZTZiYmNkMyJ9; bubbstore_checkout=eyJpdiI6IlwvanFoNHo2YVh0Uk1BTDdqaE5WajV3PT0iLCJ2YWx1ZSI6ImVqZXJ4bGpRcm9TdjJndzkwZ1wvVEdSaEp5NFp2bENZUUxnVE9oN0ZBRFJERVFsOGd1V2l6QWxnM2JuTDV5NW42SEtlVWhKQUJvU1ZNQ3RIcEphV0xoZz09IiwibWFjIjoiNjliOTgyMjhkYjhmZjI5NjcwZTQwNzNmZjFjMGI5OGJlYjZmZDFiNDUwYWYzMDJlYWI2MDllNGJhYmY3YjUxOCJ9; sg-multimarcas3_cart=eyJpdiI6IlZtUmVCOENVMmRmaE5nc21hZTVpVEE9PSIsInZhbHVlIjoiWGpmSm5XQ2pXWkI4MEJsVHlYc1QxMitFNE10SUNWVDNLYzNvQ21uQkFwWkFTbDM2NjAwa1FPODdHTW1teWVPU2VzalRBeVFXaUVvSHJtYnZPVWNTMmc9PSIsIm1hYyI6IjBiZjc1MGVjMGEyZjYxYTM4MWVlMTVjMjA2ZmE0OTY3OTI1ZGQ5Zjk5Y2YzZDNiY2Q0ZGQxZDU2ZTkxMWRkNzQifQ%3D%3D; cart_auth_311427597=eyJpdiI6IjZmM1dZOTJmRzZ5UXJpKytXTlZtZUE9PSIsInZhbHVlIjoiSlo3Vk01c21iNjd4cktlRFVTd2c1dGRBTnhcL3ZxU0dQVG4yOE9RNUlOdmVBcWc4cmtleWFxMmV1VDBNMWYxVlVWbTZod1wvNytWU0VFaUYwelN5KzZ3Tm03Uk1QY25CQVZyaXlIeHJSd3hwQitEbXk4NVgycVZLVUtjVkZaTHRIelVMV2paZ0FaRXBoXC91V1FHRGFpWlwvcFwvUkExbEtRaThya2FMOWFYaDR6TUpENlp2R3dNWFhPWG81ekl4U2sxZXZlYzRUWFwvMzZXckZxNHl2YjFyM2RMaGNXc3JjN0pcLytQNnEra3NFMW5cLzgyTllsaWY4SDFTYkxqckdmK1wvbW9XczNvaXJDTGVNRG1ncHc2T0pjQnA1N05LWXl5aHFlZUZxVU1seFR0K1NEdGxYVU1kV2VRNzg0OTFRSkVnS3FneFhuNks1T2xCOHQ3RWZadkptZkgxa1NDVlpjckI1Q09jMjB5R1FnOXZkcG05RHNGUUpJQ1hZM25BVVdtU0dYeW5jMlEzaDhRVWtjRDRXbXYxMkdSYk50elwvaDRaZlBuWDVVekZQR0xIVjN2a1dpRmgzWWVRTnhMKzR5SXhzZ2piZEJ1ZzFaN1hKTWN2SDdNNmtqbXF2ZHhVYUloSkRcL0xKOXRYOEx2YTRtQlU3WmhyTDdCUmN5Sm5GSU5LbVhISEdIVEhvZHFwVlBrVVZsM2VrdGR6QWs1b3UzZ3R1S0tvWVR5NDMzaTE4SnVyWkEwRWg4NlI4Tm52XC8zb1Y3WWduXC92VDUyQ3hJenFySkswUmp0S2lyQVB1U3c9PSIsIm1hYyI6ImNkZDUwNzYwMjQ3YTY3ZWIxMTY4YzU1YjNlNDUxMDU0ZTVjZTQ3ZjBlZTUxOTYxY2JlYjE4Mjc1MmQ5NDZhNzIifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:47 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6ImRwMHBlalByVkd5bUZNVnNDSDFIdmc9PSIsInZhbHVlIjoiWldEUk1rVnExcFk1dW1MTTd1TUpGTkE0d1Rta1hxUUNhd1lOT0M3VVVtY1NPbmt6R3RtZ2lSS1c2dmVGTXRhYVpTSUJoWDlNN3YwOEFKSFl2K3RIYkE9PSIsIm1hYyI6IjdkZTVhZDRjYTcxNTRjNzI3ZWFiYzZkOGRkMzllNjg0NmQ3NjU1NDVlNDMwZTQ1OGYyNTAxMGVjZjIyMjY2MmMifQ%3D%3D; expires=Sat, 04-Feb-2023 08:50:47 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IllcL1JDZ0pnUTVhN0dUWHBRb1R1OVJ3PT0iLCJ2YWx1ZSI6IndpT0NjNjVQWnFlc3Q5dGlXRDBtXC9SMFJlb2M1QmJHWFpQVWFXWjFTTHl0SUdva3V4QUFGM0VYcG9XZHJZRzNseGN3YWxvcXhnalhOTmVcL3BHc1N4SlE9PSIsIm1hYyI6IjI5YjU0ZDA2YmI5ZWUzNDZmNzk3Zjg1OTFiNmJmNTc0MGQ2M2NiNzExOWIzYWQxZDdkNWY0NDBlMzkyM2YwZDQifQ%3D%3D; expires=Sat, 04-Feb-2023 08:50:47 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFtSQhBPEFJSWAsJExoDTFZTUgBSFFIWCAcCBV0VTABNEQdQBFRTU1FZAAlVVVIHBVNESFdXXxEDPg==
