| linkcurto.co/cpncjttbh008k |  172.67.157.46 | 301 Moved Permanently | 0 B |
URL HTTP/1.1linkcurto.co/cpncjttbh008k IP172.67.157.46:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cpncjttbh008k HTTP/1.1
Host: linkcurto.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 24 Oct 2022 05:40:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 24 Oct 2022 06:40:12 GMT
Location: https://linkcurto.co/cpncjttbh008k
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oqxMapTNDjnlotUf41vrAP0bSwjUMATLQFhn5JqMBX1ZQlYmvclAO3Tjv6N4f%2FQkQn1Tp4XtEVl7PYj3C%2F7uJLla4Op%2B6%2FIrJLceHYFyoiyOiEk4WaAhLKUbBwCFyPg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75f06059e889b50c-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ |  23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash73c4166ca864f777db2cc1cd8658a7c2 c56b66b0b7c8516d4d5bfafe0c166711c78f3d25 310c633350812c064e159275b6dbbdba6d6a5991a54ccfcc23459320c6513572
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "310C633350812C064E159275B6DBBDBA6D6A5991A54CCFCC23459320C6513572"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6517
Expires: Mon, 24 Oct 2022 07:28:49 GMT
Date: Mon, 24 Oct 2022 05:40:12 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.35 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.35:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashc9df6b36bf16969ac566c1b798362e4a e56eff34815153ae019a4bf63eb9746dd9ae2e5b 33c1175144ab2be42c9de383f7893a6e60cd1f21f282eacb413d546331db3fa0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 24 Oct 2022 04:52:56 GMT
Expires: Mon, 24 Oct 2022 05:52:15 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3WOpWMqt7_NOZO9TYCcckCue08YndS_e_e9fhlnb6XA9yjLIVZtVDg==
Age: 2836
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashae56efd62a0d9249d98573172eb8b28b 5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28 82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6284
Expires: Mon, 24 Oct 2022 07:24:56 GMT
Date: Mon, 24 Oct 2022 05:40:12 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4uxsX2krAELVU6IZyr/NksJk6X1jBaB910fr4WF3CjU+MLH+JvK6012Bqx/o+EA9r1zwF0ylP58=
x-amz-request-id: DYK2MQJXS8JKB63H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 24 Oct 2022 05:08:23 GMT
age: 1909
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 05:40:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.35 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.35:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 24 Oct 2022 05:33:32 GMT
Cache-Control: max-age=3600
Expires: Mon, 24 Oct 2022 05:52:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: D1LO7BegSmsJEF1ivWXUYi3qzspH-NJSRG8IVc692_zSzHDhBgYYfA==
Age: 401
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash60d5d7cce6c32a6bdaf0d4c92ec93a1a cd29edee660366b41749cfd206bdc08fb421449c fb90c4cc44b32e4ca4a7d1533bbf4a2fd5c482dda5d232f1be2334f3cefbbb0e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5323
Cache-Control: max-age=100513
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:13 GMT
Etag: "6354f613-1d7"
Expires: Tue, 25 Oct 2022 09:35:26 GMT
Last-Modified: Sun, 23 Oct 2022 08:06:43 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 52.89.17.198 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.89.17.198:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1RfdXaiXAiWPqPaf7Obiew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yFK42x+9TF22zZetzzcYzv68Tl4=
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash0988f871133629c7b5afe40cb9eb2a5e c61fa023291a68d0362b010691dd075580167c3f 6c01efcc80382c193539ad9b423bf88c570bdc23ecb6e5c6c6f98e511419ffa5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6C01EFCC80382C193539AD9B423BF88C570BDC23ECB6E5C6C6F98E511419FFA5"
Last-Modified: Sat, 22 Oct 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21589
Expires: Mon, 24 Oct 2022 11:40:03 GMT
Date: Mon, 24 Oct 2022 05:40:14 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbed68ee568e74be152402c71cbf26510 38092ae53739e8ee13362c84df108bad734c4b64 26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4327
Expires: Mon, 24 Oct 2022 06:52:22 GMT
Date: Mon, 24 Oct 2022 05:40:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbed68ee568e74be152402c71cbf26510 38092ae53739e8ee13362c84df108bad734c4b64 26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4327
Expires: Mon, 24 Oct 2022 06:52:22 GMT
Date: Mon, 24 Oct 2022 05:40:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbed68ee568e74be152402c71cbf26510 38092ae53739e8ee13362c84df108bad734c4b64 26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4327
Expires: Mon, 24 Oct 2022 06:52:22 GMT
Date: Mon, 24 Oct 2022 05:40:15 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F888df8db-5e36-4530-9f02-09268aefe1af.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F888df8db-5e36-4530-9f02-09268aefe1af.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9896b15d25725efe19642f3e70ec9103 9f030fdc38125b6b523b0d12571d666907a83f4d 88a74f5fd7e694aa473ff0b1a2cc7f2328738dc9acf5c61f2501877dc72ec9bb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F888df8db-5e36-4530-9f02-09268aefe1af.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12770
x-amzn-requestid: c40e1251-15f4-486c-8744-af05d80ff14e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelkxERXoAMFdvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b61e-1bb648e9150a5cb95d69b3c5;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:46:06 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FS_whBKHlTourjDSpHj_fRbNs3r1zsTU97BpxqWyKHL4XLoc7IWGgw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:52:34 GMT
age: 28061
etag: "9f030fdc38125b6b523b0d12571d666907a83f4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F869ea046-6a24-4b66-a52f-bc9a678d7ebb.jpeg | 34.120.237.76 | 200 OK | 8.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F869ea046-6a24-4b66-a52f-bc9a678d7ebb.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3f174281da48e4a62aab93bcdc57d14a 8ee29d073b84530a30bb370838598115f1a65da8 0096edb7703f0bcea7e5c0d5b529482eceea9123f5f3b278f3f9012f87875f1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F869ea046-6a24-4b66-a52f-bc9a678d7ebb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8400
x-amzn-requestid: b1436934-5b97-4aa8-937a-78bce0b9181c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelN4GACoAMFYmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b58b-29da495d75578b3c20eb37ba;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:39 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: glooBvGL65FGrYbL-DVx3o9aVH28zKh3hlXiw5vTRe_PJMLLnYqM1g==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:54:55 GMT
age: 27920
etag: "8ee29d073b84530a30bb370838598115f1a65da8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c8789d-73b5-42b5-8b99-9a20d2d75944.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c8789d-73b5-42b5-8b99-9a20d2d75944.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe1bb8b1b400a1ae9d33c235e6a338c4b 834ac948f07711ed1dfe30ed365ab6c68967d932 1ef29fa4db7b8a00df3a0df1494aa41f8737664828695a4294e3ec8c9e5711e4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c8789d-73b5-42b5-8b99-9a20d2d75944.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7889
x-amzn-requestid: 797475c0-3dc0-4b1c-a087-593801512ba4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aV_zrF9EIAMFjDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6352467d-0aa8bdd5443af5395f5b2792;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 07:13:01 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wID60l-5Ds1B1umHL6gNvcI96S5NZf_siEYhtJpwUhS7GBr2igX2zA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 07:30:37 GMT
