r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c7a8ba48383a0e56baca8c8c41b81a04
b04c1f1e730a71f17ff639c9db697c532d4e5421
7860552382285e6eddddc5226c6f6400caa3f6fc3cb4b8a2d550c6fc653f78bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7860552382285E6EDDDDC5226C6F6400CAA3F6FC3CB4B8A2D550C6FC653F78BB"
Last-Modified: Sun, 06 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18764
Expires: Sun, 06 Nov 2022 18:58:44 GMT
Date: Sun, 06 Nov 2022 13:46:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 05978511215be8462d0b69e33b3a91a3
61535ba131d547f1c5108d9e7763ee3fc8d8c824
cfdbf0f9e88e3c1ae8eb03e46c352633a75d4b2edbfbd57c1c6b52ff1623a109
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3275
Cache-Control: max-age=164378
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:00 GMT
Etag: "63678ce7-1d7"
Expires: Tue, 08 Nov 2022 11:25:38 GMT
Last-Modified: Sun, 06 Nov 2022 10:31:03 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9a21dcd6794c5ba4178522096f695511
d731cf49db5e048d0d820d5cee03417cdd8c1c7b
c4981ce849fcfce045d1c9eeb2978767d87fcbf6087626f3d6541ec8b1938a37
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C4981CE849FCFCE045D1C9EEB2978767D87FCBF6087626F3D6541EC8B1938A37"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11529
Expires: Sun, 06 Nov 2022 16:58:09 GMT
Date: Sun, 06 Nov 2022 13:46:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yEr39xHHEdUec++tgKc4xRUiH0hN4PUNcLiL+2hNkSGGPhIYiagkVZ60SehCgeWK0CUGvqKw57o=
x-amz-request-id: MCWH8DPQQD9WS533
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 06 Nov 2022 13:10:27 GMT
age: 2133
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:46:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d862f992e9902530594e7aca425f129b
25b414fe833d30b52928535d659a1ee281b82e3a
0c6286152fe8bb5fdf1505f2001d530a65ee53aa6d9601bbb1eecb683036071d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2550
Cache-Control: max-age=158601
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:00 GMT
Etag: "6367792b-1d7"
Expires: Tue, 08 Nov 2022 09:49:21 GMT
Last-Modified: Sun, 06 Nov 2022 09:06:51 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
seguro.caixamisteriosa.net/checkout/payment?cart_token=a0f1a90e-5dc3-11ed-ab21-029328446606-63679627d0c6f&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=fc537d70-5dc2-11ed-b52d-a374bd8d7013
170.82.173.30301 Moved Permanently 134 B URL HTTP/1.1 seguro.caixamisteriosa.net/checkout/payment?cart_token=a0f1a90e-5dc3-11ed-ab21-029328446606-63679627d0c6f&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=fc537d70-5dc2-11ed-b52d-a374bd8d7013
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /checkout/payment?cart_token=a0f1a90e-5dc3-11ed-ab21-029328446606-63679627d0c6f&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=fc537d70-5dc2-11ed-b52d-a374bd8d7013 HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 06 Nov 2022 13:46:00 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.caixamisteriosa.net:443/checkout/payment?cart_token=a0f1a90e-5dc3-11ed-ab21-029328446606-63679627d0c6f&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=fc537d70-5dc2-11ed-b52d-a374bd8d7013
X-GoCache-CacheStatus: BYPASS
Server: gocache
push.services.mozilla.com/
52.13.69.101101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.13.69.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /FJRlXcHMcfsEU7UFKiNhg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: OdahbwnbmcqWcLQe3GKQr3vIpO8=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 99e5a5a551ad5d693ef72b237d6bf657
df720fc54b8f37483202e8d064c3594b7ece6f1c
788b1a6d3e71d56f332c2aa3250febd5b0d21aa833e9d33c0bef50858f91d176
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "788B1A6D3E71D56F332C2AA3250FEBD5B0D21AA833E9D33C0BEF50858F91D176"
Last-Modified: Fri, 04 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21585
Expires: Sun, 06 Nov 2022 19:45:46 GMT
Date: Sun, 06 Nov 2022 13:46:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11331
Expires: Sun, 06 Nov 2022 16:54:53 GMT
Date: Sun, 06 Nov 2022 13:46:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11331
Expires: Sun, 06 Nov 2022 16:54:53 GMT
Date: Sun, 06 Nov 2022 13:46:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11331
Expires: Sun, 06 Nov 2022 16:54:53 GMT
Date: Sun, 06 Nov 2022 13:46:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11331
Expires: Sun, 06 Nov 2022 16:54:53 GMT
Date: Sun, 06 Nov 2022 13:46:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78f88d98-b52b-4ad1-8cfc-e60fd17b46e0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78f88d98-b52b-4ad1-8cfc-e60fd17b46e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b370c4e3b01be9fbbc3e310e6958cd55
cc22e90a0b476215f2fd864d84c9b00dded100a6
f54d90c5854b6f140b63dad3aa92bd858b8f360b8c77d50fdf344e813e9385c5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78f88d98-b52b-4ad1-8cfc-e60fd17b46e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11535
x-amzn-requestid: 0a1d9895-e2e3-4070-921a-736d8c6f254e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJatPGwjoAMFx8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7ee-101a7f3a2b834d0b411c9de0;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gjEERXiPH4yDHtW87u7qRDYz1A2DKKlkYXKVC3F9VshnRvhh2wSaSQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 22:08:57 GMT
age: 56225
etag: "cc22e90a0b476215f2fd864d84c9b00dded100a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3fDf4aoep5tTAusisXhIdAf0A6SbpM5fYtYaiXtNSb0-VRJo5nu8Vg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 09:11:34 GMT
age: 16468
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fa77f05b1af971db287607d9d9a30e0f
276f1493d6da74c8fa3ef83dee77bf48850ff4b4
005d0273b7fe7b68081d1db630df9444c4082140be87c34f3e9e5fb7db9a4160
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14415
x-amzn-requestid: 9eadfbeb-38b2-483a-894a-375e00f646dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJabgHcMoAMFTLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d77c-104fa5e61c64aaf230ffb045;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:37:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1rzBJigxxARLwKhQ_2PvkVnWD2wUH9UPfyVKIe9lmvtmtMRwWjR21g==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 22:17:20 GMT
