| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdfb72f04bd7a4410640c0543bb4bd402 7c63b7e220b337b6a4f39864e11d6aa9e26c38ac b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7324
Expires: Thu, 24 Nov 2022 07:02:36 GMT
Date: Thu, 24 Nov 2022 05:00:32 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash770d09773b5f304acf141fd66a4862b4 5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5 c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4676
Cache-Control: max-age=110920
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:32 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 11:49:13 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash054ff0d1a0a43f7cb1d78dbd34e27f99 3caf54f3de1d6a8c6f6454083f8b8e7dec77db54 fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9323
Expires: Thu, 24 Nov 2022 07:35:55 GMT
Date: Thu, 24 Nov 2022 05:00:32 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashd130218d0e2841f39c99610fe1a2ab90 29fbe1e177ee55c7a61ae0a206afff271cf5f945 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 04:18:55 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2497
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xEzyKi8iN64FE0a2XEt8iWMIxZVjkggmiyqMIl0zDBRMaZd96Qnzded/tLXtiaDAMyciC+h07d4=
x-amz-request-id: TR94W57KHNF6111M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 04:40:16 GMT
age: 1216
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 05:00:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 04:11:11 GMT
cache-control: public,max-age=3600
age: 2962
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/checkout/payment?cart_token=dcccfb70-6b9e-11ed-8c0d-0209f11817a0-637ed56d2b722&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=cb1d01f0-6b9e-11ed-ba77-3dc58798b9bc | 170.82.173.30 | 301 Moved Permanently | 134 B |
URL HTTP/1.1seguro.caixamisteriosa.net/checkout/payment?cart_token=dcccfb70-6b9e-11ed-8c0d-0209f11817a0-637ed56d2b722&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=cb1d01f0-6b9e-11ed-ba77-3dc58798b9bc IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /checkout/payment?cart_token=dcccfb70-6b9e-11ed-8c0d-0209f11817a0-637ed56d2b722&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=cb1d01f0-6b9e-11ed-ba77-3dc58798b9bc HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 24 Nov 2022 05:00:33 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.caixamisteriosa.net:443/checkout/payment?cart_token=dcccfb70-6b9e-11ed-8c0d-0209f11817a0-637ed56d2b722&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=cb1d01f0-6b9e-11ed-ba77-3dc58798b9bc
X-GoCache-CacheStatus: BYPASS
Server: gocache
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hasheb52164d651f5f45416e873aec29eb04 405b29bb7e7cd4367cf82988f8603e53db65f139 ed885e05db822ff30fe951e10b6d4f21e574d053939afca792992a1549a15301
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3279
Cache-Control: max-age=104459
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:33 GMT
Etag: "637de2ad-1d7"
Expires: Fri, 25 Nov 2022 10:01:32 GMT
Last-Modified: Wed, 23 Nov 2022 09:06:53 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe1ad629ef16514a7370af94a6a0096fa 7b3d6be4faae1d3e7c45489f8af5c614cff17f8e d7548296332965340531c7df22969b5da03e77bba41ab7fcd154ff85c1e1ce04
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D7548296332965340531C7DF22969B5DA03E77BBA41AB7FCD154FF85C1E1CE04"
Last-Modified: Tue, 22 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20356
Expires: Thu, 24 Nov 2022 10:39:49 GMT
Date: Thu, 24 Nov 2022 05:00:33 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 54.148.190.4 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.148.190.4:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cCv89QU/Xnka23UTjeRuFQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rkFa0qA9MITCGyCkMTbwcnPHZ6I=
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash072df41d8446f9532f3f2fb071c08103 aa6f2d905402c1c04f884d018a44ae47a8b948e4 5ca67c64582c2bbf1ba55a021ff187889c00b86f9c9ba49e538b06e9545d09c2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1811
Cache-Control: max-age=124953
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:34 GMT
Etag: "637e3879-118"
Expires: Fri, 25 Nov 2022 15:43:07 GMT
Last-Modified: Wed, 23 Nov 2022 15:12:57 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashf591ce87dedc762db2129d0c8ff52cde 73a96eea50dc3fde540f80c815c0554f2c762424 44df87478dd0184e48425cbcda6495b0d28e4d53c824152e7f6561da241cce2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1811
Cache-Control: max-age=172091
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Etag: "637ef09b-117"
Expires: Sat, 26 Nov 2022 04:48:46 GMT
Last-Modified: Thu, 24 Nov 2022 04:18:35 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashf591ce87dedc762db2129d0c8ff52cde 73a96eea50dc3fde540f80c815c0554f2c762424 44df87478dd0184e48425cbcda6495b0d28e4d53c824152e7f6561da241cce2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1811
Cache-Control: max-age=172091
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Etag: "637ef09b-117"
Expires: Sat, 26 Nov 2022 04:48:46 GMT
Last-Modified: Thu, 24 Nov 2022 04:18:35 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg | 104.26.3.88 | 200 OK | 8.6 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg IP104.26.3.88:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3\012- data Hash53f8716e4000def629db36d31f645cb1 db8c371fc52e7ab263634119821620d9f03c814f 2efb36089e2b052421b3c15c6c159fae1924bc1a1c2209ccd82f4d0ccc13f1c2
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: image/jpeg
content-length: 8648
cf-bgj: imgq:100,h2pri
cf-polished: origSize=9336, status=webp_bigger
etag: "8220257871413a2a14ab3d6b964f6abf"
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-id-2: WOHDPEOS7Kbw/Km7fgrMUKXv1a3r8dMiE8f0aqP8mo6e5MGwSdp4/yE9cPklR6rn7tsh4Y4JqBI=
x-amz-request-id: 8WBW12YAK1CEPG4V
x-amz-version-id: HfrtBnZFXQLQQPWMe2SSfAQyOFUNAZMA
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1202
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XEg454QWLDNYfNBI%2B6hXvW2fw0fOwuLuUGCKpgEgC9YLnh0HCwjIejxt1giuj3dyZaPQ2OnNNEE4ozAvH4M8UHfm0mITahNTbFy%2BEMr4%2FUPWaxxWban3GrrFZyzWknagCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ef94eedaf5b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg | 104.26.3.88 | 200 OK | 9.5 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg IP104.26.3.88:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3\012- data Hash958180500c499802b8c9d1c832f7945c d1884b093666b9e6813b79471311a75c2304005a 1466c5bac4447ac52bc4780d617c80e4872b53df4a63c86a42ac0e1e93cc572e
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: image/jpeg
content-length: 9510
cf-bgj: imgq:100,h2pri
cf-polished: origSize=10320, status=webp_bigger
etag: "04572c76d141851db42a1a6e13d38b71"
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-id-2: wfNSWLBb8LRKt2vASYWjGYe1dSTUjqQIqUt4u3t6XFbCvh3LIamA5NtwYW0bvbwj9Kuwkqx/X0M=
x-amz-request-id: 8WBJYF11HGW8A11X
x-amz-version-id: AatCE1mkRL6z1GEYqQay5AQrkz_0GlQk
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1202
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H1ZVcTpbSfupnjFhdRJUNbm0RfnaAMpNp8nFLtV0TU%2BLq4gTKhMoC9bjtzn4f6WsWD%2FtuStZwpOQ2k%2Bd5iZG4X80iGLksC1AiEIbMA75Jq7JgBFRF7mYJ5vuDOnr88zVag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ef94eedaf8b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg | 104.26.3.88 | 200 OK | 8.2 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg IP104.26.3.88:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3\012- data Hash9074436dac9f6d61bccb042c185adff3 b9d1247ca03baccc0203747de619c3579ac299fe b0a54814b8b0f5abf1f1c43941cfdc945fb105f0ad91962af3df15b2a98d1b24