age: 79778
etag: "834ac948f07711ed1dfe30ed365ab6c68967d932"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashaf3d4b4d16ad8b30805be96afa6472e3 bceb257123711c43994e5a03e9caf22eeee16423 30d7fea8d87522ce3ba2abf2c47e0025af1b7c05d6b4ea9f26aaa1f06aff4a67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10072
x-amzn-requestid: 2f26fcdb-0540-49ea-be46-83c00182fcc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB0FKvoAMFVFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-1be524647e3db4a211e4c4ff;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sNu31Qx0p_Ikus0GsGKRNGVxOGnIRSewAXfkXyzOCmT6bJ1D1Qz-0w==
via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:10:20 GMT
etag: "bceb257123711c43994e5a03e9caf22eeee16423"
content-type: image/jpeg
age: 26995
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9782993-f413-4e6d-95c2-333fbe657f63.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9782993-f413-4e6d-95c2-333fbe657f63.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha2e664fa8596d38b4f74c45198a1d034 71daf3c8a99c89c8437645e97c7f14dd10d02d30 8f2cba60d7770cdfb781bfb95c33d9da1b03cab9ed5354b8a79d86e22b489663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9782993-f413-4e6d-95c2-333fbe657f63.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10565
x-amzn-requestid: 77d1f33a-cf70-44b9-a589-0cdadbea8d82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB0FDBoAMFvFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-2a30ebbb731766f675647a98;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Hzy07CyDUdkFRgi8AX3qf-YvaIvH-XOIaat5vd2kaYlY06GGsHGyeA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:09:44 GMT
age: 27031
etag: "71daf3c8a99c89c8437645e97c7f14dd10d02d30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59ae7697-e0dd-4241-8fa3-421d0afa30b2.jpeg | 34.120.237.76 | 200 OK | 7.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59ae7697-e0dd-4241-8fa3-421d0afa30b2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash836493e741614372048950791620e0f6 5f76016783f0207ff08326e93caf3979cd0b7ff8 5c5e19373abd4425c1c7d8ff79d8d6988a0d92e26b815b7d3f4c13206279848c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59ae7697-e0dd-4241-8fa3-421d0afa30b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7277
x-amzn-requestid: da7decff-e670-46b4-9526-db7350e04ce5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB0GLPIAMFSJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-567abeb223dcf89d50bb1be9;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: DPgB1vgfsQgIJ14p77Z--upi3yn7VKa1_X0WNFnlsaUbY-_SKXzYzg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:10:10 GMT
etag: "5f76016783f0207ff08326e93caf3979cd0b7ff8"
content-type: image/jpeg
age: 27005
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hashc560beed39cecb5417cb24d408e854bd 8128cbbdbb9357227cff89cf4a0825d62e1821cd a116fd57470c119c471df4fa54525043cddf2cd4d1c91eaf450155a2293d26f8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash4c236f4ca13cd8fafc580bceb0995642 b6a7de7a8d994ed2cfb5ac74b6d7703de515ecdb 671228953eba5b2678df03acebb493e411752c6f5f72ff7f1e485032241d4aeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC | 142.250.74.164 | 200 OK | 585 B |
URL HTTP/2www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC IP142.250.74.164:0
File typeASCII text, with very long lines (884), with no line terminators Hash1c688e8b7ed088521762f89cbd72e218 1583739e93dd4910cac00db5bfa2ad3a2c8856f7 12d5e7dbe1cc3027cb2663e42a4cd5654433c5bf1d4e370dfefb19475ec67f5c
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 24 Oct 2022 05:40:16 GMT
date: Mon, 24 Oct 2022 05:40:16 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash27230119a9981f874d5413b3f4bc2a2e b597c092ae885828800e0fa48f2af1c2a77fefc7 f0f7c7af1a1eeb95cf33e9969c8f049f7f17d6713de3ebae9693a4cd40624c61
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=164297
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Etag: "63560409-117"
Expires: Wed, 26 Oct 2022 03:18:33 GMT
Last-Modified: Mon, 24 Oct 2022 03:18:33 GMT
Server: nginx
Content-Length: 279
|
|
| ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ | 142.250.74.35 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ IP142.250.74.35:0
Hashac2d0000c06933c36ffedb4f50d67858 c4b0a507474d61d9d8877378a7d586b28aa36b4c 669c17ebd3c27e188f47079d3dada3203abaf45ec0bcade7df84e20f6dbf2a87
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| js.upnid.com/v0.js | 130.211.14.112 | 200 OK | 8.3 kB |
IP130.211.14.112:0
File typeUnicode text, UTF-8 text, with very long lines (23050) Hash49fa980f95bb3bbff8b7a2857a727d5d 9e931943f03079522318820948018d78610eaca4 4e295d58275798f67bf7b9c48b8cae16238c9a3dabca082238e7bab8eaa34943
GET /v0.js HTTP/1.1
Host: js.upnid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin
content-encoding: br
via: 1.1 google
content-length: 8310
date: Sun, 23 Oct 2022 20:25:40 GMT
age: 33276
last-modified: Tue, 19 Jan 2021 20:16:07 GMT
content-type: text/javascript; charset=utf-8
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash1756f6c9cc638e5cd7a4fe7fe0ef601d ab653a3c8b59610a18884b9900e87047caa20559 719034034647cfd46742cf8e0e6a1e5b323acc16c768ee4fc6155166464372ec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=117158
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Etag: "63554be6-117"
Expires: Tue, 25 Oct 2022 14:12:54 GMT
Last-Modified: Sun, 23 Oct 2022 14:12:54 GMT
Server: nginx
Content-Length: 279
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3825918e22323756d3051e41400ff9e1 9350bd13e2f09b9fa665538e54f39cb5a470cd06 f300b2942a3158d606989d7f4d8e5c56d81cb804fae0c6d6abcb9647273f97b6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F300B2942A3158D606989D7F4D8E5C56D81CB804FAE0C6D6ABCB9647273F97B6"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19331
Expires: Mon, 24 Oct 2022 11:02:27 GMT
Date: Mon, 24 Oct 2022 05:40:16 GMT
Connection: keep-alive
|
|
| cdn.shopify.com/s/files/1/0644/5518/0512/products/11dc37b9984342a71d94fc242064673d_1080x_24f06c1d-b170-45e6-ab96-77d0d7cc2f21_250x250.jpg |  162.159.135.68 | 200 OK | 23 kB |
URL HTTP/2cdn.shopify.com/s/files/1/0644/5518/0512/products/11dc37b9984342a71d94fc242064673d_1080x_24f06c1d-b170-45e6-ab96-77d0d7cc2f21_250x250.jpg IP162.159.135.68:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash627438de58b16828bde46cc322d1e910 ea7463a1b5bd4e9300c53daf6d3f06658719dea9 b94416d67cb30f8dccc299fd507837238501b286023bf4a9198e79c8462cd75a
GET /s/files/1/0644/5518/0512/products/11dc37b9984342a71d94fc242064673d_1080x_24f06c1d-b170-45e6-ab96-77d0d7cc2f21_250x250.jpg HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:16 GMT
content-type: image/webp
content-length: 22934
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0644/5518/0512/products/11dc37b9984342a71d94fc242064673d_1080x_24f06c1d-b170-45e6-ab96-77d0d7cc2f21_250x250.jpg>; rel="canonical"
server-timing: imagery;dur=590.017, imageryFetch;dur=27.224, imageryProcess;dur=561.730;desc="image"
source-length: 192027
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: a4c751b3-498e-442f-a831-288e9807af75
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Wed, 19 Oct 2022 20:47:34 GMT
cf-cache-status: HIT
age: 33275
accept-ranges: bytes
server: cloudflare
cf-ray: 75f060759a7db51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash132144ca3a3c6f8285810a66fe0513fc 868c0475bb9e7d3919c32726012b58b8a3b10459 26fffdcb0e7b713faf7311cc4dccea2ad91d45a187287613c6da28c2a26f5e24
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=122558
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Etag: "635560fe-118"
Expires: Tue, 25 Oct 2022 15:42:54 GMT
Last-Modified: Sun, 23 Oct 2022 15:42:54 GMT
Server: nginx