etag: "276f1493d6da74c8fa3ef83dee77bf48850ff4b4"
content-type: image/jpeg
age: 55722
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcc79e66d1e21452efb26d26650f6739
1f727a7ea032082658944cf4041686446fb6b5f2
af1fe8de442a365a108d5c03f0d3ae8b0beb1abb4f267a46979f9c885ee026c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8961
x-amzn-requestid: 3a50374d-d90e-452e-bb89-82ca14c94b52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJarpGtqIAMFkPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7e3-55c356475fb64e6625a338c7;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OR8zISm84Iz0FL3Km-aQOHSnjROX2-S_lKloAhMAThT17igEWRbxkA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:44:20 GMT
age: 57702
etag: "1f727a7ea032082658944cf4041686446fb6b5f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d394a65-12f0-45e6-af37-57a983997faa.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d394a65-12f0-45e6-af37-57a983997faa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 886f94a2b6bfa041d40943e14fee4a18
deba663d6b38f0c151032b2d5b5b5d54f7dd78b0
620c1c5ae68bbbddf31b43bf51161b06d1a3da6b6872643637c057f05cceec6b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d394a65-12f0-45e6-af37-57a983997faa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9787
x-amzn-requestid: fbeabde7-9e76-468d-b945-a3ee931e5f74
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJabbHUPoAMFg_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d77c-1c372f9206e5923d360e9ed6;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:37:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: KF8Kw_R3RPDzYaBUCDBBaipWLSvXcY_G72FF0ruDQczPPuhk-R94Bg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:59:18 GMT
age: 56804
etag: "deba663d6b38f0c151032b2d5b5b5d54f7dd78b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b18a8c9f5539ce33476f843f5811e01d
11d1f2ce72d2aa6686c79f777cd0bdb4ddeb681b
fc20e507eedccb52078979f2132434b11b9d50d917cab512d8e0c99515b1236c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7573
x-amzn-requestid: d56e7b27-f2cb-4cd3-9f67-ba18d1bfe270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bDkhGHmjoAMFxxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364813a-3a1c18b13c41f38673890b00;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 03:04:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: c-u9tBFoIve3sEwtbUvIFZoPu6eudy3ZFQi8j2m9mTPNEarihTvddw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 03:24:54 GMT
age: 37268
etag: "11d1f2ce72d2aa6686c79f777cd0bdb4ddeb681b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 59062572d13f723dc46ce2de043f6d70
a53c8a1e68c75b2d6bf0d207f51cb73c9001ed40
f191efa74639d2637acb92856ccd1c206174014f1a853806843c757c063160f6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1719
Cache-Control: max-age=136869
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:02 GMT
Etag: "63672788-117"
Expires: Tue, 08 Nov 2022 03:47:11 GMT
Last-Modified: Sun, 06 Nov 2022 03:18:32 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6b72bfaacba486284aa2ecb4bcd8ebba
89fa4ef09e60380fc432c73b7919a29f26117088
fed14b27362ffe0dfbe0b1696e8dab5f6bba3e08b76bec620e75f0f3f213f69b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 3ebbd65a2bdd5c6f3dea5a6b99b25f0d
484be27b25b736a7e7e2b1d5ef9760aecdcec01b
5616e6c097b0b7680eeee193b58950faa38c9792e8793c16c315e2554a34cdd1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ
IP 142.250.74.35:0
Hash 4b8df306e70dbb7c6e033a33bf5a95d3
441882557ec74df8e2186f6e7aada29123022277
df5a6dfe197cf3933dbed046c14d237bc3b99ccbc9b6c43ac4b03a4878478bb9
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
142.250.74.164200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash d99d9b30939eb9febd57937df91db1b0
88a3fa999d4361ab21bfd2d9dd17790b8f994907
f3644a850aba122a325057e65b625086f69525108721ce715aad775d9c285f05
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 06 Nov 2022 13:46:02 GMT
date: Sun, 06 Nov 2022 13:46:02 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 59062572d13f723dc46ce2de043f6d70
a53c8a1e68c75b2d6bf0d207f51cb73c9001ed40
f191efa74639d2637acb92856ccd1c206174014f1a853806843c757c063160f6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1719
Cache-Control: max-age=136869
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:02 GMT
Etag: "63672788-117"
Expires: Tue, 08 Nov 2022 03:47:11 GMT
Last-Modified: Sun, 06 Nov 2022 03:18:32 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 3ebbd65a2bdd5c6f3dea5a6b99b25f0d
484be27b25b736a7e7e2b1d5ef9760aecdcec01b
5616e6c097b0b7680eeee193b58950faa38c9792e8793c16c315e2554a34cdd1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash d2b4c49a0fb79e3d3bc40d2a28b27120
3f53633851cf851451354ccfd2931f2ec7a9e40f
a8a4ca2c09bae5cc3375077e531b357e2c1724693433a085ad038e3e6adfd96b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ
IP 142.250.74.35:0
Hash 4b8df306e70dbb7c6e033a33bf5a95d3
441882557ec74df8e2186f6e7aada29123022277
df5a6dfe197cf3933dbed046c14d237bc3b99ccbc9b6c43ac4b03a4878478bb9
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash e3b8dc8edace13b06bf1b1f2a032438c
e1d0b3a879a44c0019375fc05ce26cd2017892c3
83a9cd5d11794db148f1ece55e1641cfe4f9902011c3f74c668a8505882aa601
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=88010
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:02 GMT
Etag: "63666f64-116"
Expires: Mon, 07 Nov 2022 14:12:52 GMT
Last-Modified: Sat, 05 Nov 2022 14:12:52 GMT
Server: nginx
Content-Length: 278
images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg
172.67.72.14200 OK 9.3 kB URL HTTP/2 images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg
IP 172.67.72.14:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 150x150, components 3\012- data
Hash 8220257871413a2a14ab3d6b964f6abf
28a022b80018a30a0660cb2f87a0cb754133ef7a
efda84dc3eaf3d6233cbd4f75430f5cfebc5926f06ffc195929fa8c671a12746
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:03 GMT
content-type: image/jpeg
content-length: 9336
x-amz-id-2: GAoM7z12Z7P5b6dnISP0pO3Sv+3vdUCStMYXYaeiJ0pecTHab+V2QS54ztOHvPe3NPl+dMOJ8Lk=
x-amz-request-id: 5YCSX6ACVE4EDBHT