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: image/jpeg
content-length: 8208
cf-bgj: imgq:100,h2pri
cf-polished: origSize=8822, status=webp_bigger
etag: "64d0d3cf4cf12b175c2bfde2b119fd73"
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-id-2: Bo7a2FiffHzk9Gmf/XHbcWOvTTU1o7vI+Fa8xCvRk8eiO6SZrQMbW+6BldwzxYkd+lKm9iMYwAc=
x-amz-request-id: 8WBWCTMC7X2EMG9G
x-amz-version-id: xeytj2tGe9ZE1VBrjh._yFfBsbQCZQQP
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1202
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1L6yFuuBNneKpZCVlQ2Ah7LaV9MDEnnATB6rzzVEQfYIvyw0TkKhuXoy0mfeJVwmWrP25RYwdsBN58BgxViJL3a1ZOZ0SqSdzoFGP%2BzW2cKPvPHKFs1ddFRGfwTJvNiC3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ef94eedaf9b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf7801fe8b983652ae788bc952856c2ed f3898da21792b146a9f856e87ed3520d76277fb8 faa1bc8a9887e2dc694ff645546ea16cb96ac4bd1b0c460aef95f2cced100d6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashf591ce87dedc762db2129d0c8ff52cde 73a96eea50dc3fde540f80c815c0554f2c762424 44df87478dd0184e48425cbcda6495b0d28e4d53c824152e7f6561da241cce2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1811
Cache-Control: max-age=172091
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Etag: "637ef09b-117"
Expires: Sat, 26 Nov 2022 04:48:46 GMT
Last-Modified: Thu, 24 Nov 2022 04:18:35 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4af780570d49b327d38dc189095448e9 1dd4193a2afeb237c5e475b603b1cbd137f7f97e f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash611d1eca860866489908506a26bd6a2a 5e8c401f098357cd12889a6e507baf7c8a87772a e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5287
Expires: Thu, 24 Nov 2022 06:28:42 GMT
Date: Thu, 24 Nov 2022 05:00:35 GMT
Connection: keep-alive
|
|
| www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC | 142.250.74.164 | 200 OK | 583 B |
URL HTTP/2www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC IP142.250.74.164:0
File typeASCII text, with very long lines (884), with no line terminators Hash6b3cb5bbe301fdd0a49c69f1f7c55f2b b7718b95e61ec3f794d358fc292dcee74f395dde 505ac8bc7638a897b56c0c13295f4694c8a6830beb4daaea67131ba553b0197b
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 24 Nov 2022 05:00:35 GMT
date: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash611d1eca860866489908506a26bd6a2a 5e8c401f098357cd12889a6e507baf7c8a87772a e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5287
Expires: Thu, 24 Nov 2022 06:28:42 GMT
Date: Thu, 24 Nov 2022 05:00:35 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg | 34.120.237.76 | 200 OK | 8.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc8f6118fc03f31862ff68fef8a2b9a7f 318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73 cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f4b5f150-a5dc-40bf-93b9-394c294a51cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEmkRFSnIAMF5vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e8481-74454bee1a1ec6d506f3d75b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 20:37:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZVv8iTGCYV-IiBJ6KwNSG1ZWSEwClaQopUejSqZq0S1wd782lRoyKA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:19 GMT
age: 25396
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd9d93b2a6875d446c3467eb49767eef5 303c571b13b05fcf27ee1159d8fdf6369aaef0a2 2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 07:15:15 GMT
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
age: 78320
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash611d1eca860866489908506a26bd6a2a 5e8c401f098357cd12889a6e507baf7c8a87772a e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5287
Expires: Thu, 24 Nov 2022 06:28:42 GMT
Date: Thu, 24 Nov 2022 05:00:35 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F004aa6ae-7a76-4671-acda-0f0a01e41292.jpeg | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F004aa6ae-7a76-4671-acda-0f0a01e41292.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashcfb61d1d2a4d3e62e410c926cfa4a1ab 5c3f269cd16e9dd6bbb2e32efd46a4b2599ca436 4297b6c45e7dca6f841ae56da1040e1287f2e70c98e5f7fc674a674b59ebc7a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F004aa6ae-7a76-4671-acda-0f0a01e41292.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8702
x-amzn-requestid: 9687d5fa-c9f8-4afc-8278-0f0c12b28329
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvx9FQ4oAMFWmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e933f-397fca41442c0d7309395e4b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4cgRxjx6TQRxl4FIKsjrBPDZmhoDgbG72UAMRUnxZBUqV7yCfj3PyQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:44:50 GMT
age: 26145
etag: "5c3f269cd16e9dd6bbb2e32efd46a4b2599ca436"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasheb94ecb5881a7e49d964e4287d11e7a4 4b131a189db1b615e2519a28cad83d78297ab67f f3693e29eb7b72361093434142e3f18969c1a0b02350fab430fa29c7c127bd1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11401
x-amzn-requestid: 3bc374eb-7d70-4b95-94a7-2ad06cae4726
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtHcmoAMFxgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-333793987245ff9e741b9aed;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kkI9Vh2vZeJPwz2JVL5MErsBBwk8-2Jo49yc0sFqv5pxIyBi6azFIw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
age: 25392
etag: "4b131a189db1b615e2519a28cad83d78297ab67f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashf591ce87dedc762db2129d0c8ff52cde 73a96eea50dc3fde540f80c815c0554f2c762424 44df87478dd0184e48425cbcda6495b0d28e4d53c824152e7f6561da241cce2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1811
Cache-Control: max-age=172091
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Etag: "637ef09b-117"
Expires: Sat, 26 Nov 2022 04:48:46 GMT
Last-Modified: Thu, 24 Nov 2022 04:18:35 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash64d79191f005c9876b952c5f948aa0f7 1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a 00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ve4q5FDkwMGhPK6ZVVVCZtoBTaGaz43r_PwINzwS5Nx5tcZeQkVIfw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:47 GMT
age: 25848
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashf591ce87dedc762db2129d0c8ff52cde 73a96eea50dc3fde540f80c815c0554f2c762424 44df87478dd0184e48425cbcda6495b0d28e4d53c824152e7f6561da241cce2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1811
Cache-Control: max-age=172091
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Etag: "637ef09b-117"
Expires: Sat, 26 Nov 2022 04:48:46 GMT
Last-Modified: Thu, 24 Nov 2022 04:18:35 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16a0ed43-823b-41a5-9073-733ac15040d1.png | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16a0ed43-823b-41a5-9073-733ac15040d1.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf0dfc05d73111c498bb0e844105a02f6 10a988580bb7a1be72be5dd50d2aef9789f36b62 3852f331fe12a0a8e6007409f043da6aabadbb8f2883e87ae72ca8d70d31727f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16a0ed43-823b-41a5-9073-733ac15040d1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10667