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash132144ca3a3c6f8285810a66fe0513fc 868c0475bb9e7d3919c32726012b58b8a3b10459 26fffdcb0e7b713faf7311cc4dccea2ad91d45a187287613c6da28c2a26f5e24
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=122558
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Etag: "635560fe-118"
Expires: Tue, 25 Oct 2022 15:42:54 GMT
Last-Modified: Sun, 23 Oct 2022 15:42:54 GMT
Server: nginx
Content-Length: 280
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash4c236f4ca13cd8fafc580bceb0995642 b6a7de7a8d994ed2cfb5ac74b6d7703de515ecdb 671228953eba5b2678df03acebb493e411752c6f5f72ff7f1e485032241d4aeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3825918e22323756d3051e41400ff9e1 9350bd13e2f09b9fa665538e54f39cb5a470cd06 f300b2942a3158d606989d7f4d8e5c56d81cb804fae0c6d6abcb9647273f97b6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F300B2942A3158D606989D7F4D8E5C56D81CB804FAE0C6D6ABCB9647273F97B6"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19331
Expires: Mon, 24 Oct 2022 11:02:27 GMT
Date: Mon, 24 Oct 2022 05:40:16 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash7dbe328751574db3465bc8c4f745a487 661ca1463bea33b14bec8f6669dacb2f1ffb78c1 95b3e76c084b00b1d5ca6e02551a48d645b0eae239313b46cfb3468d62b08193
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ | 142.250.74.35 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ IP142.250.74.35:0
Hashac2d0000c06933c36ffedb4f50d67858 c4b0a507474d61d9d8877378a7d586b28aa36b4c 669c17ebd3c27e188f47079d3dada3203abaf45ec0bcade7df84e20f6dbf2a87
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash132144ca3a3c6f8285810a66fe0513fc 868c0475bb9e7d3919c32726012b58b8a3b10459 26fffdcb0e7b713faf7311cc4dccea2ad91d45a187287613c6da28c2a26f5e24
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=122558
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Etag: "635560fe-118"
Expires: Tue, 25 Oct 2022 15:42:55 GMT
Last-Modified: Sun, 23 Oct 2022 15:42:54 GMT
Server: nginx
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash132144ca3a3c6f8285810a66fe0513fc 868c0475bb9e7d3919c32726012b58b8a3b10459 26fffdcb0e7b713faf7311cc4dccea2ad91d45a187287613c6da28c2a26f5e24
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=122558
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:16 GMT
Etag: "635560fe-118"
Expires: Tue, 25 Oct 2022 15:42:55 GMT
Last-Modified: Sun, 23 Oct 2022 15:42:54 GMT
Server: nginx
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash132144ca3a3c6f8285810a66fe0513fc 868c0475bb9e7d3919c32726012b58b8a3b10459 26fffdcb0e7b713faf7311cc4dccea2ad91d45a187287613c6da28c2a26f5e24
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=122558
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:17 GMT
Etag: "635560fe-118"
Expires: Tue, 25 Oct 2022 15:42:55 GMT
Last-Modified: Sun, 23 Oct 2022 15:42:54 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.156 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.156:0
Hashc2940e7c0f5e0b177e220550d3cea1c3 96187ee927ce8d102cdf5b5404fd25df7b7e1b4f 1cd02bc9f0ccbc334455ec4dbefd88740be45dd0274d35d88fc42eac5254c95a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=88715
Date: Mon, 24 Oct 2022 05:40:17 GMT
Etag: "6354c7b9-1d7"
Expires: Tue, 25 Oct 2022 06:18:52 GMT
Last-Modified: Sun, 23 Oct 2022 04:48:57 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -K_Qnjd263XMFb0kI9ugTLvYEBTGbMYB0OOdSItPxzJpJsvtxniA3Q==
Age: 5395
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash27230119a9981f874d5413b3f4bc2a2e b597c092ae885828800e0fa48f2af1c2a77fefc7 f0f7c7af1a1eeb95cf33e9969c8f049f7f17d6713de3ebae9693a4cd40624c61
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=164297
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:17 GMT
Etag: "63560409-117"
Expires: Wed, 26 Oct 2022 03:18:34 GMT
Last-Modified: Mon, 24 Oct 2022 03:18:33 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
|
|
| cdn.yampi.me/jquery/jquery.js | 104.26.3.88 | 200 OK | 35 kB |
URL HTTP/2cdn.yampi.me/jquery/jquery.js IP104.26.3.88:0
File typeASCII text, with very long lines (32060) Hashd3b291d481c8df70537a7bf00cfaea29 c7335350623ae62967ee693c845d30d868f3221c 5b87c4a6e91440fadf02bad6fc59456e93ebf69e3efcc9ee6d4934a6381d7e4b
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:17 GMT
content-type: application/javascript
x-amz-id-2: QsmtL8/nVojRDvW+BmEU501Lw4WV+5t5F8LfBudh5F+R0IvsUm6Z0OFwq4bu2oMNhxhgi4mZaYc=
x-amz-request-id: VXXM8XE9A56HSH68
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=36BSf1eFwRjcrmrJV5%2BPZKzpciAd8Tk0ol8rJUkquda9rhaLLh%2BZypmIZiTUWk%2B2pk1hcGr6Nh4WJqc9URwDs40Xmaf5iK%2F2toXgkkF32HZv%2BR%2BhQTrPNNJb975ZZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75f060759a71b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.css | 104.18.0.53 | 200 OK | 7.4 kB |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.css IP104.18.0.53:0
Hash6bc5854517e032335249e5ee88908237 1726a908105c939809f290c770bfa2a141804033 73dd29944485ab5470b7184e03aa56d867668ff02e007c1b265d5d6f9ec801b3
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:17 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
expires: Tue, 01 Nov 2022 05:40:17 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 75f060758b9cb517-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashffbfbd6d5d1e91af3c02313339eed0d0 df6457b655ac278fe32f3015bba4cff22dae5b2d 1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| github.bubbstore.com/svg/card-visa.svg | 104.21.29.224 | 200 OK | 36 kB |
URL HTTP/2github.bubbstore.com/svg/card-visa.svg IP104.21.29.224:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1343) Hash220d4f2716439d64f72bf262fdfb2333 63cedea8db69815f49e4ed746f106e10a610adad 5e98b92ebd8397b766dd1a82cb8ce3cbc74fae79fb082591dfe3e9d3e7ba26e1
GET /svg/card-visa.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:17 GMT
content-type: image/svg+xml
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-1288"
expires: Mon, 24 Oct 2022 05:50:17 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 0811:1FC4:49CCD9:4C2E22:634A07D5
via: 1.1 varnish
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1665796054.753340,VS0,VE110
vary: Accept-Encoding
x-fastly-request-id: 52e6eceff16367da498f565d90d20e9b8bb8a37b
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FOuzvaCdTcoLK6DRsky4y5xk8OTXcWn1jZBDgj%2FIl6V3BIbsdD75foBqUEwEzY%2BUcQEj%2FtIcVFIkccJUkAaaKZxFny1fdbv%2B9KFU6MH3bJzGaf15zTIIy9vcuJN%2BzFPitxGhzdMuRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f06075caff0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashffbfbd6d5d1e91af3c02313339eed0d0 df6457b655ac278fe32f3015bba4cff22dae5b2d 1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/6152682e36845/6152682e3684b.png |  16.12.2.8 | 200 OK | 8.2 kB |
URL HTTP/1.1s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/6152682e36845/6152682e3684b.png IP16.12.2.8:0
File typePNG image data, 440 x 114, 8-bit colormap, non-interlaced\012- data Hash38c2a5c9cc0ecfe5bfc40cfcac18032b 037a2564566555f14ae0cfd555eb83e34c2741a0 92dc6bc90d38b5a10a6ab828981c9270e1aede9f79ade793bc80c84fb9e54a1f
GET /king-assets.yampi.me/dooki/6152682e36845/6152682e3684b.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: cnr8HK9hVftc8ckFWGw+95ywjbjcYxOkNCNos74XgCyUbpnoODsmG7Q1/3E6vDlSX1lhE6SoteY=
x-amz-request-id: 1FJDJZ439P3WP474
Date: Mon, 24 Oct 2022 05:40:18 GMT
Last-Modified: Tue, 28 Sep 2021 00:56:15 GMT
ETag: "38c2a5c9cc0ecfe5bfc40cfcac18032b"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 8154
|
|
| api.siteblindado.com/v1/seal/aw/www.cea.com.br/seal.png | 23.36.79.27 | 200 OK | 3.3 kB |
URL HTTP/2api.siteblindado.com/v1/seal/aw/www.cea.com.br/seal.png IP23.36.79.27:0 ASN#20940 Akamai International B.V.