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-version-id: HfrtBnZFXQLQQPWMe2SSfAQyOFUNAZMA
etag: "8220257871413a2a14ab3d6b964f6abf"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jYIeRWzuTcUzYi0sDAP9O%2F%2FabvUAa%2F6RgnJLjNLJgbvJyMTlpA8ylUH%2B8WG4tiPtYgOGZ%2BPfwqhJVMDdr3fuAn%2FdXvT8Ciyi0bdAvsJ%2FyMYhir0JUYtX2tNI6faHHs9K7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 765e45e73dc1b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg
172.67.72.14200 OK 8.8 kB URL HTTP/2 images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg
IP 172.67.72.14:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 150x150, components 3\012- data
Hash 64d0d3cf4cf12b175c2bfde2b119fd73
04019ff621b4532ba77c40e18eae785e97e3b93d
90ecdbd3950f57dbb96db2644984870891e9627af8da6794452a8259c86a7997
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:03 GMT
content-type: image/jpeg
content-length: 8822
x-amz-id-2: Aj4li7ZbwQYhqBqsENKhpPzLIOS1mB5AbbBbBkZ8EqEgh5bkHnozuGSsH0UjI0O6VI7bXNmuSQA=
x-amz-request-id: 5YCHEFWF791Z2WMC
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-version-id: xeytj2tGe9ZE1VBrjh._yFfBsbQCZQQP
etag: "64d0d3cf4cf12b175c2bfde2b119fd73"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dCYq1dJZGOOI35ERcFTIO92BcZLxBe34sEMKaOIDTdFZao1iFvp8nN89cPkQYdnFn8k71bXWDb20KNbBaWyyx4DrIlz14MupEQAUh6HlLekpMnahxTwUWGMN9q3Fml0b3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 765e45e73dc4b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg
172.67.72.14200 OK 10 kB URL HTTP/2 images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg
IP 172.67.72.14:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 150x150, components 3\012- data
Hash 04572c76d141851db42a1a6e13d38b71
aee88a71a5c7a780c6fb9aad074674ea7caab126
f97dc1da935583662b69ee9320a707de02f9c9ae32c6c825fdcaf51ee0618d50
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:03 GMT
content-type: image/jpeg
content-length: 10320
x-amz-id-2: +moxOZUVl54nN+K326pTQzpYbVH/sR4pyW8a9/2MTrhp4mPVReu/l0hty3eG9QoYBniwJr9jPys=
x-amz-request-id: 5YCHAP1D7RATMJ4X
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-version-id: AatCE1mkRL6z1GEYqQay5AQrkz_0GlQk
etag: "04572c76d141851db42a1a6e13d38b71"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oAKUeqwRapwv4UcumUYmcIO37GUOXAETnn98sRnlPzgQ3jX3bpBIxJ4GLWHT7uIix6Fa7oCRg1yO%2B558KbpOwoJXn9xtzX%2B7FPOcxQqVYAk4U%2FywZ2HqLItUGZuUWJLuMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 765e45e73dc2b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 62a8ce6a2338913103618edb2f4a9dbe
0e0850b1aef6ed524d119a41145112b84c257687
51d11b07f58551b5864fb55d4560d8a2237c2351036de0af7e25c81816763b31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 62a8ce6a2338913103618edb2f4a9dbe
0e0850b1aef6ed524d119a41145112b84c257687
51d11b07f58551b5864fb55d4560d8a2237c2351036de0af7e25c81816763b31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 62a8ce6a2338913103618edb2f4a9dbe
0e0850b1aef6ed524d119a41145112b84c257687
51d11b07f58551b5864fb55d4560d8a2237c2351036de0af7e25c81816763b31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.yampi.io/ana/ana.min.js?t=1667779200000
104.18.14.227200 OK 36 kB URL HTTP/2 cdn.yampi.io/ana/ana.min.js?t=1667779200000
IP 104.18.14.227:0
Hash d2a69bda85e4f478afc5ca86f35ce2b3
48fb25d9c2d06aed7bf8735015eb0ebd4b9b9112
b14fa4766f06466e7403d0a10265a0b088bea618ecbebe6e03664537c681fc42
GET /ana/ana.min.js?t=1667779200000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:03 GMT
content-type: application/javascript
x-amz-id-2: SSKvctue5daeqyfFSfdD9nt2yf+fJIi8GH2eXn1lmP0u4tDeCNSwn4I+gPm1YEhR/5cB/9qJ6K8=
x-amz-request-id: 4QHHGBB4PHYXCM0V
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
age: 5588
expires: Mon, 06 Nov 2023 13:46:03 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 765e45e8b952b4e8-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
images.yampi.me/assets/stores/caixa-misteriosa9/uploads/images/3-caixas-misteriosas-edicao-limitada-62e956f8e3474-thumb.png
172.67.72.14200 OK 93 kB URL HTTP/2 images.yampi.me/assets/stores/caixa-misteriosa9/uploads/images/3-caixas-misteriosas-edicao-limitada-62e956f8e3474-thumb.png
IP 172.67.72.14:0
File type PNG image data, 290 x 208, 8-bit/color RGBA, non-interlaced\012- data
Hash acf2b8f5e3020cf881836c3f22d67cc8
b0ee5f34bb758c3c2daff6b151e6d5eb3f92974d
e88959c54ca4af86fcbf4568d85396f11d6a72b48abb42aa1eae573911756c14
GET /assets/stores/caixa-misteriosa9/uploads/images/3-caixas-misteriosas-edicao-limitada-62e956f8e3474-thumb.png HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:03 GMT
content-type: image/png
content-length: 92640
x-amz-id-2: 3GkIYU6zRpzw9DNyTCMPivQByHIegsvzRTeVhm+KJktY6GVbwCEBoVS3btnCQMZIXVEDvbQ54hA=
x-amz-request-id: 5YCPGNX4132V0545
last-modified: Tue, 02 Aug 2022 16:55:24 GMT
x-amz-version-id: Umx5Gzx0a08nh1xKu8Ns7acagRXcpTj3
etag: "acf2b8f5e3020cf881836c3f22d67cc8"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=moXmw5ITdRctD2Mu%2FsE%2Ba5skxoJCRMcL3sYQg7XYIUcMxGM1LYLmLohKOLtLMyBbRD4Gflg4QrbMWYyoPRWqLjgxmOmjKjXYNSA8mjg4K01aMu%2F5RdMeAcjePfAo0AvdnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 765e45e73dbfb50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 0c3942faafdd06e50636c4fe7bdcf0fb
3d2c775c5dbadb3ec687da0a72f43ba68394f5b2
bbf3fc1b179b8221b04813350da1212c73556f3f2a9c150ae001d2b52bafa7e2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109284
Date: Sun, 06 Nov 2022 13:46:03 GMT
Etag: "6366b16c-1d7"
Expires: Mon, 07 Nov 2022 20:07:27 GMT
Last-Modified: Sat, 05 Nov 2022 18:54:36 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fC5Q56yPZ10PUB1OLc16eNc7MDiMTGThT3wiaDvB0wy7VwV97HaDsA==
Age: 4371
analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDDEKKJC77U5U64QNIS0&hostname=seguro.caixamisteriosa.net
23.36.79.32200 OK 349 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDDEKKJC77U5U64QNIS0&hostname=seguro.caixamisteriosa.net
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash 3e9bc6a370691611a8c6503e3376747f
597a924684087a84d659d38c460b3ca59f4bab71
6512227f13358d0f7612fc81f2dc10585688d753c693fb4822caba014b5d8fa1
GET /i18n/pixel/config.js?sdkid=CDDEKKJC77U5U64QNIS0&hostname=seguro.caixamisteriosa.net HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022110613460398BC6D1DD447A3E9A8EA