x-amzn-requestid: 985ed1c6-49ed-4851-8a79-f700bbe027c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsGkSIAMFvDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-260dc99256e117e85643b441;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _fs5EfJzWkPQB-Ur7_YVmCHySMj_WXiHUCK8w2nWYvrJSkDaquq37g==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
etag: "10a988580bb7a1be72be5dd50d2aef9789f36b62"
content-type: image/jpeg
age: 25395
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash6fe23ae41ec0cbb3d702b1c64028cd13 e0e4d852454a5eae80a797aaa6f0991834dcc19a 47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashf591ce87dedc762db2129d0c8ff52cde 73a96eea50dc3fde540f80c815c0554f2c762424 44df87478dd0184e48425cbcda6495b0d28e4d53c824152e7f6561da241cce2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1811
Cache-Control: max-age=172091
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Etag: "637ef09b-117"
Expires: Sat, 26 Nov 2022 04:48:46 GMT
Last-Modified: Thu, 24 Nov 2022 04:18:35 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashf591ce87dedc762db2129d0c8ff52cde 73a96eea50dc3fde540f80c815c0554f2c762424 44df87478dd0184e48425cbcda6495b0d28e4d53c824152e7f6561da241cce2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=170280
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Etag: "637ef09b-117"
Expires: Sat, 26 Nov 2022 04:18:35 GMT
Last-Modified: Thu, 24 Nov 2022 04:18:35 GMT
Server: nginx
Content-Length: 279
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4af780570d49b327d38dc189095448e9 1dd4193a2afeb237c5e475b603b1cbd137f7f97e f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ | 142.250.74.3 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ IP142.250.74.3:0
Hash27bc0a2212d12aa906fa556ff9fb16ac 1376e0b0c82f219e27fc576fb566f004b072fc5d 566c7399e2eb7a1990d9d9cf2e85fc21c85a0b58eee9d532b0da1ce9384cf955
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| js.upnid.com/v0.js | 130.211.14.112 | 200 OK | 8.3 kB |
IP130.211.14.112:0
File typeUnicode text, UTF-8 text, with very long lines (23050) Hash49fa980f95bb3bbff8b7a2857a727d5d 9e931943f03079522318820948018d78610eaca4 4e295d58275798f67bf7b9c48b8cae16238c9a3dabca082238e7bab8eaa34943
GET /v0.js HTTP/1.1
Host: js.upnid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin
content-encoding: br
via: 1.1 google
content-length: 8310
date: Thu, 24 Nov 2022 04:40:32 GMT
age: 1203
last-modified: Tue, 19 Jan 2021 20:16:07 GMT
content-type: text/javascript; charset=utf-8
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash34fd011fa75f4d654f99a6c615948fe5 11e475a26a08c9bab13791d6a7750485fe9e8d98 6fb067896160a392eed80e4c01c3080ba3e234ac3bf244dc66f4423a9eb6fd36
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2460
Cache-Control: max-age=122339
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Etag: "637e2bba-116"
Expires: Fri, 25 Nov 2022 14:59:34 GMT
Last-Modified: Wed, 23 Nov 2022 14:18:34 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ | 142.250.74.3 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ IP142.250.74.3:0
Hash27bc0a2212d12aa906fa556ff9fb16ac 1376e0b0c82f219e27fc576fb566f004b072fc5d 566c7399e2eb7a1990d9d9cf2e85fc21c85a0b58eee9d532b0da1ce9384cf955
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash34fd011fa75f4d654f99a6c615948fe5 11e475a26a08c9bab13791d6a7750485fe9e8d98 6fb067896160a392eed80e4c01c3080ba3e234ac3bf244dc66f4423a9eb6fd36
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2460
Cache-Control: max-age=122339
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Etag: "637e2bba-116"
Expires: Fri, 25 Nov 2022 14:59:34 GMT
Last-Modified: Wed, 23 Nov 2022 14:18:34 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0 | 104.18.0.53 | 200 OK | 77 kB |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0 IP104.18.0.53:0
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: iUTOwFydP8RsPO1NtKniPNpqiMLObq0cuz8gcTZQCkYwx3XGTMO5MTYO/ALP2qMWyl1S6/86k/I=
x-amz-request-id: W2P7JD2NHFG77EAJ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: HIT
age: 1202
expires: Fri, 02 Dec 2022 05:00:35 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
server: cloudflare
cf-ray: 76ef94f0cf3fb4ff-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaee1eaa2ef2d0edbb0bc5703979e6439 8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db 095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaee1eaa2ef2d0edbb0bc5703979e6439 8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db 095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaee1eaa2ef2d0edbb0bc5703979e6439 8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db 095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 | 216.58.207.195 | 200 OK | 34 kB |
URL HTTP/2fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data Hash848cd2ecd011428969dc6b90431bc482 6b1a7b562a56bd54510e0f6f95e26babca331a1b 981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:38:57 GMT
expires: Fri, 17 Nov 2023 21:38:57 GMT
cache-control: public, max-age=31536000
age: 544898
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.158 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.158:0
Hash36147cc9d9988dbc5f03fe87fe1e42d5 5309fca009f87638400249f34a1f5e56aed688fd 7d2147387d4112bc07a00654e8ed7adbc7b77c82a718b61ddfb7c7dd3da7bc14
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=140742
Date: Thu, 24 Nov 2022 05:00:35 GMT
Etag: "637e7a7e-1d7"
Expires: Fri, 25 Nov 2022 20:06:17 GMT
Last-Modified: Wed, 23 Nov 2022 19:54:38 GMT
Server: ECS (dcb/7F38)
X-Cache: Miss from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cbcvuBZ2o3e_4TdOEIkJQwVvq7hR5lSWdP1X3qsL3jdjKADNVTgzRg==
Age: 699
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaee1eaa2ef2d0edbb0bc5703979e6439 8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db 095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/images/2-caixas-misteriosas-edicao-limitada-62e956c5108f7-thumb.png | 104.26.3.88 | 200 OK | 169 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/images/2-caixas-misteriosas-edicao-limitada-62e956c5108f7-thumb.png IP104.26.3.88:0
File typePNG image data, 290 x 312, 8-bit/color RGBA, non-interlaced\012- data Size169 kB (169220 bytes) Hash9a096d6b71e9b1d95979c592af7102a3 21a2113be731cb8a8c99a01068d5fbf051a18410 f3d8d1e17077364d7fbea6e58240275a6039bf87f1ec985e6f8a31acf2b58e7b
GET /assets/stores/caixa-misteriosa9/uploads/images/2-caixas-misteriosas-edicao-limitada-62e956c5108f7-thumb.png HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: image/png
content-length: 169220
x-amz-id-2: dGvMg4h2UWED4qNTyjv/Q6gYvY1+lEgerzcmJYpb+8p92rfdX2ykdM2c8aO/0h2GbHB04z5t5iY=
x-amz-request-id: 2JM3C33KYPTA52Z2
last-modified: Tue, 02 Aug 2022 16:54:33 GMT
x-amz-version-id: azK75EHkA596NEFZocjqcgaxW.Vy7Wp2
etag: "9a096d6b71e9b1d95979c592af7102a3"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nUvY84mzsMqRGsVhCowi7M6J%2FgQQ8JjfTjdvKlJxHiCmqDQwDQRWt9lAAve%2BzgOARIzzpPKugDkMWRGTaNyIE2hSiMCB4YIasSZuiD9l%2Bh5iN%2FDN7muIk2b8tvQn3dlA7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ef94eedaf7b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDK4CUJC77UEMNFPVPVG&hostname=seguro.caixamisteriosa.net | 23.36.79.17 | 200 OK | 1.8 kB |
URL HTTP/2analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDK4CUJC77UEMNFPVPVG&hostname=seguro.caixamisteriosa.net IP23.36.79.17:0 ASN#20940 Akamai International B.V.