File typePNG image data, 115 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash0db8a1c64d65e3f130b5af3e755eb5c8 f1203a8fa49da9bdb4ed6c6960f2ab4d5eeef0b7 f41f1cd476de128a36fe717c52d9379bba5b3565a42fa70caa201c474f067503
GET /v1/seal/aw/www.cea.com.br/seal.png HTTP/1.1
Host: api.siteblindado.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 3297
x-amzn-requestid: 87badc2b-caac-4b5a-897c-7c26316f39e3
x-amzn-remapped-content-length: 3297
x-amz-apigw-id: afCAVElJoAMFnTA=
x-amzn-trace-id: Root=1-6355e39b-3735e0764e86cf84788e5634
x-amz-cf-pop: FRA60-P1
x-amz-cf-id: 7z8zQc9ydDLzCcB-kSUebwZHoW8-GfJgCgzxNT2_VBqWiBalB9-U6Q==
expires: Mon, 24 Oct 2022 05:40:17 GMT
date: Mon, 24 Oct 2022 05:40:17 GMT
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| github.bubbstore.com/svg/card-diners.svg | 104.21.29.224 | 200 OK | 78 kB |
URL HTTP/2github.bubbstore.com/svg/card-diners.svg IP104.21.29.224:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1368) Hash9ef1bbfe0a0020484c60fd808bf9fc88 f3e290f0f98916f489d0c3a42eb51ca206948dc5 ead9b41a45d978d0f1020c0b6b032d43f600896b94c90821a26028f6a8cc3ccc
GET /svg/card-diners.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:17 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-99b"
expires: Mon, 24 Oct 2022 05:50:17 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 080F:5E1C:AFBDB1:B53A8F:63488729
via: 1.1 varnish
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1665697577.313080,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: 489c2f57b388cb9e5f3a5b5c3112eb4e51ff3d72
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hZ3ouBqAs3tgTNVcXFeWvSZBt%2B6CRqzSDAmRZNFQPyxBWyFsYfqMY8ELLBoLY1epp2YUjFoXK6GAJ1kpbGb%2F0Y3nmOeuqFPax7XN%2FBKeNza4O5ZHasG%2FKj3epTvZ2ZnDmx3N4yMyZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f06075cb020b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| github.bubbstore.com/svg/card-amex.svg | 104.21.29.224 | 200 OK | 1.7 kB |
URL HTTP/2github.bubbstore.com/svg/card-amex.svg IP104.21.29.224:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (856) Hash3057b2259592ae7d322a2c0f07d0f56c 94f45e7c437a7c723d0d62aa33d10786f65a1237 ad40e3eaab110ad316aa2ae7fd74a11b5022cf869288b1e63291efccb1bcf95e
GET /svg/card-amex.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:17 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-5f3"
expires: Mon, 24 Oct 2022 05:50:17 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 0803:4C07:3880FB:39F715:63488729
via: 1.1 varnish
x-served-by: cache-bma1657-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1665697577.307724,VS0,VE124
vary: Accept-Encoding
x-fastly-request-id: 56ab66cc2b3d4b9f12ebc6936651dbee307ba410
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dGjvH%2BYWr255X%2FfEPKq11Dc8YxSGEs4NVpeIUfENUYcLfc19LJrp5Huf1bF10%2BZv2V5WcVFQllGenmzSW3u70XBDwa7KWgypN6%2FTzCFiNuPNs9Bix7ZlCtb1dc%2Bn9VpLjMF%2BbD8gPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f06075cafe0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash1ea30e37b7f86b7d0a7cb7341087fdc1 2e88a09e17356724c7e0f488d70be82ebc64f55c bb85d7fbaf1d4c0dc0a7cd27aebc8f21f942bf703896186a765131c80c87f059
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 729 B |
IP93.184.220.29:0
Hashe5ed7b088fd11a8d34c02673bf3fa791 c8d56559afed0211fb75af17bac9e12c56c5c2ef e12e18135263da1967c461703a0c8d954bbb163696cdce8c6f7be1234ab789e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5140
Cache-Control: max-age=159721
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:18 GMT
Etag: "6355de17-1d7"
Expires: Wed, 26 Oct 2022 02:02:19 GMT
Last-Modified: Mon, 24 Oct 2022 00:36:39 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 24 Oct 2022 04:41:09 GMT
expires: Mon, 24 Oct 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 3549
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js | 142.250.74.163 | 200 OK | 403 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js IP142.250.74.163:0
Size403 kB (402646 bytes) Hash4fe67974bb8d41d1c360aad15062f190 ea712b14354828804be8cad1b2e265c34696b556 4d36154912b6139ef1e60a0f2900681f20dfe13ca815cf71d1811898e39b36e7
GET /recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 401632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Oct 2022 09:35:32 GMT
expires: Sun, 22 Oct 2023 09:35:32 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Oct 2022 20:02:07 GMT
content-type: text/javascript
age: 158686
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| connect.facebook.net/en_US/fbevents.js | 157.240.221.16 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP157.240.221.16:0
File typeASCII text, with very long lines (64348) Hash71875f848896ee82a106224e048bd060 277a624e507dff2cd9cff104aa0c5618ca76e105 a22635e404a419027fc88eee705d254910d05d481953733d5e1fda4bc6ab3c5b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: eQ782RuMiNA08E/3a+Dh1xBSIV7B6SK6JtNSk+YnOjQYnmtg7mdi2QDzHO7JkEn3KLDugtEArbJBqk0rtBDQWw==
priority: u=3,i
content-length: 27027
x-fb-trip-id: 1679558926
date: Mon, 24 Oct 2022 05:40:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/j/collect?v=1&_v=j98&a=807040832&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Mercad%C3%A3o%20Online&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=464726943&gjid=187978386&cid=555945068.1666590018&tid=UA-45745009-5&_gid=1935281245.1666590018&_r=1&_slc=1&z=319032713 | 142.250.74.174 | 200 OK | 2.7 kB |
URL HTTP/2www.google-analytics.com/j/collect?v=1&_v=j98&a=807040832&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Mercad%C3%A3o%20Online&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=464726943&gjid=187978386&cid=555945068.1666590018&tid=UA-45745009-5&_gid=1935281245.1666590018&_r=1&_slc=1&z=319032713 IP142.250.74.174:0
Hashdb5e176158c46c7f3083a54e7bb56402 3fcafe968b86be403914c7735eb64f5a7ce68613 00a42d4337f18d59c6de807e2c27a0a3e63e1dccfac4e01d07cade27d2d96955
POST /j/collect?v=1&_v=j98&a=807040832&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Mercad%C3%A3o%20Online&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=464726943&gjid=187978386&cid=555945068.1666590018&tid=UA-45745009-5&_gid=1935281245.1666590018&_r=1&_slc=1&z=319032713 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://seguro.lojasmagazinedigital.com
date: Mon, 24 Oct 2022 05:40:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash1ea30e37b7f86b7d0a7cb7341087fdc1 2e88a09e17356724c7e0f488d70be82ebc64f55c bb85d7fbaf1d4c0dc0a7cd27aebc8f21f942bf703896186a765131c80c87f059
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash40a0c5d9e49870c90a89926a94827939 e944e76746842d210828bc5a7a055eaf52c1a40d 65dcf57709742ef1f069704fac573a16a3914bfe67b584be454ce5ff418b9a40
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5140
Cache-Control: max-age=159721
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:18 GMT
Etag: "6355de17-1d7"
Expires: Wed, 26 Oct 2022 02:02:19 GMT