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
api.mercadopago.com/v1/devices/widgets?referer=https%3A//seguro.sg-multimarcas.com
200 OK 0 B URL HTTP/2 api.mercadopago.com/v1/devices/widgets?referer=https%3A//seguro.sg-multimarcas.com
IP
POST /v1/devices/widgets?referer=https%3A//seguro.sg-multimarcas.com HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 45
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:47 GMT
content-type: application/json
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: public_get_session_widget
access-control-allow-origin: https://seguro.sg-multimarcas.com
access-control-allow-credentials: true
set-cookie: profile=1675489847475;Path=/;Max-Age=220752000;HttpOnly;SameSite=none;Secure
content-encoding: gzip
x-content-type-options: nosniff
x-request-id: 4b8dd0c2-6ea1-4498-9ea8-aae264435ad3
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: Content-Type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
X-Firefox-Spdy: h2
seguro.sg-multimarcas.com/e/t
200 OK 0 B URL HTTP/2 seguro.sg-multimarcas.com/e/t
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.sg-multimarcas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjliNTFlNGUzMjBmODVjODkiLCJ0ciI6IjRmM2FiODRkMjBiNmY0N2M1N2FmMzUwZGU0NDI4NTIwIiwidGkiOjE2NzU0ODk4ODEzMTl9fQ==
traceparent: 00-4f3ab84d20b6f47c57af350de4428520-9b51e4e320f85c89-01
tracestate: 2935249@nr=0-1-2935249-1134170823-9b51e4e320f85c89----1675489881319
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 358
Origin: https://seguro.sg-multimarcas.com
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IldVTTV0YVlPWmxTMmppVk9rS08xM3c9PSIsInZhbHVlIjoiMFc5MVZ5NTVBU2dcLzJ3Z3FPM3YwdE1SXC9SWDlhWmUwN01tUjBsc01qRUdrbkdUZ1JqT1R6QTRXeFUzUXExd3ZzdyswQkJPR1VzV1dyWTRrdUZ5Z1BGdz09IiwibWFjIjoiNDFjMzQwNjE1OGE3NGVjNjJjMThmNTlkMzM2ZTQ2M2E2YmZkNDczNGM1NDhmMTI5MzUwMTczYWJhZTZiYmNkMyJ9; bubbstore_checkout=eyJpdiI6IlwvanFoNHo2YVh0Uk1BTDdqaE5WajV3PT0iLCJ2YWx1ZSI6ImVqZXJ4bGpRcm9TdjJndzkwZ1wvVEdSaEp5NFp2bENZUUxnVE9oN0ZBRFJERVFsOGd1V2l6QWxnM2JuTDV5NW42SEtlVWhKQUJvU1ZNQ3RIcEphV0xoZz09IiwibWFjIjoiNjliOTgyMjhkYjhmZjI5NjcwZTQwNzNmZjFjMGI5OGJlYjZmZDFiNDUwYWYzMDJlYWI2MDllNGJhYmY3YjUxOCJ9; sg-multimarcas3_cart=eyJpdiI6IlZtUmVCOENVMmRmaE5nc21hZTVpVEE9PSIsInZhbHVlIjoiWGpmSm5XQ2pXWkI4MEJsVHlYc1QxMitFNE10SUNWVDNLYzNvQ21uQkFwWkFTbDM2NjAwa1FPODdHTW1teWVPU2VzalRBeVFXaUVvSHJtYnZPVWNTMmc9PSIsIm1hYyI6IjBiZjc1MGVjMGEyZjYxYTM4MWVlMTVjMjA2ZmE0OTY3OTI1ZGQ5Zjk5Y2YzZDNiY2Q0ZGQxZDU2ZTkxMWRkNzQifQ%3D%3D; cart_auth_311427597=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%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:47 