File typeC source, ASCII text, with very long lines (3948) Hashd31c0573050884fa1894aa9335392975 586657bcba9356bcdc797a1d6e5905f8bf0f0f7f 4bb5838a54f80b0173e9ee6d84a2d6b7f64b2f7e846d62f8d6876f660b92b9d3
GET /i18n/pixel/config.js?sdkid=CDK4CUJC77UEMNFPVPVG&hostname=seguro.caixamisteriosa.net HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211240500356DC3038DF6AD9591FAA0
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b54076bbcbc3ea4a0a9b6a20a6c108d96efc175156f3de3599716cadb36d85770d348c581fdbe78c7ed676e31e4f56f07cd2805b589eac03943aeefe61e6e4a85c
content-encoding: gzip
content-length: 1830
x-origin-response-time: 6,23.218.223.21
x-akamai-request-id: 8b6637ca.653f8b63
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-223-21.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=6, inner; dur=3
x-parent-response-time: 105,23.36.79.13
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDUVI73C77UAFLPMLING&hostname=seguro.caixamisteriosa.net | 23.36.79.17 | 200 OK | 347 B |
URL HTTP/2analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDUVI73C77UAFLPMLING&hostname=seguro.caixamisteriosa.net IP23.36.79.17:0 ASN#20940 Akamai International B.V.
Hash5cf900d78e41def37017bd375551cbfd 56ffd0e2a45e563c15667f179410521c8bdab33f 4fb1d6444df8406e392a54e13132c7bfae70aa8e796b7dc5f8a0378e29d99111
GET /i18n/pixel/config.js?sdkid=CDUVI73C77UAFLPMLING&hostname=seguro.caixamisteriosa.net HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221124050035CBABA2537CF8BE9A5686
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b5e8a40be0cda0c89dc4b2da75184b47c0d2e87158b6afc07436d1f90716e96826e81df30c0146c7f340a42769e7b8d2cda5d314fb1527b4b397a647ef23ce059a
content-encoding: gzip
content-length: 347
x-origin-response-time: 6,23.218.223.23
x-akamai-request-id: 1d1d7685.653f8b6e
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2Hyn8xlPU1jdwd2a4XmjdWuo5ie; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-218-223-23.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=105, origin; dur=6, inner; dur=3
x-parent-response-time: 111,23.36.79.13
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP23.36.79.17:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 898
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Hyn90obRrDk82Ek14E2qy1rAZL
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221124050035C7C5E44DDC295BAE072F
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2f7bc596810103aa7bddff1330013f587711c74c26380c6f7dc27649b17caa219f6287a25de25d7ff7ecb1e7aeb3d7797c11fc8c664d880654fb47e627c801a4b2
x-origin-response-time: 21,104.96.220.87
x-akamai-request-id: 20967ef2.653f8bf8
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a104-96-220-87.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=21, inner; dur=19
x-parent-response-time: 119,23.36.79.13
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP23.36.79.17:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 898
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Hyn90obRrDk82Ek14E2qy1rAZL
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022112405003537C2D0E6CD628197F41E
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2f7fbf0fcb58cd9921d4e4812d5a08c3c125f35ad1626a01bb38358b245f710d24a42cbf922a188c747ec75ccca9409621d270ec7173db74d969b319dcc8033aa1
x-origin-response-time: 21,104.96.220.140
x-akamai-request-id: 6882bce.653f8c07
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a104-96-220-140.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=21, inner; dur=19
x-parent-response-time: 120,23.36.79.13
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP23.36.79.17:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 792
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Hyn8xlPU1jdwd2a4XmjdWuo5ie
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221124050035945165796C9CC29A2161
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b5e8a40be0cda0c89dc4b2da75184b47c0ae7b8361bf22009e4177f03f010630b646b7f1ecfe20e6e64c858d6b8193fd3c980214e42be167842a3d2604d5af9de4
x-origin-response-time: 19,23.218.223.23
x-akamai-request-id: 1d1d7c93.653f8c08
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-218-223-23.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=19, inner; dur=16
x-parent-response-time: 118,23.36.79.13
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP23.36.79.17:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 943
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Hyn8xlPU1jdwd2a4XmjdWuo5ie
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022112405003520997F5286B157A07C73
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b53dc74ede926fff0064c6942ab4c80fd56e8ece445ef75ccc82b7ad431306530ef116ee88804e72f712c2eb546cfc560db95201ed2dd749373bd6fe32f1edab56
x-origin-response-time: 19,23.218.223.5
x-akamai-request-id: 3e97ec0f.653f8c23
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-218-223-5.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=19, inner; dur=16
x-parent-response-time: 117,23.36.79.13
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP23.36.79.17:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 951
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Hyn8xlPU1jdwd2a4XmjdWuo5ie
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202211240500351003125F4DB166A0A277
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b50541862bcd00cee904deb0fac27472df06768e509c3fcebdaa4c2aac78d4f0d690a7636710bcadc42f09f71951cfce4eda333625b27f2acc9fb51cf492acfd8b
x-origin-response-time: 29,23.218.223.9
x-akamai-request-id: 32010fe1.653f8c1b
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-218-223-9.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=123, origin; dur=29, inner; dur=16
x-parent-response-time: 149,23.36.79.13
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/identify.js | 23.36.79.17 | 200 OK | 31 kB |
URL HTTP/2analytics.tiktok.com/i18n/pixel/identify.js IP23.36.79.17:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (65536), with no line terminators Hashe746d87b3fe196168bf1a039e2b2ae55 58186d3567d1c435e3e7c20d30d1d1651e090d08 152fa045595f7f0ff14beb2c7e61d280f8c63aac6e278a3e34eb2470530a2d95
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211240500359D51BDCE7F7279A82330