Last-Modified: Mon, 24 Oct 2022 00:36:39 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash03d42e3245268a9d8f602cacf5a4404e 59b42c91ab2ec67086f549de3d47d45560b91fc7 6e88b2d135f33b12b5c8e244ea0ba75dc6acef16aeb0069a87141e49dd4b7ec9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=555945068.1666590018&jid=464726943&gjid=187978386&_gid=1935281245.1666590018&_u=IEDAAAASAAAAAC~&z=2052354885 | 173.194.222.155 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=555945068.1666590018&jid=464726943&gjid=187978386&_gid=1935281245.1666590018&_u=IEDAAAASAAAAAC~&z=2052354885 IP173.194.222.155:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=555945068.1666590018&jid=464726943&gjid=187978386&_gid=1935281245.1666590018&_u=IEDAAAASAAAAAC~&z=2052354885 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.lojasmagazinedigital.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 24 Oct 2022 05:40:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash03d42e3245268a9d8f602cacf5a4404e 59b42c91ab2ec67086f549de3d47d45560b91fc7 6e88b2d135f33b12b5c8e244ea0ba75dc6acef16aeb0069a87141e49dd4b7ec9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| seguro.lojasmagazinedigital.com/cart/recomm | 170.82.173.30 | 200 OK | 1.1 kB |
URL HTTP/2seguro.lojasmagazinedigital.com/cart/recomm IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File typeJSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1363) Hash2a2f06fdc912cdc6301be31e27e31b10 7d7a2506602d7b8a049981a118d2d32114c43738 00d0f4aa6282ee8f42dc06eecd03c7f214e9935784e4c8bfcbbfa05fd768f480
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /cart/recomm HTTP/1.1
Host: seguro.lojasmagazinedigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6Ijg0ODllNDMxMDNiZjczMTEiLCJ0ciI6ImM2MTc5MjFlMWEyM2ExZjcxM2FhMWUwYWE3ZTI0YmJmIiwidGkiOjE2NjY1OTAwMTY5Nzd9fQ==
traceparent: 00-c617921e1a23a1f713aa1e0aa7e24bbf-8489e43103bf7311-01
tracestate: 2935249@nr=0-1-2935249-1134170823-8489e43103bf7311----1666590016977
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=b03a3aa0-5347-11ed-b45f-85db4293ac78
Cookie: XSRF-TOKEN=eyJpdiI6ImNYdUJqSllkK0VibmVCVVZYemx3akE9PSIsInZhbHVlIjoiaW5mY1NlRk5EWmV6TjFNcTI3THlxYjRzOCtqbUoyT3Flak95dXhrM3V5QW14M1J6NkVLY2Q4RDVSOUY1S0JIcHA0OFpLaHdjWUVaeXE4WVwvOEtDRUp3PT0iLCJtYWMiOiI2OGRmNTFlY2FhZGI4NWQzYjgxNzFhNmFhZDc2ODcxOTI2MzA2NWM0YTM2OTMxNjhhMmNjNzAyMTMxMTU4ZTFjIn0%3D; bubbstore_checkout=eyJpdiI6ImNDN0J4YXBWbzJiQVJkOGhoSUVJdWc9PSIsInZhbHVlIjoibGRuN2VIejh6dVlYR2ljVGkxbGh2cnlybDF6YWl3S1AwK0JcL0UyOCswcytITjFlRWVMYUlSU0pmTW5IUzE5bzNXSWtSejdKdEJOWDVHcEwrUDFIcFNnPT0iLCJtYWMiOiI3NjQ1NjEwZWVkYzZjY2E3ZTVlNWY0NWJjNGQ3MmQxYmU1YzNiYWFjMzQxMTAyOWJhNmI3MTFhZmFiMWJkYjVhIn0%3D; digitalmagazine_cart=eyJpdiI6IkJVaWZvd3U4ZTZjdDlQQUl2anVRZmc9PSIsInZhbHVlIjoiSXo2WFIwSVg3eWdrXC9zcDdua0VCMWl5Vk8rb1UxN2t5RTZFMEpPWWRYbEExbnpWV0lJN3UxKzVmODFEbXdXaVhsY1V6STRucGN2Uk96eFFQTFNxVnFBPT0iLCJtYWMiOiI0MWFiNDBlZjQwYzEzY2MxNDM3MmViNjdhZjgxYzUxY2NhZjZkYWU2YzM4ZTA3ZTc1OWY5MWVkMzg3MWJlOWE5In0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:17 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6ImhxanB6ZmQzQUlyNHdUU1FwNFkwdVE9PSIsInZhbHVlIjoid2dNVnl1amhQSVd0em1YUVBoWVlzMGtkemdyblFybkxRRCsxRE54S3pkV2JZSzVkcGNMdE80N1J6WEJuY1piaXdVUG9sKzdXSnFhXC8rMEVzaEluWUxRPT0iLCJtYWMiOiJhZmVhYjNlOWYxYTM3YzY3OWU5ZWVlZGVjNDM4ZTRjY2NjZGJkNjg4MGI3NDIxNjQ3OTc1Y2JjYzg0ZjEzNDc0In0%3D; expires=Mon, 24-Oct-2022 08:40:17 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IjkrSmcyZmZjQWdwXC80QW5qN2s5SkJnPT0iLCJ2YWx1ZSI6Ik1rdnd2RU9QUGFXazlMYXdmSDlJVUxMc3FcLzVHMVhHakp0anBxSFBnQjRZbEltV2VEZ2lBV3BsclpwcUN5c1ArYkMxMHZ6dE01NEoxR1BwMmxUXC9LM1E9PSIsIm1hYyI6Ijg2Mzc3ZGU0YWU1NzNjMjNkM2U0Yzc4YWE1NWEyYTcyZDhkYTI0NzYyNGZkZWUyNTYyMTU0ZGFiYWMyMmYwYWEifQ%3D%3D; expires=Mon, 24-Oct-2022 08:40:17 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.yampi.io/ana/ana.min.js?t=1666656000000 | 104.18.15.227 | 200 OK | 2.8 kB |
URL HTTP/2cdn.yampi.io/ana/ana.min.js?t=1666656000000 IP104.18.15.227:0
File typeASCII text, with very long lines (7571) Hash8c3e9458d420450fdf564c3f43848098 e4e8a532fc488cdb4c9cd444b632b6aa3f41fa7f 54c5426f5245f46b529a61c7f7a443ed8122df4297ab0375ed69c57a3a7fcf20
GET /ana/ana.min.js?t=1666656000000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:18 GMT
content-type: application/javascript
x-amz-id-2: cXDLp38vvUVS47XMsOeoepFZ/tD2exxMhCvTSkHCOKL/qMfZxCoeWkYcS3B3ShFKPNvi7RS3h9U=
x-amz-request-id: ABYAT0QMV0803M01
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
expires: Tue, 24 Oct 2023 05:40:18 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 75f060792973b524-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62853f325e349/62853f325e34b.png | 16.12.2.8 | 200 OK | 326 kB |
URL HTTP/1.1s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62853f325e349/62853f325e34b.png IP16.12.2.8:0
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data Size326 kB (326260 bytes) Hashdf8d24ed57ef87631718e59aa0e92ea3 eec0dfd62b392e317425e49d024924a0fc7d185a 9e477f983d179eaedaefa64e6f4b8e310eee24efa92095f6686b3f64feaa0413
GET /king-assets.yampi.me/dooki/62853f325e349/62853f325e34b.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: luHFQFUyN4g1A8YeEBjAtvuRk81pyDJKtL3J5Qu+CJDwt3GGd32uUs/jaI46Lono61zntZwLN74=
x-amz-request-id: N9522954QYRKTPRZ
Date: Mon, 24 Oct 2022 05:40:19 GMT
Last-Modified: Wed, 18 May 2022 18:47:15 GMT
ETag: "df8d24ed57ef87631718e59aa0e92ea3"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 326260
|
|
| www.facebook.com/tr/?id=610423693896694&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019236&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET | 157.240.221.35 | 200 OK | 258 kB |
URL HTTP/2www.facebook.com/tr/?id=610423693896694&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019236&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET IP157.240.221.35:0
File typegzip compressed data, from Unix\012- data Size258 kB (257544 bytes) Hashf50a4004bf54c2b1601612dbe805406f 35863e1625438d5ee2924d375d4a78010d921142 9807398c59db9bf4fc8c4b6a497f921d0b42c7e83aea2b8c190c977d42261c56
GET /tr/?id=610423693896694&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019236&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 24 Oct 2022 05:40:19 GMT
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=417258713890177&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019240&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET | 157.240.221.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=417258713890177&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019240&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET IP157.240.221.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=417258713890177&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019240&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 24 Oct 2022 05:40:19 GMT
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=3401086333453819&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019243&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET | 157.240.221.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=3401086333453819&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019243&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET IP157.240.221.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=3401086333453819&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019243&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 24 Oct 2022 05:40:19 GMT