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60d78171413f71ac7f621bddf9de079e3d4362c63512cc363d77c012834268589be8c0ab6aa2a45a30e8a2def1dee151788d36ec5d6d85f064fcb5afa62e9f0fe1fb20ead41319a387108243d4227222d9
content-encoding: gzip
content-length: 349
x-origin-response-time: 6,23.36.66.41
x-akamai-request-id: ff89131.25b6bd84
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
set-cookie: _ttp=2HAypGRhlg7fVMSPL8RJ4kWPncr; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-36-66-41.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=95, origin; dur=6, inner; dur=3
x-parent-response-time: 101,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDEHLHJC77U5C680CVRG&hostname=seguro.caixamisteriosa.net
23.36.79.32200 OK 349 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDEHLHJC77U5C680CVRG&hostname=seguro.caixamisteriosa.net
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash f6364a8fb3035561f6f9dcd154645759
728327c2eebe855e04713f87f92c8af65b08af83
ea61abbb4ce6bc93e055d2c6284d77918921cc7d65548868dc1e90f13464cb99
GET /i18n/pixel/config.js?sdkid=CDEHLHJC77U5C680CVRG&hostname=seguro.caixamisteriosa.net HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221106134603EAEB1E7F197F7A319D48
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b2afe39dc8b208a5b5bb4188a18a97d6be047e3bcaf64cfcaef070fac9aca53cd0a38316ef7b9e25fe251390120ba67e1
content-encoding: gzip
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
content-length: 349
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
set-cookie: _ttp=2HAypFjblTV07ZjdnVEoWEYHHRD; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=1, origin; dur=105
x-origin-response-time: 106,23.36.79.28
x-akamai-request-id: 25b6bd89
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDI8LLJC77UDCMKM1BT0&hostname=seguro.caixamisteriosa.net
23.36.79.32200 OK 1.8 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDI8LLJC77UDCMKM1BT0&hostname=seguro.caixamisteriosa.net
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type C source, ASCII text, with very long lines (3948)
Hash e2fb0305a63f957ab0e79be7e431384d
f07902cb51a0e2dc9d778c6b725c4b4b9b572c0e
a9df40cc4c67271195929afaf06c5ea0413efd54d390bf4ac5eaa30cbc75638a
GET /i18n/pixel/config.js?sdkid=CDI8LLJC77UDCMKM1BT0&hostname=seguro.caixamisteriosa.net HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022110613460376CEDF50A45DC2EB8511
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60d78171413f71ac7f621bddf9de079e3d35b2ac2d61b0a72d79886a060fe6f9b813afc7bfe13e05279c4a72c4c310a7c3ab456b9a20f23eed2e25903e2c132bf4c4159f2fd1711a54a18bd74a24f1711c
content-encoding: gzip
content-length: 1829
x-origin-response-time: 7,23.36.66.8
x-akamai-request-id: 10d87d4f.25b6bd8c
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-36-66-8.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=96, origin; dur=7, inner; dur=1
x-parent-response-time: 103,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDG5LA3C77U1SA0SSKIG&hostname=seguro.caixamisteriosa.net
23.36.79.32200 OK 1.8 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDG5LA3C77U1SA0SSKIG&hostname=seguro.caixamisteriosa.net
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type C source, ASCII text, with very long lines (3948)
Hash 54435ad0f7333d0266fcfd59007e2be0
e51dadd736727061550b722923fd7755bf5944c1
74172e81c36c0813c299029a1b9721da2f7c18db2953e708b70c7016b85d9841
GET /i18n/pixel/config.js?sdkid=CDG5LA3C77U1SA0SSKIG&hostname=seguro.caixamisteriosa.net HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221106134603B8412E3C51734A3C8520
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b845ac3ac4213815465c704c31ba33b4057acf5758f4fa7b972bc05872aa44ad7091e2f55811fc3be5562666a744b3c75
content-encoding: gzip
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
content-length: 1831
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=108
x-origin-response-time: 108,23.36.79.28
x-akamai-request-id: 25b6bd8b
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 951
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2HAypFjblTV07ZjdnVEoWEYHHRD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202211061346036AF1508B53B836DDB8FA
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60d78171413f71ac7f621bddf9de079e3dd214af3d19f5a317ba2c652460fd646dfc1d6e4b49f05f083f17a6d1d56cebc7beaa577db0643cdcc94f7074d06699ae2bc2d3c6cf7eb15aede16f0aba162eef
x-origin-response-time: 22,23.36.66.25
x-akamai-request-id: ecfd59d.25b6be4a
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-cache-remote: TCP_MISS from a23-36-66-25.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=22, inner; dur=16
x-parent-response-time: 119,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 792
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2HAypFjblTV07ZjdnVEoWEYHHRD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202211061346031944A6668FD5EFF06A1B
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b87960a0733184373b08d32ba2dad09638f6f6ded5b6df261b9e69f8ffea19f9a3c024dfa7aa2d9073efef4b26431cb14
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=16, cdn-cache; desc=MISS, edge; dur=2, origin; dur=115
x-origin-response-time: 115,23.36.79.28
x-akamai-request-id: 25b6be7d
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 792
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2HAypFjblTV07ZjdnVEoWEYHHRD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221106134603840A8EA1B57D75E18EE5
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60d78171413f71ac7f621bddf9de079e3d5d10f15651da534b0fa1921581044443c0abc96fbbe82c777e051012191c5eae5d5b948ab602faef02956d54772369434edc33819a659ffd198002e98c42f377
x-origin-response-time: 27,23.36.66.34
x-akamai-request-id: 10f426eb.25b6be73
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-cache-remote: TCP_MISS from a23-36-66-34.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=27, inner; dur=22
x-parent-response-time: 123,23.36.79.28
X-Firefox-Spdy: h2
seguro.caixamisteriosa.net/checkout/address
170.82.173.30200 OK 39 kB URL HTTP/2 seguro.caixamisteriosa.net/checkout/address