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2fb9beb353da41ce900ffcd45c15263d8b21c6cef519ba3b8bca5583222f8cffd00144a5c8ba303109c304b7e5f162d056ae232b1336191d6b6f2614080288f47e
content-encoding: gzip
x-origin-response-time: 6,104.96.220.14
x-akamai-request-id: 19b1f605.653f8b4f
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a104-96-220-14.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=6, inner; dur=2
x-parent-response-time: 107,23.36.79.13
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP23.36.79.17:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 739
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Hyn90obRrDk82Ek14E2qy1rAZL
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221124050035F6656D63E282DEA1FA97
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2fed62095ad3edeb738170725314ee0c14520303caae780e220444ca9615fd8c6fa0de8e2e0b6de41ff3ffb299ce7b4c541e9488f25fd1e17c05262d4355a75ed3
x-origin-response-time: 87,104.96.220.135
x-akamai-request-id: 1ee41a62.653f8c03
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a104-96-220-135.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=106, origin; dur=87, inner; dur=80
x-parent-response-time: 188,23.36.79.13
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP23.36.79.17:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 784
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Hyn8xlPU1jdwd2a4XmjdWuo5ie
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022112405003505BFD419D695019BAC00
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2fdc973c69a76d26a6c26f9537850a4f96abe9d7fff967430f1409f59e6a342bc4acdc600aeefccc2d18a1343dadc274c5a510bd96669a3f24d361951c78d60785
x-origin-response-time: 80,104.96.220.13
x-akamai-request-id: 22ec7699.653f8c1c
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a104-96-220-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=80, inner; dur=78
x-parent-response-time: 178,23.36.79.13
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashb6e7c5faf2d24e0d958ab10ee95f6791 16b68ad4b4a2776571697dff8edc9369a3c5c451 1431771f6fd4ad8c028d53a7489acc16b829e32e01d92df5e8c923723024b75a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 813
Cache-Control: max-age=121049
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:36 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 14:38:05 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashdd0dd96ca622aa07354fabdd0da767bf a29eaa02a81dabed2c12be20a89d65a5a0417524 6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js | 142.250.74.163 | 200 OK | 163 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js IP142.250.74.163:0
File typeASCII text, with very long lines (730) Size163 kB (162976 bytes) Hash79d18cf4265108d7cecca1bf4ada6109 e51d0285a545381d4c39e9e0292a650ffeeecbb9 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:58:48 GMT
expires: Thu, 23 Nov 2023 14:58:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 50508
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 24 Nov 2022 04:41:08 GMT
expires: Thu, 24 Nov 2022 06:41:08 GMT
cache-control: public, max-age=7200
age: 1168
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| connect.facebook.net/en_US/fbevents.js | 157.240.200.14 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP157.240.200.14:0
File typeASCII text, with very long lines (64348) Hash44ecaa3c2a4929a40141edc4540aaf84 f29a573182333b2500d41bfc389d6c5232dfb348 6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Avj1IhT9XHzUGjKke+wa+bhcYEVHUFdKNzn8zYZ9QMmeI2idE/H8Ue7CPsDUPf+FdGT3MCZJ9Ysp26GspH1CXw==
content-length: 27340
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 05:00:36 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashb6e7c5faf2d24e0d958ab10ee95f6791 16b68ad4b4a2776571697dff8edc9369a3c5c451 1431771f6fd4ad8c028d53a7489acc16b829e32e01d92df5e8c923723024b75a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 813
Cache-Control: max-age=121049
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:36 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 14:38:05 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
|
|
| seguro.caixamisteriosa.net/cart/recomm | 170.82.173.30 | 200 OK | 448 B |
URL HTTP/2seguro.caixamisteriosa.net/cart/recomm IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File typeJSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (720), with no line terminators Hash52dba393b50174ea18d28a28d044d666 961b0fee260a422f8bd01b2cb7fdc507b79678b4 da85a7b008d7f009dce3de4ccdbd21af53196f3b2829610f8a284019ff96a524
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /cart/recomm HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IjVEQU9TdkZKWmg4UTlyanoxdXBvdHc9PSIsInZhbHVlIjoiRU5qRmRyZnhMXC9jdTlFSU4xUmZtbnZNcE0xRDduNklCMWZOQ0hEaVZzdm5XdjVFdnhoTitcL3gyVDlGXC92OUNSd0RzcUNvdVwvcFwvbklhUDFtMkFTWmthUT09IiwibWFjIjoiOGUzZTJiMDhlNWI2OTFmYTkwYjJmNzNjMTI5ODFmZWZiYTY3OWI1OTVkYWIwNTBkMzVjNmQ4MzliYWRlYjE3MiJ9; bubbstore_checkout=eyJpdiI6IlozampzSEdudEVyYjg4VzBqeU5qYVE9PSIsInZhbHVlIjoiWjAxRjFsR29JcXJDdGVUTEZWeUpnXC9iZlVJeDF0eSs3ZytpdWpwdzdvK1FTdVwveHliSEFrZnpBTzNvZ012ZDlSamczWjVzeDVQc1JZbDM3aG9QRDZTZz09IiwibWFjIjoiNzY0OGU0ZmRhMDdmZGIwMDcxMGVjNzA4ZDcxYjQ1ZDhiNDdiYWI3ZTI3MDRlMTkzNzQzNWNiZmZiN2EwNjkwZSJ9; caixa-misteriosa9_cart=eyJpdiI6ImpIZWJZMW1MRktyUWo4UGh2Q2tSUlE9PSIsInZhbHVlIjoiNHoyaG1mMWJCSU9LQjNMa2hmTVgxZXJxdEd1bE5HRkwrMXpiYXB1QktYT3JqV3lxM1NCR3E0VU1HMTFxd2s3UVBmKzVrbG9FeDdtT3d3bXRUXC9YNUF3PT0iLCJtYWMiOiI0ODY3ZGU3Nzc4MGJkNmUxNWY1MGU3NDg4OTg4NmI0MzVlOTliNTIzY2M3ZjYyZWNlNmFjYWU1NjM2OWE3NjA3In0%3D; cart_auth_282511367=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%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IndXWm5VakhyRVpNdzdPZVQ3WWVwUGc9PSIsInZhbHVlIjoialY2OHFhMytvd2ErbDNQcDBCeGx0akRKenVJaU0rdGNudkdOK1F3cnZwVjBhSkxwVXBjbVRmREs2QnV3NDY3S3BveVQzOUlwNzFGVlMzNkF4RDkxOEE9PSIsIm1hYyI6ImNlZDM4NTFhYjA4NDc1ZDljMzNmYWMzYTIwODVmMjc0MDc5OTZmM2Q3YWJjMmMwYjFiZGEzYWM2NTEzYTEzY2IifQ%3D%3D; expires=Thu, 24-Nov-2022 08:00:35 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImJndWtwemxCM2FxRFB0V081Z212eFE9PSIsInZhbHVlIjoibUY0K1pzUlcwVmY1SWJEYnRnV2pocitieVZIOFd1cGJQS1VPNDBmd3U4MHh5SjRcLzZRbEF2NFRmcWRnbTZCU3NpOEJTY2w3RjJYRmZMY05cL003ZDJOUT09IiwibWFjIjoiZTAzMGFkOGViNmQwMTU4MDUwNzJmYzU2ZmFiNmJmOWY4OTk2YzRmNGY3NDg1ZDlhOTA1Yzc0NjM0NmIzNTVhZSJ9; expires=Thu, 24-Nov-2022 08:00:35 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/e/t | 170.82.173.30 | 200 OK | 492 B |