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=610423693896694&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019245&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_x4hbg845n&tm=1&exp=d1&rqm=GET | 157.240.221.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=610423693896694&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019245&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_x4hbg845n&tm=1&exp=d1&rqm=GET IP157.240.221.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=610423693896694&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019245&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_x4hbg845n&tm=1&exp=d1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 24 Oct 2022 05:40:19 GMT
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=5518836481527087&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019246&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_9uo63hqc2&tm=1&rqm=GET | 157.240.221.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=5518836481527087&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019246&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_9uo63hqc2&tm=1&rqm=GET IP157.240.221.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=5518836481527087&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019246&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_9uo63hqc2&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 24 Oct 2022 05:40:19 GMT
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=417258713890177&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019248&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_23cf42pd2&tm=1&rqm=GET | 157.240.221.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=417258713890177&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019248&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_23cf42pd2&tm=1&rqm=GET IP157.240.221.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=417258713890177&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019248&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_23cf42pd2&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 24 Oct 2022 05:40:19 GMT
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=3401086333453819&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019249&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_cnx3ahmve&tm=1&rqm=GET | 157.240.221.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=3401086333453819&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019249&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_cnx3ahmve&tm=1&rqm=GET IP157.240.221.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=3401086333453819&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019249&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=1&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=AddPaymentInfo_cnx3ahmve&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 24 Oct 2022 05:40:19 GMT
X-Firefox-Spdy: h2
|
|
| github.bubbstore.com/svg/card-aura.svg | 104.21.29.224 | 200 OK | 1.8 kB |
URL HTTP/2github.bubbstore.com/svg/card-aura.svg IP104.21.29.224:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3016) Hash27e031c70a6f8128f41c093399d8b837 51021c4e1a77ed6008a67e7641d7907e43410a4a 5227f555882fb86a8b33da1bf56c3e5f2a6a3a52a8ce360e734db59f44261e4d
GET /svg/card-aura.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:17 GMT
content-type: image/svg+xml
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-111a"
expires: Mon, 24 Oct 2022 05:50:17 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 0824:12F81:12BDFFD:135F880:634A07D5
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1665796054.751657,VS0,VE123
vary: Accept-Encoding
x-fastly-request-id: 19573ac36c9c2f1ea624ca4260c2af9d2b2c931a
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z%2FY0qr31WVl8ndrvlUbKDlOrIE2Kqs%2Fs2U9h7jtf4dI5ryP%2BZGoeYVPyOrzzy%2BFcLFYliosr8GizNA1z%2Fjfw%2BmN9kiCRQUgGYHp%2FXS%2B4yGuRsrMhDWwdQ97MkqncV7iFFluozbpm3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f06075cb030b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seguro.lojasmagazinedigital.com/e/t | 170.82.173.30 | 200 OK | 172 kB |
URL HTTP/2seguro.lojasmagazinedigital.com/e/t IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File typeASCII text, with very long lines (64471) Size172 kB (171778 bytes) Hashcb17ea64e67213aaef7c0dba13b6240b 3d7f6f08b24ca0253b4a3364af50f5936ae9f7b3 1096fb500e7beb32b658a3f3e96929a47ba58367a1fc0c0d18eaab9f349c5f71
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
POST /e/t HTTP/1.1
Host: seguro.lojasmagazinedigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjBhNmJiYTc5NmRmNWRhNzUiLCJ0ciI6ImZjZTJhMTUzYTYxYjIyZmUwMjIxZGRhOWI1YTI1NWUzIiwidGkiOjE2NjY1OTAwMTY5ODZ9fQ==
traceparent: 00-fce2a153a61b22fe0221dda9b5a255e3-0a6bba796df5da75-01
tracestate: 2935249@nr=0-1-2935249-1134170823-0a6bba796df5da75----1666590016986
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 365
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=b03a3aa0-5347-11ed-b45f-85db4293ac78
Cookie: XSRF-TOKEN=eyJpdiI6ImNYdUJqSllkK0VibmVCVVZYemx3akE9PSIsInZhbHVlIjoiaW5mY1NlRk5EWmV6TjFNcTI3THlxYjRzOCtqbUoyT3Flak95dXhrM3V5QW14M1J6NkVLY2Q4RDVSOUY1S0JIcHA0OFpLaHdjWUVaeXE4WVwvOEtDRUp3PT0iLCJtYWMiOiI2OGRmNTFlY2FhZGI4NWQzYjgxNzFhNmFhZDc2ODcxOTI2MzA2NWM0YTM2OTMxNjhhMmNjNzAyMTMxMTU4ZTFjIn0%3D; bubbstore_checkout=eyJpdiI6ImNDN0J4YXBWbzJiQVJkOGhoSUVJdWc9PSIsInZhbHVlIjoibGRuN2VIejh6dVlYR2ljVGkxbGh2cnlybDF6YWl3S1AwK0JcL0UyOCswcytITjFlRWVMYUlSU0pmTW5IUzE5bzNXSWtSejdKdEJOWDVHcEwrUDFIcFNnPT0iLCJtYWMiOiI3NjQ1NjEwZWVkYzZjY2E3ZTVlNWY0NWJjNGQ3MmQxYmU1YzNiYWFjMzQxMTAyOWJhNmI3MTFhZmFiMWJkYjVhIn0%3D; digitalmagazine_cart=eyJpdiI6IkJVaWZvd3U4ZTZjdDlQQUl2anVRZmc9PSIsInZhbHVlIjoiSXo2WFIwSVg3eWdrXC9zcDdua0VCMWl5Vk8rb1UxN2t5RTZFMEpPWWRYbEExbnpWV0lJN3UxKzVmODFEbXdXaVhsY1V6STRucGN2Uk96eFFQTFNxVnFBPT0iLCJtYWMiOiI0MWFiNDBlZjQwYzEzY2MxNDM3MmViNjdhZjgxYzUxY2NhZjZkYWU2YzM4ZTA3ZTc1OWY5MWVkMzg3MWJlOWE5In0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:18 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InBiRmNRTEhKeHBnNUhacnJSaFFWUVE9PSIsInZhbHVlIjoiWEdpNjFGWWZUd2F2b3NhbHJSazlkTjJ2K2dxUmExOHAxY0RBeUxaYUVXVnNPTmw4Uk5hYTN2ODlKWnluUW5JYitMOElHXC9vRDhlZStiUU5wVTRVcUlRPT0iLCJtYWMiOiJjZWRmYzk5ZTU5OTUyOGY4NGYyM2NhNTljZGVlN2Y1MWRjOGY2ODdmMjAzMmM2ODkyYmI3YjI5NDYwZWQ5ODNkIn0%3D; expires=Mon, 24-Oct-2022 08:40:18 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InpURFdEMHRjUVdGK3lydk5hXC9nblZRPT0iLCJ2YWx1ZSI6IlZ0aFwvWko4ZFlDQ3grcHh3T0x1N201c0pwQ3lsQmhoWUlnNjVVN0c1V2lPVG9XUnhpY09DY2ZuWmJoQWkxZDZZazRrNWp6TjVLRllCSnQ0T3l6bFd1UT09IiwibWFjIjoiYjgyMTQ1ZDUzZGY1ZTYwYWJlYzVkYzk1MDcxN2Q3N2FkZTc0ZDZhMjZiYmYxNmI3ZWM0N2YyM2E5NzQwZTExOSJ9; expires=Mon, 24-Oct-2022 08:40:18 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApQCA4DHh5UFUMEUAMABQNVWV4ACQpTAFJQFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=5518836481527087&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019238&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET | 157.240.221.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=5518836481527087&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019238&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET IP157.240.221.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=5518836481527087&ev=PageView&dl=https%3A%2F%2Fseguro.lojasmagazinedigital.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3Db03a3aa0-5347-11ed-b45f-85db4293ac78&rl=&if=false&ts=1666590019238&cd[content_ids]=%5B%227894035529952%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=29&fbp=fb.1.1666590019235.1532649465&it=1666590017954&coo=false&eid=PageView_nmk93axoe&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 24 Oct 2022 05:40:19 GMT