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6Ijl0K0lNVUluTFErR25RSm15VlZyOXc9PSIsInZhbHVlIjoiVHBaS24zK3RrTTJraEtHQWlBWGFoWVlPck56aXZZK2Y3cUp1S2IxTWE5UERkXC9iRGp3M0pDb2VZT3RKVUw0XC9lU1R3QU1RS3FTb0d5WlV4ZjJIRkVnZz09IiwibWFjIjoiNTM5MzBlMTQ5ZTQ2YmYxNGE1NTliMDAxM2Q5ZDczYWZlY2M4MGIyZTcwOWI0NGIyOWNkNGYwMDBhYjYzZTY5ZiJ9; expires=Sat, 04-Feb-2023 08:50:47 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6Im9leWNQd2hta0lDZW81XC9BbGtEWUZRPT0iLCJ2YWx1ZSI6InVKQ2RJRkRXTHhLUm9GckJ3b21DWWdVXC9PQjVGOXZ1YnFaek5ZSjZLcVd2OHpyRUFmMnRYbGhkZmh3aEQ0UGdFS3ZoNHMrVEF2N2NTbjlFbzhndXh3QT09IiwibWFjIjoiOTlmYTk4MWIyN2VlNGNmNmQ5Nzk3YjNkYmJiYTM5OGM5N2QyYmQ1NTJlOTM0MjY4ZjJiMGU0MTE1MWVmOTU1YyJ9; expires=Sat, 04-Feb-2023 08:50:47 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background/session/armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229?background=armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D
200 OK 0 B URL HTTP/2 www.mercadolibre.com/jms/lgz/background/session/armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229?background=armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D
IP
GET /jms/lgz/background/session/armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229?background=armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 04 Feb 2023 05:50:49 GMT
server: Tengine
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
set-cookie: _d2id=f795330a-2b0f-4290-903c-3546bb4e2a56-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 04 Feb 2024 05:50:49 GMT
dsid=629b4c7a-4cd5-4ad2-b074-1b97018356f1-1675489849214;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
edsid=94f99821-fe1f-4d11-af46-95255dab5272-1675489849214;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 10
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: f795330a-2b0f-4290-903c-3546bb4e2a56
x-request-device-id: f795330a-2b0f-4290-903c-3546bb4e2a56
x-d2id: f795330a-2b0f-4290-903c-3546bb4e2a56
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ig3cD5Wh4umFh77YPnuiKubqjH3-aG3VqDXCZoAGV-1mAQu2vtFefA==
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5
200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5
IP
GET /checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:50:46 GMT