URL HTTP/2seguro.caixamisteriosa.net/e/t IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash6bea03bb87602412e040b7c167bb8596 c7cfe843202071ee7eefa2ce8860ef0f5ec28254 2b6e62d989cfb25f3d85356d6bfa2cd3e75c696371568529d7f0e3ec68072508
Analyzer | Verdict | Alert | fortinet | Phishing | |
POST /e/t HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 376
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IjVEQU9TdkZKWmg4UTlyanoxdXBvdHc9PSIsInZhbHVlIjoiRU5qRmRyZnhMXC9jdTlFSU4xUmZtbnZNcE0xRDduNklCMWZOQ0hEaVZzdm5XdjVFdnhoTitcL3gyVDlGXC92OUNSd0RzcUNvdVwvcFwvbklhUDFtMkFTWmthUT09IiwibWFjIjoiOGUzZTJiMDhlNWI2OTFmYTkwYjJmNzNjMTI5ODFmZWZiYTY3OWI1OTVkYWIwNTBkMzVjNmQ4MzliYWRlYjE3MiJ9; bubbstore_checkout=eyJpdiI6IlozampzSEdudEVyYjg4VzBqeU5qYVE9PSIsInZhbHVlIjoiWjAxRjFsR29JcXJDdGVUTEZWeUpnXC9iZlVJeDF0eSs3ZytpdWpwdzdvK1FTdVwveHliSEFrZnpBTzNvZ012ZDlSamczWjVzeDVQc1JZbDM3aG9QRDZTZz09IiwibWFjIjoiNzY0OGU0ZmRhMDdmZGIwMDcxMGVjNzA4ZDcxYjQ1ZDhiNDdiYWI3ZTI3MDRlMTkzNzQzNWNiZmZiN2EwNjkwZSJ9; caixa-misteriosa9_cart=eyJpdiI6ImpIZWJZMW1MRktyUWo4UGh2Q2tSUlE9PSIsInZhbHVlIjoiNHoyaG1mMWJCSU9LQjNMa2hmTVgxZXJxdEd1bE5HRkwrMXpiYXB1QktYT3JqV3lxM1NCR3E0VU1HMTFxd2s3UVBmKzVrbG9FeDdtT3d3bXRUXC9YNUF3PT0iLCJtYWMiOiI0ODY3ZGU3Nzc4MGJkNmUxNWY1MGU3NDg4OTg4NmI0MzVlOTliNTIzY2M3ZjYyZWNlNmFjYWU1NjM2OWE3NjA3In0%3D; cart_auth_282511367=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%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6Im0yMTNhQWEwcjhrckd1ZjBlYm1Bamc9PSIsInZhbHVlIjoiVVhVQ3FxMmgxdWpuMUFMd0crZ1cyek0rdmswNVRCdlJQWjcyaVo4eHQ2T3FQZ1JtcHAwR3FuYU5qdCtpYmQ0YzNkMjVsTk5RUXhHNVN0SjRBQURTM0E9PSIsIm1hYyI6ImU1OTYxNmQxOTk3NWFlNzYxMGQzZWEyZjVlMzY4NjdiMWQ4Zjk5Y2JkYzVkMzg0YTYxYTc0YjQ3YThlZGVhYjEifQ%3D%3D; expires=Thu, 24-Nov-2022 08:00:35 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IklVdWgzQzYwREpDZ1FWT2tjUVRZMWc9PSIsInZhbHVlIjoiTVpaRlNJSytrb0lBZkloRThOMG9aOVZhc3FWRXVGQTB4N1hsTm1VcUY2STd3UEszZUZoYTlyYStSM2V0NFh5NUwxMzBEanJDUDVsYW1JRUJPWVh6YXc9PSIsIm1hYyI6IjAyNTcyYTk1YzdmY2Q0ZTM3ZDg5MmNjMDRmMGIzZjA3YmMxZWRiNzJiZDU3MmI3YzhlZjMzMDI5ZWQxNDVlODgifQ%3D%3D; expires=Thu, 24-Nov-2022 08:00:35 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=2032017265.1669266036&jid=1259189979&gjid=1321976174&_gid=112143032.1669266036&_u=IEDAAAASAAAAAC~&z=577276871 | 142.250.150.154 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=2032017265.1669266036&jid=1259189979&gjid=1321976174&_gid=112143032.1669266036&_u=IEDAAAASAAAAAC~&z=577276871 IP142.250.150.154:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=2032017265.1669266036&jid=1259189979&gjid=1321976174&_gid=112143032.1669266036&_u=IEDAAAASAAAAAC~&z=577276871 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.caixamisteriosa.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 24 Nov 2022 05:00:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf86429279e19a89ba7fae87ba2406b4e abfa5369a7feb4dfebf13f5eb902c3e860976238 76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:00:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png | 52.95.164.124 | 200 OK | 191 kB |
URL HTTP/1.1s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png IP52.95.164.124:0
File typePNG image data, 1628 x 1083, 8-bit/color RGBA, non-interlaced\012- data Size191 kB (190952 bytes) Hash42653495a27a747f3deff05ead6ab0f1 7f774f610fb12f312daeb5d49c5cc88af7dd1dc1 3ce6c07440b880752a44c423832b8a6691d7b22898871e08b38f0abe62b92fc4
GET /king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: lAyQ13xWGG67ryHU+LQNmcIgOSUEdODTlIR+gQ5w9jYvrjb8Zbl0PMzJSk7/FKvmYduo8ajwjqw=
x-amz-request-id: 2JM32YF0RGABJ24M
Date: Thu, 24 Nov 2022 05:00:36 GMT
Last-Modified: Tue, 02 Aug 2022 17:21:54 GMT
ETag: "42653495a27a747f3deff05ead6ab0f1"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 190952
|
|
| cdn.yampi.me/jquery/jquery.js | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2cdn.yampi.me/jquery/jquery.js IP104.26.3.88:0
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: application/javascript
x-amz-id-2: 6rUk2JDrWUHbmSyZclIHS8+VegbRVfihQeD4Jd8T/P/up0mCsSmBDVs4VTCyH3Q5VekHaZtZrug=
x-amz-request-id: BGZG7S6KVW8D2S4Q
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1811
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QyKrzkDp%2B0tibOV9nwp8iasYoi2b8veXGP%2FrmYbleK8WY%2FhK9tQoQu%2Ff3SATKASaNXGQxt4zpQi1mcp76xWzkbet966%2FYyBFtvr2wqPqRPSnQl3FGdyLuuP3%2BS%2BO0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ef94ef2b2eb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap IP142.250.74.10:0
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 05:00:35 GMT
date: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| cdn.yampi.io/ana/ana.min.js?t=1669334400000 | 104.18.14.227 | 200 OK | 0 B |
URL HTTP/2cdn.yampi.io/ana/ana.min.js?t=1669334400000 IP104.18.14.227:0
GET /ana/ana.min.js?t=1669334400000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: application/javascript
x-amz-id-2: YYcFlHvBsjZMxS9pNosiFSJszKXyIQM//8jhHBR1C7WdA0LhW23x6LnOHZRkaZBR+AdDW+U7TgI=
x-amz-request-id: 77211RQ8TENBBWG7
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
age: 3612
expires: Fri, 24 Nov 2023 05:00:35 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ef94f068950b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDK4VU3C77U9GFT2SN80&lib=ttq | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDK4VU3C77U9GFT2SN80&lib=ttq IP23.36.79.17:0 ASN#20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=CDK4VU3C77U9GFT2SN80&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211240500355DCBFD81BF5030A1E23A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2f7bc596810103aa7bddff1330013f5877bad875b4412f2bbc277f96d890da4eb1865a5494303f15b62625480351c2d9026662c65a3556ea8a5ebbd6f9b36632ce
content-encoding: gzip
x-origin-response-time: 6,104.96.220.87
x-akamai-request-id: 20967eee.653f89fc
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a104-96-220-87.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=132, origin; dur=6, inner; dur=3
x-parent-response-time: 138,23.36.79.13
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/e/t | 170.82.173.30 | 200 OK | 0 B |