X-Firefox-Spdy: h2
|
|
| js-agent.newrelic.com/nr-spa-1216.min.js |  151.101.86.137 | 200 OK | 18 kB |
URL HTTP/2js-agent.newrelic.com/nr-spa-1216.min.js IP151.101.86.137:0
File typeASCII text, with very long lines (32010) Hash6561a2403142205f966207d61576f1a6 1310e72f494e12ab63a4280fc1600a2c89dc9bb8 0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 24 Oct 2022 05:40:20 GMT
via: 1.1 varnish
x-served-by: cache-bma1673-BMA
x-cache: HIT
x-cache-hits: 2285
x-timer: S1666590020.155634,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashb57408eb2ea5044b57994a234d9d93bf d26ecedffdb4c553f589e997f9d61a26ae9dd442 adc29d68b3de5e95338aaced4633ba2651144a759070804b5f3e69175521ec07
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5033
Cache-Control: max-age=148481
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 05:40:20 GMT
Etag: "6355b29c-1d7"
Expires: Tue, 25 Oct 2022 22:55:01 GMT
Last-Modified: Sun, 23 Oct 2022 21:31:08 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=7796&ck=1&ref=https://seguro.lojasmagazinedigital.com/checkout/payment&ap=140&be=4131&fe=7680&dc=5138&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1666590011829,%22n%22:0,%22f%22:3056,%22dn%22:3056,%22dne%22:3056,%22c%22:3056,%22s%22:3056,%22ce%22:3056,%22rq%22:3058,%22rp%22:4111,%22rpe%22:4111,%22dl%22:4118,%22di%22:5137,%22ds%22:5138,%22de%22:5200,%22dc%22:7679,%22l%22:7679,%22le%22:7681%7D,%22navigation%22:%7B%7D%7D&fcp=5088&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken | 162.247.241.14 | 200 OK | 77 B |
URL HTTP/1.1bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=7796&ck=1&ref=https://seguro.lojasmagazinedigital.com/checkout/payment&ap=140&be=4131&fe=7680&dc=5138&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1666590011829,%22n%22:0,%22f%22:3056,%22dn%22:3056,%22dne%22:3056,%22c%22:3056,%22s%22:3056,%22ce%22:3056,%22rq%22:3058,%22rp%22:4111,%22rpe%22:4111,%22dl%22:4118,%22di%22:5137,%22ds%22:5138,%22de%22:5200,%22dc%22:7679,%22l%22:7679,%22le%22:7681%7D,%22navigation%22:%7B%7D%7D&fcp=5088&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken IP162.247.241.14:0
File typeASCII text, with no line terminators Hashf1442f5831dbbe0210da2d7a4180d6b8 2ade23c6c7a001c66f0c0a9a101ec152747b434e c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=7796&ck=1&ref=https://seguro.lojasmagazinedigital.com/checkout/payment&ap=140&be=4131&fe=7680&dc=5138&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1666590011829,%22n%22:0,%22f%22:3056,%22dn%22:3056,%22dne%22:3056,%22c%22:3056,%22s%22:3056,%22ce%22:3056,%22rq%22:3058,%22rp%22:4111,%22rpe%22:4111,%22dl%22:4118,%22di%22:5137,%22ds%22:5138,%22de%22:5200,%22dc%22:7679,%22l%22:7679,%22le%22:7681%7D,%22navigation%22:%7B%7D%7D&fcp=5088&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 24 Oct 2022 05:40:20 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 75f0608a6ccfb4f4-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=1518fface3b09b8c; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
|
|
| bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=8313&ck=1&ref=https://seguro.lojasmagazinedigital.com/checkout/payment | 162.247.241.14 | 200 OK | 24 B |
URL HTTP/1.1bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=8313&ck=1&ref=https://seguro.lojasmagazinedigital.com/checkout/payment IP162.247.241.14:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashbc32ed98d624acb4008f986349a20d26 2d3df8c11d2168ce2c27e0937421d11d85016361 0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=8313&ck=1&ref=https://seguro.lojasmagazinedigital.com/checkout/payment HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 613
Origin: https://seguro.lojasmagazinedigital.com
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 24 Oct 2022 05:40:21 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 75f0608d7f6fb4f4-OSL
Access-Control-Allow-Origin: https://seguro.lojasmagazinedigital.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
|
|
| github.bubbstore.com/svg/card-mastercard.svg | 104.21.29.224 | 200 OK | 0 B |
URL HTTP/2github.bubbstore.com/svg/card-mastercard.svg IP104.21.29.224:0
GET /svg/card-mastercard.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:17 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-5b3"
expires: Mon, 24 Oct 2022 05:50:17 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 0812:ABF0:48DB6A:4B36EF:634A07D5
via: 1.1 varnish
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1665796054.778869,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: 7c340ffa73c745c694c2902832bbe5f7be7a0eb4
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M28gEDSiQihBnoVBoAaLdtC4Qjp7b5h%2Btytz3oTZ5Ya%2FK6obDLXoNMGQLm3x5SUAnam3NWu0cSmWTPVObdtLCt5xT%2Fnxkv3UMPBuoPb%2BLGaAPFPgGxd5Z1WQ47oHL2fgi8h6Kpsxmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f06075cb010b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737 | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737 IP104.26.3.88:0
GET /checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:17 GMT
content-type: application/javascript
x-amz-id-2: t+pRi2mpVP/HsO6DPUQ+MwgdDbnyFwdhufrM6mVKoFcR90+4pnZEZq1LTqPIV+vqrgSsO53OeDg=
x-amz-request-id: 8PNW7DEJ2HZN8VAP
last-modified: Mon, 17 Oct 2022 16:57:49 GMT
x-amz-version-id: XNhG7PkF_3JzSvKaF.22AtqXuyl0wmHr
etag: W/"29013ef444dc3b59ed77c986db2a8f06"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eCPnAeNp%2FSShrvHYbU5jAiy0fjkcGLfxh0nniHq43DH0bRXogC6TOL6s5yUN7hoY9d8pPlOCtyP3A4KhfzNCWne6ChUi9E2ts5Iie6STRNY2i1hJnr8nUSWVvgtm%2FhNXhLjsf6VPB0lp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75f060758a6cb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seguro.lojasmagazinedigital.com/cart?cart_token=shopify-53772052fb20d4bc594995a07167ca77&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=c465959b50f562ffa73453f817b030733f866d64&customerToken=b03a3aa0-5347-11ed-b45f-85db4293ac78 | 170.82.173.30 | 302 Found | 0 B |
URL HTTP/2seguro.lojasmagazinedigital.com/cart?cart_token=shopify-53772052fb20d4bc594995a07167ca77&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=c465959b50f562ffa73453f817b030733f866d64&customerToken=b03a3aa0-5347-11ed-b45f-85db4293ac78 IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /cart?cart_token=shopify-53772052fb20d4bc594995a07167ca77&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=c465959b50f562ffa73453f817b030733f866d64&customerToken=b03a3aa0-5347-11ed-b45f-85db4293ac78 HTTP/1.1
Host: seguro.lojasmagazinedigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Mon, 24 Oct 2022 05:40:15 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.lojasmagazinedigital.com/checkout/payment?cart_token=shopify-53772052fb20d4bc594995a07167ca77&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=c465959b50f562ffa73453f817b030733f866d64&customerToken=b03a3aa0-5347-11ed-b45f-85db4293ac78