content-type: text/css
x-amz-id-2: j/S4cRK7h2RJJ8oPBInTkUyHWMs2uLy5Y2k2gv7J5HVqK6+oYOtQiL9kw5ONDjsNoD1SA2PVHdI=
x-amz-request-id: CW5G8BWSRMPMAXS4
last-modified: Tue, 17 Jan 2023 17:16:35 GMT
x-amz-version-id: 6DNQN8Tr5zNrG9AbFAdSPatqVsIP8Y4C
etag: W/"0f68d2669d40348ccb7bc9a9d17328f5"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3015
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WvXhMfj7IaAoLMCVVzjmJZQCTRvJrlMr5jLb5WCRSE69%2FLARrvkzD%2F6XBxHZhgmTKGTdddhExqNEAhaN03S7GoMGvqb%2BPvVkQZQposiSh3KW8uxMsfOjrS7gsiFYK60Hynxa04KBTcjU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794121740a51b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.mercadolivre.com/jms/mlb/lgz/background/session/armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229?background=armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229&message=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%3D
200 OK 0 B URL HTTP/2 www.mercadolivre.com/jms/mlb/lgz/background/session/armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229?background=armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229&message=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%3D
IP
GET /jms/mlb/lgz/background/session/armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229?background=armor.fe49ff7746458be2a22ec6a9a4a22c7e20061752169e9fe691b43af85b279492d2e29ffeea64f0dc05d359e0fd5b42521e03cda431e68c69ed4909eb2167ed0d40078dd63b6584c13f5b758647bf7aef373196e97170d1d1587b1505c7916d03.22a877c56f911d3808a65cd0ed115229&message=eyJhZF9ibG9jayI6ZmFsc2UsImNhbnZhcyI6IjdiZTAwMmIyODcyMDYzYTM0ZTQzZjM0YmYxYjNkMzc0IiwiY29ubmVjdGlvbiI6bnVsbCwiY29va2llX2VuYWJsZWQiOnRydWUsImRldmljZV9tZW1vcnkiOjAsImRvX25vdF90cmFjayI6InVuc3BlY2lmaWVkIiwiZXRhZyI6IjBkNGVkYjQzLTVkNzktNDAwOS1iZTQyLTUwMjg5ODc3YTBlYy0xNjc1NDg5ODQ4MTMyIiwiZm9udHMiOnsib3MiOjI5MTQsIm90aGVyX29zIjoiW1wie1xcXCJQYWxhdGlubyBMaW5vdHlwZVxcXCIgOjJ9XCIsXCJ7XFxcIlVSVyBHb3RoaWMgTFxcXCIgOjB9XCIsXCJ7XFxcIlVSVyBCb29rbWFuIExcXFwiIDowfVwiLFwie1xcXCJVUlcgUGFsbGFkaW8gTFxcXCIgOjB9XCIsXCJ7XFxcIk5pbWJ1cyBTYW5zIExcXFwiIDowfVwiLFwie1xcXCJCb29rbWFuIE9sZHN0eWxlXFxcIiA6NX1cIixcIntcXFwiSGVsdmV0aWNhXFxcIiA6M31cIixcIntcXFwiQ291cmllclxcXCIgOjN9XCIsXCJ7XFxcIkJpdHN0cmVhbSBWZXJhIFNhbnNcXFwiIDozfVwiLFwie1xcXCJCaXRzdHJlYW0gVmVyYSBTYW5zIE1vbm9cXFwiIDozfVwiLFwie1xcXCJCaXRzdHJlYW0gVmVyYSBTZXJpZlxcXCIgOjN9XCIsXCJ7XFxcIk5ldyBDZW50dXJ5IFNjaG9vbGJvb2tcXFwiIDozfVwiLFwie1xcXCJOaW1idXMgTW9ub1xcXCIgOjB9XCIsXCJ7XFxcIkNlbnR1cnkgU2Nob29sYm9vayBMXFxcIiA6MH1cIixcIntcXFwiVVJXIENoYW5jZXJ5IExcXFwiIDowfVwiLFwie1xcXCJEZWphVnUgU2FucyBNb25vXFxcIiA6MH1cIixcIntcXFwiRGVqYVZ1IFNhbnNcXFwiIDowfVwiLFwie1xcXCJEZWphVnUgU2VyaWZcXFwiIDowfVwiXSIsIm5vdF9vcyI6MjkxNH0sImhhcmR3YXJlX2NvbmN1cnJlbmN5IjoxNiwiaGlzdG9yeSI6MSwiaW5jb2duaXRvIjpmYWxzZSwianNfdHlwZSI6ImpzX2hhc2giLCJsYW5nIjoiZW4tVVMiLCJsYW5ndWFnZXMiOlsiZW4tVVMiLCJlbiJdLCJsaXRlcmFsX2NvbG9ycyI6MTc5NjQwNDIyMCwibG9jYWxfc3RvcmFnZSI6dHJ1ZSwibG9naW5fZGV0ZWN0aW9uIjp7Imdvb2dsZSI6ZmFsc2V9LCJtYXRoX251bWJlciI6MTEwMjMuMzg3NDA2MTUwOTQsIm9wZW5fZGF0YWJhc2UiOmZhbHNlLCJwaXhlbF9yYXRpbyI6MSwicGxhdGZvcm0iOiJMaW51eCB4ODZfNjQiLCJ3ZWJnbCI6bnVsbCwicGx1Z2lucyI6e30sInJlc29sdXRpb24iOiIxMDI0eDEyODB4MjQiLCJzY3JlZW4iOnsib3JpZW50YXRpb24iOjAsInR5cGUiOiJsYW5kc2NhcGUtcHJpbWFyeSIsImF2YWlsX2hlaWdodCI6MTAwMiwiYXZhaWxfbGVmdCI6MCwiYXZhaWxfdG9wIjowLCJhdmFpbF93aWR0aCI6MTI4MH0sInNlc3Npb25fc3RvcmFnZSI6dHJ1ZSwidGltZSI6eyJjYW52YXMiOjM0LCJ3ZWJnbCI6MSwidXNlcmZvbnRzIjo3OSwiYnJvd3NlcnBsdWdpbnMiOjAsInBsdWdpbnMiOjAsImluc3RhbGxlZGZvbnRzIjo0OSwiaGFzaCI6MTg2LCJ0b3RhbCI6MTg2fSwidGltZV9iYXNlZF9mcCI6bnVsbCwidGltZV96b25lX25hbWUiOiJVVEMiLCJ0aW1lX3pvbmVfb2Zmc2V0IjowLCJ0b3VjaF9wb2ludHMiOjAsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgeDY0OyBydjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsInZlbmRvciI6IiIsIndpbmRvd19zaXplIjp7ImlubmVyIjoiOTM5eDEyODAiLCJvdXRlciI6IjEwMjR4MTI4MCJ9LCJ3ZWJkcml2ZXIiOmZhbHNlLCJpbnN0YWxsZWRfZm9udHMiOlsiUGFsYXRpbm8iLCJUaW1lcyJdLCJpbnN0YWxsZWRfcGx1Z2lucyI6W10sImxpZ2h0X3ZlcnNpb24iOmZhbHNlLCJyZWZlcmVyIjpudWxsLCJ3ZWJjYW0iOmZhbHNlLCJoYXNfc2Vzc2lvbl9pZCI6dHJ1ZX0%3D HTTP/1.1
Host: www.mercadolivre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.sg-multimarcas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 04 Feb 2023 05:50:49 GMT
server: Tengine
set-cookie: _d2id=7b8397ec-d084-424a-a884-1e5b55337871-n; Path=/; Domain=.mercadolivre.com; Expires=Sun, 04 Feb 2024 05:50:49 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
content-encoding: gzip
x-envoy-upstream-service-time: 22
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 7b8397ec-d084-424a-a884-1e5b55337871
x-request-device-id: 7b8397ec-d084-424a-a884-1e5b55337871
x-d2id: 7b8397ec-d084-424a-a884-1e5b55337871
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8jmnpTWvt0QPH1SJK31KF2W_vHS41hitoRAVBI4zDTEXd7g7OiK21w==
X-Firefox-Spdy: h2
170.82.174.30
23.36.77.32
142.250.74.110
157.240.205.35
93.184.220.29
104.18.0.53
23.227.60.200