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (31151)
Hash 7f038bb2c08d338f90b130714e3ad8fe
b5e798cac625b44f5f220e10797a77a7380866b6
7702184d4247ff42a423da99089b1bd897eed5fe3117e7bf06334b707c2464ef
Analyzer Verdict Alert fortinet Phishing
GET /checkout/address HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IiswNGhWcG1tUmN2Rjg0NzRtb2FCN2c9PSIsInZhbHVlIjoiM2M3Y1hqME1CRkFsc2hpNzBSR0d6a0pRQlI1a1ZHNTlRZ1NtTnRUdFl3RVlSbXNDXC9IdjNKbGNcL3lzb3ZqXC8rd1ZiY2RvclBTeHN4XC9BTHdNRktaQSt3PT0iLCJtYWMiOiI0NzEzNGM4YWM4Mjk5ZGMwZGYzYTRjN2M4MDkzZDczYzk4Yjk2NjhjNjVmYjg2ZWQyMjc0MmMzNDA1YTQ3MTJmIn0%3D; bubbstore_checkout=eyJpdiI6Ijg3dnFIYzVHXC9US1RPcU5kc0xDTklRPT0iLCJ2YWx1ZSI6IkQxWXZ6RWpsWWdJZ3B0dGExY0FyT1VhUm9UaEZiRnh1SHl5c3JCNm1PQ3FSYjhhZWFGSXVVR0JEMEw0aWhsc1lMVGdTS1VzN3BOXC8xNGQyM0RWQjJuZz09IiwibWFjIjoiODdiZjgyZTAzNzZmMGY1YWYxMTU1YjI0NmFiMTQxOTZiMmE0MTg1ZjJlNWY0MDg3MDBjY2RlZDc0MDBhOWY2OCJ9; caixa-misteriosa9_cart=eyJpdiI6IlJvTGNyT2RCSzIwRG1OMkpOUjg5WGc9PSIsInZhbHVlIjoiZHVaRE4xVU9mWnd5VjdFTHFIeWgxSFJ4REErNndYaUd3VVQ5U0cxMnFMRlUzeGw5ZmFzZVh3MHYzQ3VyY0lxVWhuZ2lMZDhqVmdwT2xTdDlFcFNydWc9PSIsIm1hYyI6ImMwNDI0OTJiNDRkMzE3ZGM0MzIxODc4Y2RkMmJkNTc1YjEzNTM5NjI1MmMyYzgyYTNmZDU1MThkMDhhNmU0ZDUifQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:02 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6ImR0OXhhNE5IQUx3YzFmek9vbUM1eHc9PSIsInZhbHVlIjoiUUc0Mko4VzJITUFnMGh6d3paWGdYb0ZGeTljZWZJd21cLzVydjRJOUFyRFF4Ymp1SUc1NDFscFh1XC9iSndxQ0Z2ZzFRTER0OW5oc3Bxd3pMQkpzUkxodz09IiwibWFjIjoiYTE1NjAxYjUyNTJjNzg2ZTJiZjcyMDhiMmYwMjczMzA3YjY5YWMyYWQwOWEyNGJlY2I1ZDg2Nzk5YWNhZGEwMSJ9; expires=Sun, 06-Nov-2022 16:46:02 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InFGMlJqNXNRazJJemp4ZzNteiswQ3c9PSIsInZhbHVlIjoidXpDT0JWSm15Z0x6ZFB1SHNEWEdDNGUyQXFCekVadlhIRHNcL001bm1pYVNPSHkrMExESVU3bmcwaWtTdWJHRnlmeWt5YkNjbjRtRWlcL01JTjUzS0Z2UT09IiwibWFjIjoiYTNmMjFlYjliYmE0ODEzMjM3ZTI3ZmFjODI3MDA0NjI1N2VlODljOTM2NjI0ODRiNzI5M2UxNWQ1YTQ3M2Y0MyJ9; expires=Sun, 06-Nov-2022 16:46:02 GMT; Max-Age=10800; path=/; httponly
cart_auth_274608902=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; expires=Sun, 06-Nov-2022 13:56:02 GMT; Max-Age=600; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 792
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2HAypFjblTV07ZjdnVEoWEYHHRD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221106134603AB9A7B6F655D8D2C3461
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60d78171413f71ac7f621bddf9de079e3d4156483da6750ca7cb43d106347ab10ff672ec33977af7ee239e47a42030e798d376e888cb2f6d1352bcce5f51874f68bf77c9e59109609229decfd5c10814b5
x-origin-response-time: 53,23.36.66.29
x-akamai-request-id: 104dd56a.25b6be61
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-cache-remote: TCP_MISS from a23-36-66-29.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=100, origin; dur=53, inner; dur=51
x-parent-response-time: 150,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 792
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2HAypFjblTV07ZjdnVEoWEYHHRD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221106134603B727EA18A425582D8A4D
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b60e41bc4f9c425152c32e6adea5f5d4e6bd15d189772f0f03cd6fd194b15a63b45c464467f8bd8b6d5fb4df56ffda3e0
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=76, cdn-cache; desc=MISS, edge; dur=4, origin; dur=171
x-origin-response-time: 171,23.36.79.28
x-akamai-request-id: 25b6be48
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=CD93223C77UCTPU5N5N0&hostname=seguro.caixamisteriosa.net
23.36.79.32200 OK 1.8 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=CD93223C77UCTPU5N5N0&hostname=seguro.caixamisteriosa.net
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type C source, ASCII text, with very long lines (3948)
Hash 338f900a953a1fd705d6408174534762
912b88f7ebe162f9d2a69aa639a2fe1c0e7b8de5
1936f55c790f8f41a58323b7209bdfd9686120dd0bfc000e6e0701efbe0b20c0
GET /i18n/pixel/config.js?sdkid=CD93223C77UCTPU5N5N0&hostname=seguro.caixamisteriosa.net HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022110613460344C01C2C7A0713EB38CE
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60d78171413f71ac7f621bddf9de079e3d653b79d798d765fac440f09cc7615110119227431c8bae1ef2659c11d5ec8b6048c781c310fc5ea99dd6f66e4d99a41a5744b3d0fd1b65848076894be54ee4dc
content-encoding: gzip
content-length: 1831
x-origin-response-time: 42,23.36.66.43
x-akamai-request-id: db7c4a9.25b6bd8a
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-36-66-43.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=302, origin; dur=42, inner; dur=4
x-parent-response-time: 344,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 951
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2HAypFjblTV07ZjdnVEoWEYHHRD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022110613460389C0E71673CDF7EC02DF
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60d78171413f71ac7f621bddf9de079e3dd87118838a6a93ba0c2787ddffc76f50d3dc0356e3c94b18d8a74c2f1b2471b6942f74302c2b139e1fd08607ad661b567ace3175e88cdcd458bf4d8ab3361643
x-origin-response-time: 137,23.36.66.30
x-akamai-request-id: 123cbb65.25b6be64
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-cache-remote: TCP_MISS from a23-36-66-30.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=145, origin; dur=137, inner; dur=129
x-parent-response-time: 278,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 951
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2HAypFjblTV07ZjdnVEoWEYHHRD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202211061346030784248ECBD9CF2AAF09
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60d78171413f71ac7f621bddf9de079e3dcd237bc0aee6bc5daa904af0cb7f1cb47e4c13fd60387a3ffce6be31d259be42358bdf06e69454647299b84af7e90cfc47413b698b3424ec3db21abbe21d99a1
x-origin-response-time: 25,23.36.66.36
x-akamai-request-id: fee9383.25b6be75
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-cache-remote: TCP_MISS from a23-36-66-36.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=278, origin; dur=24, inner; dur=16
x-parent-response-time: 299,23.36.79.28
X-Firefox-Spdy: h2
fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