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InVYZUk5R1VMMWpvRDk3VGZJSzcrbmc9PSIsInZhbHVlIjoiY2t3WkJsMHlIRUd0WjMwdkZOcjQrUnhCdyt3QTU3TFFBQStDdTNQd1RHR1N3Qm5SWitRclRiajc4ZTA1b1wvZExveFQzQnVidkxnNm9iWWd6QW1hd21RPT0iLCJtYWMiOiI3OTFhYjdmMTAxZTNhMTJjMTJkMjUyYzkzYTAzMGVkNjY4YjdkODhmZTQ2MDJkNDlmZmM5MWJiODBmZDZhNDkxIn0%3D; expires=Mon, 24-Oct-2022 08:40:15 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IktxNit1YVdqa2Y4RStTQWlwNXJWeFE9PSIsInZhbHVlIjoiR1NpdkFXaW93UElWdnlLSk9ZVUxISkIwSDBmc3hpYTVBUkh6MDl2R2J2TVAzc0xRTmNSa21rS1RLZGh1Z3FqVjN1c0Y3ZXNRNzlpenErRlI0ZGZlQUE9PSIsIm1hYyI6ImE5NjUwMGMwMmM3NTk5MGE0YzQ3ZGU2ZGI3YmFjZmFmMzkyMzZkY2Y0MjdiNGZjNmM2YzI1NGI0NzZmM2NjNzIifQ%3D%3D; expires=Mon, 24-Oct-2022 08:40:15 GMT; Max-Age=10800; path=/; httponly
digitalmagazine_cart=eyJpdiI6IkJVaWZvd3U4ZTZjdDlQQUl2anVRZmc9PSIsInZhbHVlIjoiSXo2WFIwSVg3eWdrXC9zcDdua0VCMWl5Vk8rb1UxN2t5RTZFMEpPWWRYbEExbnpWV0lJN3UxKzVmODFEbXdXaVhsY1V6STRucGN2Uk96eFFQTFNxVnFBPT0iLCJtYWMiOiI0MWFiNDBlZjQwYzEzY2MxNDM3MmViNjdhZjgxYzUxY2NhZjZkYWU2YzM4ZTA3ZTc1OWY5MWVkMzg3MWJlOWE5In0%3D; expires=Sat, 29-Oct-2022 05:40:15 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
|
|
| github.bubbstore.com/svg/card-hipercard.svg | 104.21.29.224 | 200 OK | 0 B |
URL HTTP/2github.bubbstore.com/svg/card-hipercard.svg IP104.21.29.224:0
GET /svg/card-hipercard.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:17 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-54bc"
expires: Mon, 24 Oct 2022 05:50:17 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 080A:0ADF:81B291:C4CA89:634CB836
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1665972278.267070,VS0,VE94
vary: Accept-Encoding
x-fastly-request-id: 5d39bedf0044cd35548c0116ee887b436a66c060
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8XfvpdMtPwlZtZZEypn3GaF2RHKAzRYIPDM%2FgGTsoSdNHG9TOHSPU3T%2F0ZuiuRt7eSt0hefJ2%2FV%2F%2BzGaxoGf4lfWlQQWxpGjRCYSrT9TqtyaRPjlw7IREh40ciyh7Ei105sHvq77sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f06075cb000b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap IP142.250.74.10:0
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 24 Oct 2022 05:40:16 GMT
date: Mon, 24 Oct 2022 05:40:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690 | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690 IP104.26.3.88:0
GET /checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.lojasmagazinedigital.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:17 GMT
content-type: text/css
x-amz-id-2: TFeFBTQKDxErsapH4IB7ougpeXwNtLz4KXLfWfoIopR0plLYMlCs3pIr+cvNYFac1pvCyb/CvhY=
x-amz-request-id: ZR1HAN8RMGGE4KE2
last-modified: Tue, 11 Oct 2022 12:54:40 GMT
x-amz-version-id: hAW8LRqvA2JD0cqLKO7P1m_k08cGos6U
etag: W/"d31e71e22fa577d1f19d2488ebd24690"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1f1VTlg3GJvCVbbKRmrbItDkbS7loPVRETJYZ8Az5nB9WLgyd8VRSEqBLkzdcPd9Y41QlBByTBWHbTddJRJF2nw0ROjpete8l8roIjveA2knAjTzURG72mCs34Yaapkq631ASYTHQPY7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75f060754a39b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| linkcurto.co/cpncjttbh008k | 172.67.157.46 | 301 Moved Permanently | 0 B |
URL HTTP/2linkcurto.co/cpncjttbh008k IP172.67.157.46:0
GET /cpncjttbh008k HTTP/1.1
Host: linkcurto.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Mon, 24 Oct 2022 05:40:13 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.lojasmagazinedigital.com/cart?cart_token=shopify-53772052fb20d4bc594995a07167ca77&utm_source=SMS&utm_campaign=Carrinho Abandonado 1&forceCheckout=1&skipToCheckout=1&store_token=c465959b50f562ffa73453f817b030733f866d64&customerToken=b03a3aa0-5347-11ed-b45f-85db4293ac78
set-cookie: XSRF-TOKEN=eyJpdiI6ImxIN0RobEkyMmF5RkF1QjN4WElhSHc9PSIsInZhbHVlIjoia3NFRDNSb3dqQzEzekw5UkpzbHd5TlMvZUh4anl2dWZhbVdQQUtXdThYZ05mVWF0alRNUU44L0RvZUZWdmE5endJU2xoSVdmNSsrT1FrdmJFYWFmWEN1a3VTNUpmQTR6b21hWmc5Q1NycjdicURPaVhiKzROWWJyOEVBYWxrdVIiLCJtYWMiOiJiNTlkNGUxY2M2Mzg1ZDQ1NzgxYWIyMDkxMjJmMmE4MDMyZGUwOWM4ZWI0NzM0NzQ4MTJkMjIzZGQ5ZmUyNTU3In0%3D; expires=Mon, 24-Oct-2022 07:40:13 GMT; Max-Age=7200; path=/; samesite=lax
linkcurto_session=eyJpdiI6IjEwdEtpTkU0U1BvS0NBbHJGdHI1c0E9PSIsInZhbHVlIjoiY2RCQ2VsN2lmV1Nva21mMTM4VzVQYlhZMHo5Z1hhaFZ5Q01DTlFYVGNxenc2YmhzT0dGREV6UG1DU28vV000VGFrSG4zMytkK1EzaXliaWpBaUtsbS8xdEgyTkFxMUxmV3hyK25QUFFNMWF5MGVWbWZGVnpEdlpqeVk5N2xXWWEiLCJtYWMiOiI2NTFjYTI2MWVmMmVjZjY3MmE1YzNlNmY2YTViNDZiMmVhMzJmZWE5ZDIyZjYwNGI1OGYwZWQ0Njg5Yjg1NTBjIn0%3D; expires=Mon, 24-Oct-2022 07:40:13 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DvRGbDk11xIYffzi8dGhFBe2lIxdvR1ioSD4SPd2eJ7hSXphfRE3yXLOuzKK0UQP3OH0Kw4ns2BDfDQ6LEdlJ1zmb2S7ulqtWoUo6ABLicLYeHbPoiDct96Kt7P53qc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f0605c3b99b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seguro.lojasmagazinedigital.com/checkout/payment?cart_token=shopify-53772052fb20d4bc594995a07167ca77&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=c465959b50f562ffa73453f817b030733f866d64&customerToken=b03a3aa0-5347-11ed-b45f-85db4293ac78 | 170.82.173.30 | 200 OK | 0 B |
URL HTTP/2seguro.lojasmagazinedigital.com/checkout/payment?cart_token=shopify-53772052fb20d4bc594995a07167ca77&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=c465959b50f562ffa73453f817b030733f866d64&customerToken=b03a3aa0-5347-11ed-b45f-85db4293ac78 IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /checkout/payment?cart_token=shopify-53772052fb20d4bc594995a07167ca77&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=c465959b50f562ffa73453f817b030733f866d64&customerToken=b03a3aa0-5347-11ed-b45f-85db4293ac78 HTTP/1.1
Host: seguro.lojasmagazinedigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6InVYZUk5R1VMMWpvRDk3VGZJSzcrbmc9PSIsInZhbHVlIjoiY2t3WkJsMHlIRUd0WjMwdkZOcjQrUnhCdyt3QTU3TFFBQStDdTNQd1RHR1N3Qm5SWitRclRiajc4ZTA1b1wvZExveFQzQnVidkxnNm9iWWd6QW1hd21RPT0iLCJtYWMiOiI3OTFhYjdmMTAxZTNhMTJjMTJkMjUyYzkzYTAzMGVkNjY4YjdkODhmZTQ2MDJkNDlmZmM5MWJiODBmZDZhNDkxIn0%3D; bubbstore_checkout=eyJpdiI6IktxNit1YVdqa2Y4RStTQWlwNXJWeFE9PSIsInZhbHVlIjoiR1NpdkFXaW93UElWdnlLSk9ZVUxISkIwSDBmc3hpYTVBUkh6MDl2R2J2TVAzc0xRTmNSa21rS1RLZGh1Z3FqVjN1c0Y3ZXNRNzlpenErRlI0ZGZlQUE9PSIsIm1hYyI6ImE5NjUwMGMwMmM3NTk5MGE0YzQ3ZGU2ZGI3YmFjZmFmMzkyMzZkY2Y0MjdiNGZjNmM2YzI1NGI0NzZmM2NjNzIifQ%3D%3D; digitalmagazine_cart=eyJpdiI6IkJVaWZvd3U4ZTZjdDlQQUl2anVRZmc9PSIsInZhbHVlIjoiSXo2WFIwSVg3eWdrXC9zcDdua0VCMWl5Vk8rb1UxN2t5RTZFMEpPWWRYbEExbnpWV0lJN3UxKzVmODFEbXdXaVhsY1V6STRucGN2Uk96eFFQTFNxVnFBPT0iLCJtYWMiOiI0MWFiNDBlZjQwYzEzY2MxNDM3MmViNjdhZjgxYzUxY2NhZjZkYWU2YzM4ZTA3ZTc1OWY5MWVkMzg3MWJlOWE5In0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 05:40:16 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6ImNYdUJqSllkK0VibmVCVVZYemx3akE9PSIsInZhbHVlIjoiaW5mY1NlRk5EWmV6TjFNcTI3THlxYjRzOCtqbUoyT3Flak95dXhrM3V5QW14M1J6NkVLY2Q4RDVSOUY1S0JIcHA0OFpLaHdjWUVaeXE4WVwvOEtDRUp3PT0iLCJtYWMiOiI2OGRmNTFlY2FhZGI4NWQzYjgxNzFhNmFhZDc2ODcxOTI2MzA2NWM0YTM2OTMxNjhhMmNjNzAyMTMxMTU4ZTFjIn0%3D; expires=Mon, 24-Oct-2022 08:40:16 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImNDN0J4YXBWbzJiQVJkOGhoSUVJdWc9PSIsInZhbHVlIjoibGRuN2VIejh6dVlYR2ljVGkxbGh2cnlybDF6YWl3S1AwK0JcL0UyOCswcytITjFlRWVMYUlSU0pmTW5IUzE5bzNXSWtSejdKdEJOWDVHcEwrUDFIcFNnPT0iLCJtYWMiOiI3NjQ1NjEwZWVkYzZjY2E3ZTVlNWY0NWJjNGQ3MmQxYmU1YzNiYWFjMzQxMTAyOWJhNmI3MTFhZmFiMWJkYjVhIn0%3D; expires=Mon, 24-Oct-2022 08:40:16 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
104.21.81.61