URL HTTP/2seguro.caixamisteriosa.net/e/t IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer | Verdict | Alert | fortinet | Phishing | |
POST /e/t HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 368
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IjVEQU9TdkZKWmg4UTlyanoxdXBvdHc9PSIsInZhbHVlIjoiRU5qRmRyZnhMXC9jdTlFSU4xUmZtbnZNcE0xRDduNklCMWZOQ0hEaVZzdm5XdjVFdnhoTitcL3gyVDlGXC92OUNSd0RzcUNvdVwvcFwvbklhUDFtMkFTWmthUT09IiwibWFjIjoiOGUzZTJiMDhlNWI2OTFmYTkwYjJmNzNjMTI5ODFmZWZiYTY3OWI1OTVkYWIwNTBkMzVjNmQ4MzliYWRlYjE3MiJ9; bubbstore_checkout=eyJpdiI6IlozampzSEdudEVyYjg4VzBqeU5qYVE9PSIsInZhbHVlIjoiWjAxRjFsR29JcXJDdGVUTEZWeUpnXC9iZlVJeDF0eSs3ZytpdWpwdzdvK1FTdVwveHliSEFrZnpBTzNvZ012ZDlSamczWjVzeDVQc1JZbDM3aG9QRDZTZz09IiwibWFjIjoiNzY0OGU0ZmRhMDdmZGIwMDcxMGVjNzA4ZDcxYjQ1ZDhiNDdiYWI3ZTI3MDRlMTkzNzQzNWNiZmZiN2EwNjkwZSJ9; caixa-misteriosa9_cart=eyJpdiI6ImpIZWJZMW1MRktyUWo4UGh2Q2tSUlE9PSIsInZhbHVlIjoiNHoyaG1mMWJCSU9LQjNMa2hmTVgxZXJxdEd1bE5HRkwrMXpiYXB1QktYT3JqV3lxM1NCR3E0VU1HMTFxd2s3UVBmKzVrbG9FeDdtT3d3bXRUXC9YNUF3PT0iLCJtYWMiOiI0ODY3ZGU3Nzc4MGJkNmUxNWY1MGU3NDg4OTg4NmI0MzVlOTliNTIzY2M3ZjYyZWNlNmFjYWU1NjM2OWE3NjA3In0%3D; cart_auth_282511367=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%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6Im10UEJrOXZucmM3YVNzKzZUeDVINmc9PSIsInZhbHVlIjoiN25MdndJQVdmcXQ1RElYUnB4K21LOFk0cEVVVmVnc1JZeCtQWktCYm5xbGcxQndwMEZxZ2xIUWVxenRZQTN2bDNyZWZvTmIyUDFyckh1ZmdsbjBXYlE9PSIsIm1hYyI6IjU1MGIxNzc4YzE3YzBhZGMzZmRlZjE2NDNkYmRiZmIyNGRlNzk4NTU0NmY2MDgxYjJmYTI0MWE5NDI0MTYzYjcifQ%3D%3D; expires=Thu, 24-Nov-2022 08:00:35 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImQ0Slc0Rkk4eEFaUW13dmpNZXBpTmc9PSIsInZhbHVlIjoiSzI4UFZqdDNORndJMHFXcDQ3dkJZNmFFTHpST2haWjRsazFxa3JCTHI4V3NkZExraHZtNkhxYTF6N2tEME5HRkRic2tjVnVXYndoY05lSFAwT0xDT3c9PSIsIm1hYyI6ImFmNzVkODQ2ZmU2Mjk4NjA1ODA4YjY1MTlhOTJhODkwZjQyOGE5NDRmNWQ1MzZmYjg4ZDk3MzczYmQwMmQ1ZjEifQ%3D%3D; expires=Thu, 24-Nov-2022 08:00:35 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25 | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25 IP104.26.3.88:0
GET /checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: text/css
x-amz-id-2: YA1eDbyiFw9F7lvoHKFMrUFI+rzs4fWeaPTK8HBrcIojzp1Ze0GAqZwjGyO3EOKzm5Y2nWL5dqs=
x-amz-request-id: P208087TQ0JZ3MS4
last-modified: Fri, 04 Nov 2022 18:19:16 GMT
x-amz-version-id: 5lxShk4xe0C8IXXkoQQWK8S_0jFPf.GV
etag: W/"78c7a473b51f1cc2067d1b8860950b25"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1811
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3TgY9tG31ZH3g2EvygmdB5p2kc9Y0qowb%2BXDOvcmpPm8LG1cf1iFE5fcAnGq0%2Bo1sh65dUABmYxO96McgN8wq%2BWjIAUpbFgd1KeYDRfNOyMPrK92XfjTrmHXIqVPEFGEEQYag5kgFKiL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ef94eedaf3b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/events.js?sdkid=419295709021341305&lib=ttq | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/i18n/pixel/events.js?sdkid=419295709021341305&lib=ttq IP23.36.79.17:0 ASN#20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=419295709021341305&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221124050035191EC5CDA96F2C951598
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2f77751791c18269b4cd075cbc5db8b163b51d10572dff261208d0b362dc8c88d84bf19c2ed9695d645b8a543baf4303391f7fd6274337c57af32c07c19f2e4fc7
content-encoding: gzip
x-origin-response-time: 6,104.96.220.52
x-akamai-request-id: 32bf328.653f89f9
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a104-96-220-52.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=6, inner; dur=3
x-parent-response-time: 105,23.36.79.13
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/checkout/address | 170.82.173.30 | 200 OK | 0 B |
URL HTTP/2seguro.caixamisteriosa.net/checkout/address IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /checkout/address HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6InhrSWVzWVwvN0h1bXk0ZnFGMDhFc1NBPT0iLCJ2YWx1ZSI6Im9RcncxbGk5RzAyZmljeVBCS0xYWFBmUXh6YnllMlhpdlAzV0JTSFRvZjJVaXF0MkNGb0M2XC9zTlhmazhYVHh1a040QTJtc3ptSnNOd01TZDcxRlIzZz09IiwibWFjIjoiZmE5NmI4ZWY2NzEzYTE1NjgyN2ViOWUyNzA2ZDBkMjhjYTI1NDAyYzlmNjMxZDliZWQwY2RhOTFjZWQ1MTVhNCJ9; bubbstore_checkout=eyJpdiI6IjJzbk5QNDNEbkFoUFhQKzhaa0hLRVE9PSIsInZhbHVlIjoiRW1NeU5nQ3p4XC93cVJGdGdIbHZNbnd0TENKZzl4Y2FvZHU3ZnJzd29GK25hWEJHU0NXUjZyM1ZqT1BNMGdTUUgxZWM0TjlLVTBoTHRLVmdUbDVLTktnPT0iLCJtYWMiOiI1ZmRhNzg0NGE1ZmYxODU4NzRmOTc2YWNhNDgwMDcxMGM5NTRjOGM5MTExYzMwNjNiZDQxN2RiZDM1M2NkYWY4In0%3D; caixa-misteriosa9_cart=eyJpdiI6ImpIZWJZMW1MRktyUWo4UGh2Q2tSUlE9PSIsInZhbHVlIjoiNHoyaG1mMWJCSU9LQjNMa2hmTVgxZXJxdEd1bE5HRkwrMXpiYXB1QktYT3JqV3lxM1NCR3E0VU1HMTFxd2s3UVBmKzVrbG9FeDdtT3d3bXRUXC9YNUF3PT0iLCJtYWMiOiI0ODY3ZGU3Nzc4MGJkNmUxNWY1MGU3NDg4OTg4NmI0MzVlOTliNTIzY2M3ZjYyZWNlNmFjYWU1NjM2OWE3NjA3In0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:34 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjVEQU9TdkZKWmg4UTlyanoxdXBvdHc9PSIsInZhbHVlIjoiRU5qRmRyZnhMXC9jdTlFSU4xUmZtbnZNcE0xRDduNklCMWZOQ0hEaVZzdm5XdjVFdnhoTitcL3gyVDlGXC92OUNSd0RzcUNvdVwvcFwvbklhUDFtMkFTWmthUT09IiwibWFjIjoiOGUzZTJiMDhlNWI2OTFmYTkwYjJmNzNjMTI5ODFmZWZiYTY3OWI1OTVkYWIwNTBkMzVjNmQ4MzliYWRlYjE3MiJ9; expires=Thu, 24-Nov-2022 08:00:34 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlozampzSEdudEVyYjg4VzBqeU5qYVE9PSIsInZhbHVlIjoiWjAxRjFsR29JcXJDdGVUTEZWeUpnXC9iZlVJeDF0eSs3ZytpdWpwdzdvK1FTdVwveHliSEFrZnpBTzNvZ012ZDlSamczWjVzeDVQc1JZbDM3aG9QRDZTZz09IiwibWFjIjoiNzY0OGU0ZmRhMDdmZGIwMDcxMGVjNzA4ZDcxYjQ1ZDhiNDdiYWI3ZTI3MDRlMTkzNzQzNWNiZmZiN2EwNjkwZSJ9; expires=Thu, 24-Nov-2022 08:00:34 GMT; Max-Age=10800; path=/; httponly
cart_auth_282511367=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%3D; expires=Thu, 24-Nov-2022 05:10:34 GMT; Max-Age=600; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.css | 104.18.0.53 | 200 OK | 0 B |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.css IP104.18.0.53:0
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 1811
expires: Fri, 02 Dec 2022 05:00:35 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ef94eebb090b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDK4VU3C77U9GFT2SN80&hostname=seguro.caixamisteriosa.net | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDK4VU3C77U9GFT2SN80&hostname=seguro.caixamisteriosa.net IP23.36.79.17:0 ASN#20940 Akamai International B.V.