104.18.0.53200 OK 77 kB URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
IP 104.18.0.53:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:03 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: FjbjahFUYgO3RfbYLloTmdSef89MTFluz+1rdY8nf85g+woZ+gFCoQ8VHJWa6+z3ilqvuVW6vSk=
x-amz-request-id: ED3JNKMZT7JPXC8Z
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: MISS
expires: Mon, 14 Nov 2022 13:46:03 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
server: cloudflare
cf-ray: 765e45e93e740b49-OSL
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 792
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2HAypFjblTV07ZjdnVEoWEYHHRD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221106134603C07372F455970EDDBF6A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60d78171413f71ac7f621bddf9de079e3d70331fec6141e65d51893f9c31193672a387e16ba22624eb4b3d825055a9285769a6b07384918461a6db03fe53aef7425180944d9d67bc2bf1630dfe6dc814a4
x-origin-response-time: 19,23.36.66.34
x-akamai-request-id: 10f427c0.25b6bfc4
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-cache-remote: TCP_MISS from a23-36-66-34.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=18, inner; dur=16
x-parent-response-time: 114,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 951
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2HAypFjblTV07ZjdnVEoWEYHHRD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221106134603335D00B45DE9EBE3CC5B
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465bd8455dbf6a7d2e57675727bb851e015f14176e35cf295807e935394f82cf8380a955e2c9e55d1169b8f6b32f2a6ba8f8
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=15, cdn-cache; desc=MISS, edge; dur=4, origin; dur=111
x-origin-response-time: 111,23.36.79.28
x-akamai-request-id: 25b6bfca
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDEHLHJC77U5C680CVRG&lib=ttq
23.36.79.32200 OK 44 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDEHLHJC77U5C680CVRG&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash 97145f275d0ac91f3bc8a540da8e970f
846a2c67b74f1a8c472816e27250d923203a75e1
a4964596a8a6af5fc06405e20f84ef7038b5a4a5c6010569b4bb76cf1c717e4d
GET /i18n/pixel/events.js?sdkid=CDEHLHJC77U5C680CVRG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211061346036323D5AB3842F6E52D1E
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b8ef990c511ebb99d2a39ecd42c4bbff511246045da5eb860377446461d7c657dbcd058c477774d7b26d54ba5723afb4b
content-encoding: gzip
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=102
x-origin-response-time: 102,23.36.79.28
x-akamai-request-id: 25b6bbcc
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e13e65ad7f6f12300b12d6cd6936d621
575faf606b5c5e39e0fbbef59998bcd3625aa141
10787f99c02b63d52b9b74fcec9497108d67c56c4a9436e0e3c9a7129d727dda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/Ixi5IiChXmIG6rRkjUa1qXHT/recaptcha__en.js
142.250.74.163200 OK 162 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Ixi5IiChXmIG6rRkjUa1qXHT/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (590)
Size 162 kB (162282 bytes)
Hash 05e06c50dab6f3d7f8bfde22301888db
64b3c20c788d298a672fabf9627eac914d95ed08
95176711feca1110e764a31e36764d5b331b033ed56fb372b42250329b33e1d6
GET /recaptcha/releases/Ixi5IiChXmIG6rRkjUa1qXHT/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162282
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 06 Nov 2022 09:05:49 GMT
expires: Mon, 06 Nov 2023 09:05:49 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 31 Oct 2022 04:02:45 GMT
content-type: text/javascript
age: 16815
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 06 Nov 2022 12:41:09 GMT
expires: Sun, 06 Nov 2022 14:41:09 GMT
cache-control: public, max-age=7200
age: 3895
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 498a93ef6474e78f5c7b8ec391786b1c
2fdbd636d3ec6c2476c2ac34697ba171eecdb768
ab9705c42b3e1f2c2cc005974f4dd27f75c27a053bd29e81d2a99824200dcef7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4168
Cache-Control: max-age=139683
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:04 GMT
Etag: "636728f7-1d7"
Expires: Tue, 08 Nov 2022 04:34:07 GMT
Last-Modified: Sun, 06 Nov 2022 03:24:39 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e13e65ad7f6f12300b12d6cd6936d621
575faf606b5c5e39e0fbbef59998bcd3625aa141
10787f99c02b63d52b9b74fcec9497108d67c56c4a9436e0e3c9a7129d727dda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=21602053&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Caixa%20Misteriosa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=1867992396&gjid=1345046862&cid=982482191.1667742362&tid=UA-45745009-5&_gid=903054775.1667742362&_r=1&_slc=1&z=537583436
142.250.74.174200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=21602053&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Caixa%20Misteriosa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=1867992396&gjid=1345046862&cid=982482191.1667742362&tid=UA-45745009-5&_gid=903054775.1667742362&_r=1&_slc=1&z=537583436
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j98&a=21602053&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Caixa%20Misteriosa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=1867992396&gjid=1345046862&cid=982482191.1667742362&tid=UA-45745009-5&_gid=903054775.1667742362&_r=1&_slc=1&z=537583436 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://seguro.caixamisteriosa.net
date: Sun, 06 Nov 2022 13:46:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f3832eb0418d94ec98c40df1bcf3ce5b
74dd7fa6ff4f9da9324c0772d075da5f42ab5879
cc42acc8dffa6c7f0c4c3a16ffe8c88919daf4859b7524a7a0ffc6e4b169c50d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:46:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=982482191.1667742362&jid=1867992396&gjid=1345046862&_gid=903054775.1667742362&_u=IEDAAAASAAAAAC~&z=464702234
64.233.165.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=982482191.1667742362&jid=1867992396&gjid=1345046862&_gid=903054775.1667742362&_u=IEDAAAASAAAAAC~&z=464702234
IP 64.233.165.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=982482191.1667742362&jid=1867992396&gjid=1345046862&_gid=903054775.1667742362&_u=IEDAAAASAAAAAC~&z=464702234 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.caixamisteriosa.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 06 Nov 2022 13:46:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png
16.12.1.12200 OK 191 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png
IP 16.12.1.12:0
File type PNG image data, 1628 x 1083, 8-bit/color RGBA, non-interlaced\012- data
Size 191 kB (190952 bytes)
Hash 42653495a27a747f3deff05ead6ab0f1
7f774f610fb12f312daeb5d49c5cc88af7dd1dc1
3ce6c07440b880752a44c423832b8a6691d7b22898871e08b38f0abe62b92fc4
GET /king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: nHyAz2XuDu8NuuKuAQhObe3g/QgqPFaVhi6kdi9H9mNQcZqfJ8JjxpWRT268B36aNhAyabJaKzk=
x-amz-request-id: ED3P2MJNE12DXZ9D
Date: Sun, 06 Nov 2022 13:46:04 GMT
Last-Modified: Tue, 02 Aug 2022 17:21:54 GMT
ETag: "42653495a27a747f3deff05ead6ab0f1"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 190952
fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
142.250.74.10200 OK 1.0 kB URL HTTP/2 fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
IP 142.250.74.10:0
Hash 28c08fce7e2fface5e5416c33010fc3f
d21361987ef1eebf7e74647724e70d2d62ce5fff
070abc46126e375b81a3f3c59ed4920eed2e5c513db7bf8d2fe4f3fbe2feff3b
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 06 Nov 2022 13:46:02 GMT
date: Sun, 06 Nov 2022 13:46:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CD93223C77UCTPU5N5N0&lib=ttq
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CD93223C77UCTPU5N5N0&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=CD93223C77UCTPU5N5N0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022110613460353F1A76C9A71DA2A83D9
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60d78171413f71ac7f621bddf9de079e3d01dc0f06a4cf97f21654739c9fd5cf0353d739ebfc2d1b7b74b36d8b8dd4d66480c14c1eb262a37f63330f5597729e4890df8e4bb2bdf865fe7536fdaef93b87
content-encoding: gzip
x-origin-response-time: 7,23.36.66.38
x-akamai-request-id: 14ee5d5e.25b6bbc6
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-36-66-38.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=98, origin; dur=7, inner; dur=2
x-parent-response-time: 105,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDG5LA3C77U1SA0SSKIG&lib=ttq
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDG5LA3C77U1SA0SSKIG&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=CDG5LA3C77U1SA0SSKIG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221106134603356838DFCC5155DCA04F
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60d78171413f71ac7f621bddf9de079e3d05c7f1d646f02858b52d2ef41d1b85fd696ebd97880e4a4bb3e3f8ff11fcf97a9a05e4bcf87e5a6d4efa9b24bfe3f31be897e1b1b784d29a9b193ce817c6fe13
content-encoding: gzip
x-origin-response-time: 8,23.36.66.40
x-akamai-request-id: 11465462.25b6bbcf
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-36-66-40.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=97, origin; dur=8, inner; dur=3
x-parent-response-time: 105,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDI8LLJC77UDCMKM1BT0&lib=ttq
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDI8LLJC77UDCMKM1BT0&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=CDI8LLJC77UDCMKM1BT0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022110613460357C28F7D7044ED2527C5
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465bb314846c5181f306c45b84d5b9a944d87005d3eb66d027433c39332a3448b9620be2c4e9c0df172f5e7ec74eaf85b24d
content-encoding: gzip
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=1, cdn-cache; desc=MISS, edge; dur=0, origin; dur=99
x-origin-response-time: 99,23.36.79.28
x-akamai-request-id: 25b6bbd1
X-Firefox-Spdy: h2
seguro.caixamisteriosa.net/checkout/payment?cart_token=a0f1a90e-5dc3-11ed-ab21-029328446606-63679627d0c6f&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=fc537d70-5dc2-11ed-b52d-a374bd8d7013
170.82.173.30302 Found 0 B URL HTTP/2 seguro.caixamisteriosa.net/checkout/payment?cart_token=a0f1a90e-5dc3-11ed-ab21-029328446606-63679627d0c6f&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=fc537d70-5dc2-11ed-b52d-a374bd8d7013
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /checkout/payment?cart_token=a0f1a90e-5dc3-11ed-ab21-029328446606-63679627d0c6f&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=fc537d70-5dc2-11ed-b52d-a374bd8d7013 HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 06 Nov 2022 13:46:01 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.caixamisteriosa.net/checkout/address
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IiswNGhWcG1tUmN2Rjg0NzRtb2FCN2c9PSIsInZhbHVlIjoiM2M3Y1hqME1CRkFsc2hpNzBSR0d6a0pRQlI1a1ZHNTlRZ1NtTnRUdFl3RVlSbXNDXC9IdjNKbGNcL3lzb3ZqXC8rd1ZiY2RvclBTeHN4XC9BTHdNRktaQSt3PT0iLCJtYWMiOiI0NzEzNGM4YWM4Mjk5ZGMwZGYzYTRjN2M4MDkzZDczYzk4Yjk2NjhjNjVmYjg2ZWQyMjc0MmMzNDA1YTQ3MTJmIn0%3D; expires=Sun, 06-Nov-2022 16:46:01 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6Ijg3dnFIYzVHXC9US1RPcU5kc0xDTklRPT0iLCJ2YWx1ZSI6IkQxWXZ6RWpsWWdJZ3B0dGExY0FyT1VhUm9UaEZiRnh1SHl5c3JCNm1PQ3FSYjhhZWFGSXVVR0JEMEw0aWhsc1lMVGdTS1VzN3BOXC8xNGQyM0RWQjJuZz09IiwibWFjIjoiODdiZjgyZTAzNzZmMGY1YWYxMTU1YjI0NmFiMTQxOTZiMmE0MTg1ZjJlNWY0MDg3MDBjY2RlZDc0MDBhOWY2OCJ9; expires=Sun, 06-Nov-2022 16:46:01 GMT; Max-Age=10800; path=/; httponly
caixa-misteriosa9_cart=eyJpdiI6IlJvTGNyT2RCSzIwRG1OMkpOUjg5WGc9PSIsInZhbHVlIjoiZHVaRE4xVU9mWnd5VjdFTHFIeWgxSFJ4REErNndYaUd3VVQ5U0cxMnFMRlUzeGw5ZmFzZVh3MHYzQ3VyY0lxVWhuZ2lMZDhqVmdwT2xTdDlFcFNydWc9PSIsIm1hYyI6ImMwNDI0OTJiNDRkMzE3ZGM0MzIxODc4Y2RkMmJkNTc1YjEzNTM5NjI1MmMyYzgyYTNmZDU1MThkMDhhNmU0ZDUifQ%3D%3D; expires=Fri, 11-Nov-2022 13:46:01 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=e004bdab01653a468c960c3569c402cb
172.67.72.14200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=e004bdab01653a468c960c3569c402cb
IP 172.67.72.14:0
GET /checkout/build/mix/assets/js/app.js?id=e004bdab01653a468c960c3569c402cb HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:02 GMT
content-type: application/javascript
x-amz-id-2: NRHsa6qucHQaiD3sC5dsd4mSTMl5ptA1rb1WB9pZudapWSWc7E9FXAqQiJ6YpdV9UR90y0pT+ZM=
x-amz-request-id: P200TN7ZJ2GWP78Q
last-modified: Fri, 04 Nov 2022 18:19:16 GMT