GET /i18n/pixel/config.js?sdkid=CDK4VU3C77U9GFT2SN80&hostname=seguro.caixamisteriosa.net HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221124050035B8B829E4E5AACE9AE5D4
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b52177d8e4a1bce6fbca3153671f23c2f6ac1952d17fe70a1d1e10b2b306a65f8ffcaaf6351ae6ccc34f9495cdc1895d7ab083c503689ae3c84a5b5fd92923bce6
content-encoding: gzip
x-origin-response-time: 5,23.218.223.22
x-akamai-request-id: cff68c05.653f8b66
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-223-22.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=5, inner; dur=3
x-parent-response-time: 105,23.36.79.13
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/config.js?sdkid=419295709021341305&hostname=seguro.caixamisteriosa.net | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/i18n/pixel/config.js?sdkid=419295709021341305&hostname=seguro.caixamisteriosa.net IP23.36.79.17:0 ASN#20940 Akamai International B.V.
GET /i18n/pixel/config.js?sdkid=419295709021341305&hostname=seguro.caixamisteriosa.net HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221124050035D19B4E3C7F28089B2BB0
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2fd206d1952ba4be222eed9758215218fca3a754382b8c10f73195f329e32624223973746eafdbc2dbdd045a20e530b062058ac1290c14c7f40465e1c06077bcc2
content-encoding: gzip
x-origin-response-time: 8,104.96.220.30
x-akamai-request-id: 293e7ae.653f8b6a
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2Hyn90obRrDk82Ek14E2qy1rAZL; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a104-96-220-30.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=100, origin; dur=8, inner; dur=6
x-parent-response-time: 108,23.36.79.13
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/checkout/payment?cart_token=dcccfb70-6b9e-11ed-8c0d-0209f11817a0-637ed56d2b722&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=cb1d01f0-6b9e-11ed-ba77-3dc58798b9bc | 170.82.173.30 | 302 Found | 0 B |
URL HTTP/2seguro.caixamisteriosa.net/checkout/payment?cart_token=dcccfb70-6b9e-11ed-8c0d-0209f11817a0-637ed56d2b722&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=cb1d01f0-6b9e-11ed-ba77-3dc58798b9bc IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /checkout/payment?cart_token=dcccfb70-6b9e-11ed-8c0d-0209f11817a0-637ed56d2b722&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=cb1d01f0-6b9e-11ed-ba77-3dc58798b9bc HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 24 Nov 2022 05:00:33 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.caixamisteriosa.net/checkout/address
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InhrSWVzWVwvN0h1bXk0ZnFGMDhFc1NBPT0iLCJ2YWx1ZSI6Im9RcncxbGk5RzAyZmljeVBCS0xYWFBmUXh6YnllMlhpdlAzV0JTSFRvZjJVaXF0MkNGb0M2XC9zTlhmazhYVHh1a040QTJtc3ptSnNOd01TZDcxRlIzZz09IiwibWFjIjoiZmE5NmI4ZWY2NzEzYTE1NjgyN2ViOWUyNzA2ZDBkMjhjYTI1NDAyYzlmNjMxZDliZWQwY2RhOTFjZWQ1MTVhNCJ9; expires=Thu, 24-Nov-2022 08:00:33 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IjJzbk5QNDNEbkFoUFhQKzhaa0hLRVE9PSIsInZhbHVlIjoiRW1NeU5nQ3p4XC93cVJGdGdIbHZNbnd0TENKZzl4Y2FvZHU3ZnJzd29GK25hWEJHU0NXUjZyM1ZqT1BNMGdTUUgxZWM0TjlLVTBoTHRLVmdUbDVLTktnPT0iLCJtYWMiOiI1ZmRhNzg0NGE1ZmYxODU4NzRmOTc2YWNhNDgwMDcxMGM5NTRjOGM5MTExYzMwNjNiZDQxN2RiZDM1M2NkYWY4In0%3D; expires=Thu, 24-Nov-2022 08:00:33 GMT; Max-Age=10800; path=/; httponly
caixa-misteriosa9_cart=eyJpdiI6ImpIZWJZMW1MRktyUWo4UGh2Q2tSUlE9PSIsInZhbHVlIjoiNHoyaG1mMWJCSU9LQjNMa2hmTVgxZXJxdEd1bE5HRkwrMXpiYXB1QktYT3JqV3lxM1NCR3E0VU1HMTFxd2s3UVBmKzVrbG9FeDdtT3d3bXRUXC9YNUF3PT0iLCJtYWMiOiI0ODY3ZGU3Nzc4MGJkNmUxNWY1MGU3NDg4OTg4NmI0MzVlOTliNTIzY2M3ZjYyZWNlNmFjYWU1NjM2OWE3NjA3In0%3D; expires=Tue, 29-Nov-2022 05:00:33 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDUVI73C77UAFLPMLING&lib=ttq | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDUVI73C77UAFLPMLING&lib=ttq IP23.36.79.17:0 ASN#20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=CDUVI73C77UAFLPMLING&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221124050035D496C125CCAB63947C69
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2f7bc596810103aa7bddff1330013f5877e35f731bc9824ab02159e58c84870348ede4541f58fd6d03d423229021c828b089de10ecf83b2be66cd8c1d4b6cde902
content-encoding: gzip
x-origin-response-time: 8,104.96.220.87
x-akamai-request-id: 20967efc.653f8a00
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a104-96-220-87.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=100, origin; dur=7, inner; dur=4
x-parent-response-time: 107,23.36.79.13
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDK4CUJC77UEMNFPVPVG&lib=ttq | 23.36.79.17 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDK4CUJC77UEMNFPVPVG&lib=ttq IP23.36.79.17:0 ASN#20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=CDK4CUJC77UEMNFPVPVG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022112405003554797755D5CA9B984EB9
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b50541862bcd00cee904deb0fac27472df4fb20272069041ee500269a44bcb05529a68166630955947eb894c882d9826a8f288ce4a4f75fadefa36880bd32ce2f0
content-encoding: gzip
x-origin-response-time: 11,23.218.223.9
x-akamai-request-id: 3201108a.653f89f1
expires: Thu, 24 Nov 2022 05:00:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 05:00:35 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-223-9.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=129, origin; dur=11, inner; dur=3
x-parent-response-time: 140,23.36.79.13
X-Firefox-Spdy: h2
|
|
| awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=e004bdab01653a468c960c3569c402cb | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=e004bdab01653a468c960c3569c402cb IP104.26.3.88:0
GET /checkout/build/mix/assets/js/app.js?id=e004bdab01653a468c960c3569c402cb HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:00:35 GMT
content-type: application/javascript
x-amz-id-2: NRHsa6qucHQaiD3sC5dsd4mSTMl5ptA1rb1WB9pZudapWSWc7E9FXAqQiJ6YpdV9UR90y0pT+ZM=
x-amz-request-id: P200TN7ZJ2GWP78Q
last-modified: Fri, 04 Nov 2022 18:19:16 GMT
x-amz-version-id: vBH8I8U4Fk_cBjCH4K7uyIx8AtomnPkt
etag: W/"634f1880f47f3e97d885f3f34d5bf07b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1811
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PyuqPIdcfyadLeVfvoCmHiIkRy9AAWHrLqyqOtpitga%2FNwJnbgjQAsqlaTWrTDeV9Nik1uWyGnwekJ1MIjCJUT2VP3O0X1psuNLiQS1fssj0Q91LTJHicod98ILsIpJdzoZwO%2BrItThT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ef94eeeb02b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|