x-amz-version-id: vBH8I8U4Fk_cBjCH4K7uyIx8AtomnPkt
etag: W/"634f1880f47f3e97d885f3f34d5bf07b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2747
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gntvp7%2FpYuviI2ooTdC%2Bgu7ph9INh%2B92mxyQ2Mx6NR6JEeJcihmfSx1kKe2zS92T5BBGwRt2X2vbVSEy0QZlL5x%2FCqAYvq0W36gLUmYUM%2B99n2lhqEnoLrU6LqUCCq%2B1E2svr6cD%2BoMs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 765e45e73dd1b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDDEKKJC77U5U64QNIS0&lib=ttq
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDDEKKJC77U5U64QNIS0&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=CDDEKKJC77U5U64QNIS0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022110613460374E6556D0483FEF2B7BA
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b60e41bc4f9c425152c32e6adea5f5d4e4b078fd249a47314a1240d4d37232c6965f533296c65507eabef75894194e7e3
content-encoding: gzip
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=1, origin; dur=102
x-origin-response-time: 102,23.36.79.28
x-akamai-request-id: 25b6bbd0
X-Firefox-Spdy: h2
seguro.caixamisteriosa.net/cart/recomm
170.82.173.30200 OK 0 B URL HTTP/2 seguro.caixamisteriosa.net/cart/recomm
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
GET /cart/recomm HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImE3MTk1ZDBlYTZlNjYwY2YiLCJ0ciI6IjMzM2Q5ZGM3ZTc3YTAzNGY5Zjg3MzU5MGVhYjdmNzVhIiwidGkiOjE2Njc3NDIzNjExMTB9fQ==
traceparent: 00-333d9dc7e77a034f9f873590eab7f75a-a7195d0ea6e660cf-01
tracestate: 2935249@nr=0-1-2935249-1134170823-a7195d0ea6e660cf----1667742361110
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6ImR0OXhhNE5IQUx3YzFmek9vbUM1eHc9PSIsInZhbHVlIjoiUUc0Mko4VzJITUFnMGh6d3paWGdYb0ZGeTljZWZJd21cLzVydjRJOUFyRFF4Ymp1SUc1NDFscFh1XC9iSndxQ0Z2ZzFRTER0OW5oc3Bxd3pMQkpzUkxodz09IiwibWFjIjoiYTE1NjAxYjUyNTJjNzg2ZTJiZjcyMDhiMmYwMjczMzA3YjY5YWMyYWQwOWEyNGJlY2I1ZDg2Nzk5YWNhZGEwMSJ9; bubbstore_checkout=eyJpdiI6InFGMlJqNXNRazJJemp4ZzNteiswQ3c9PSIsInZhbHVlIjoidXpDT0JWSm15Z0x6ZFB1SHNEWEdDNGUyQXFCekVadlhIRHNcL001bm1pYVNPSHkrMExESVU3bmcwaWtTdWJHRnlmeWt5YkNjbjRtRWlcL01JTjUzS0Z2UT09IiwibWFjIjoiYTNmMjFlYjliYmE0ODEzMjM3ZTI3ZmFjODI3MDA0NjI1N2VlODljOTM2NjI0ODRiNzI5M2UxNWQ1YTQ3M2Y0MyJ9; caixa-misteriosa9_cart=eyJpdiI6IlJvTGNyT2RCSzIwRG1OMkpOUjg5WGc9PSIsInZhbHVlIjoiZHVaRE4xVU9mWnd5VjdFTHFIeWgxSFJ4REErNndYaUd3VVQ5U0cxMnFMRlUzeGw5ZmFzZVh3MHYzQ3VyY0lxVWhuZ2lMZDhqVmdwT2xTdDlFcFNydWc9PSIsIm1hYyI6ImMwNDI0OTJiNDRkMzE3ZGM0MzIxODc4Y2RkMmJkNTc1YjEzNTM5NjI1MmMyYzgyYTNmZDU1MThkMDhhNmU0ZDUifQ%3D%3D; cart_auth_274608902=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:03 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IjZJNHg1MVFjNW1cL0JmdGxQRGtleFZBPT0iLCJ2YWx1ZSI6IkU2YU5OdlV4VGlOUnpXd1wvVVFKeDZaUExPdFJNYWxWOElsdHhUN2s0d0pkUWRvT240aTA5d3hld1JDSStrR1d5aExQcll5Mkh0UkVkNk84WlB6Y3ZLQT09IiwibWFjIjoiOWYyZWI0OTY4NmJkNGI5N2M0OTU0Y2Q5NjQ5ZjE4ZjYzYzM3MjIyYzA2OWQxZjFkNDljYTY1Y2JmOGE3ZmZjNiJ9; expires=Sun, 06-Nov-2022 16:46:03 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InRvWnVPSVh6Y2ZpdUdqYmJQMGNkbGc9PSIsInZhbHVlIjoiOUhpWmkxNWNwcnVhT3c4bE5WOUpkRmV0SVVNdWdRRjBmV3ZFbDk5TEk2TmVDM3FpYm9WQ3crdzUwNEdRK2xIU1Z1NGRTUUJZN2tqXC9lNE5lcDhjMkRnPT0iLCJtYWMiOiIwMjVhNTE2NDMyYTVjOTVjYWIzOWEyMzBiYTEwZTk5YTYwMjY4MzIyZjA3Yzc3NGRiNzQ3NWM2M2RmNjhjODUxIn0%3D; expires=Sun, 06-Nov-2022 16:46:03 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
seguro.caixamisteriosa.net/e/t
170.82.173.30200 OK 0 B URL HTTP/2 seguro.caixamisteriosa.net/e/t
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjdjYmMwYzU1MTBmY2VkODEiLCJ0ciI6ImZmM2FjOWFiNDY2MmYyNGZlZTM5ZjBhMTI5MmUxMDg0IiwidGkiOjE2Njc3NDIzNjExMTl9fQ==
traceparent: 00-ff3ac9ab4662f24fee39f0a1292e1084-7cbc0c5510fced81-01
tracestate: 2935249@nr=0-1-2935249-1134170823-7cbc0c5510fced81----1667742361119
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 376
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6ImR0OXhhNE5IQUx3YzFmek9vbUM1eHc9PSIsInZhbHVlIjoiUUc0Mko4VzJITUFnMGh6d3paWGdYb0ZGeTljZWZJd21cLzVydjRJOUFyRFF4Ymp1SUc1NDFscFh1XC9iSndxQ0Z2ZzFRTER0OW5oc3Bxd3pMQkpzUkxodz09IiwibWFjIjoiYTE1NjAxYjUyNTJjNzg2ZTJiZjcyMDhiMmYwMjczMzA3YjY5YWMyYWQwOWEyNGJlY2I1ZDg2Nzk5YWNhZGEwMSJ9; bubbstore_checkout=eyJpdiI6InFGMlJqNXNRazJJemp4ZzNteiswQ3c9PSIsInZhbHVlIjoidXpDT0JWSm15Z0x6ZFB1SHNEWEdDNGUyQXFCekVadlhIRHNcL001bm1pYVNPSHkrMExESVU3bmcwaWtTdWJHRnlmeWt5YkNjbjRtRWlcL01JTjUzS0Z2UT09IiwibWFjIjoiYTNmMjFlYjliYmE0ODEzMjM3ZTI3ZmFjODI3MDA0NjI1N2VlODljOTM2NjI0ODRiNzI5M2UxNWQ1YTQ3M2Y0MyJ9; caixa-misteriosa9_cart=eyJpdiI6IlJvTGNyT2RCSzIwRG1OMkpOUjg5WGc9PSIsInZhbHVlIjoiZHVaRE4xVU9mWnd5VjdFTHFIeWgxSFJ4REErNndYaUd3VVQ5U0cxMnFMRlUzeGw5ZmFzZVh3MHYzQ3VyY0lxVWhuZ2lMZDhqVmdwT2xTdDlFcFNydWc9PSIsIm1hYyI6ImMwNDI0OTJiNDRkMzE3ZGM0MzIxODc4Y2RkMmJkNTc1YjEzNTM5NjI1MmMyYzgyYTNmZDU1MThkMDhhNmU0ZDUifQ%3D%3D; cart_auth_274608902=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:03 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6ImxudDBPVFRZdVhiNFV5d3BUbXVJREE9PSIsInZhbHVlIjoiZHFJYzA0VDhiMzl6blkrNHVBbXNcL2FzVVFnaFNjM2tvQjRXUUEzamV0KzJJWndpWUJvTG5YNG1uWDRmVnJDUDExcmdpdWt5TGZcL1BucTAxdVd6a3dTUT09IiwibWFjIjoiMTViMGYwMTdkZDFiYmU2NGFiMjM5ZDkzMjk5MTRkNjllZGZhNDQ0NDFlMzY3ODE4ZjM2NzAwOGQ2NDg0YmRlYSJ9; expires=Sun, 06-Nov-2022 16:46:03 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IjNYMlRuTEd6dVdGZkJmVW9KRlhtaHc9PSIsInZhbHVlIjoiWVE3RkdqNForMmF0dklyRlplQ1wveFI1MEduQ0lpSnR5XC9TNUI4ZWpwenkwK29vUzZNcllYMUVncFc1Qm42MndSTkZnK3VxSDdxcFwvRnpSbmhtWnJTSVE9PSIsIm1hYyI6IjIzMWJlMGY3YzRlOTk3MDAzMGU1MzMzY2Q4MDJhNTg4NmFhMzVhYzA0OWIzM2Q3NDVmYzU5YmYzZjBmYmQ4NjEifQ%3D%3D; expires=Sun, 06-Nov-2022 16:46:03 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
seguro.caixamisteriosa.net/e/t
170.82.173.30200 OK 0 B URL HTTP/2 seguro.caixamisteriosa.net/e/t
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImVkYWRmNTBjODUyMjVmYjIiLCJ0ciI6ImU2NWVlNmM2MGRmZTJmMWNkM2I2MGRjODZjNDBjNzE0IiwidGkiOjE2Njc3NDIzNjExMjB9fQ==
traceparent: 00-e65ee6c60dfe2f1cd3b60dc86c40c714-edadf50c85225fb2-01
tracestate: 2935249@nr=0-1-2935249-1134170823-edadf50c85225fb2----1667742361120
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 368
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6ImR0OXhhNE5IQUx3YzFmek9vbUM1eHc9PSIsInZhbHVlIjoiUUc0Mko4VzJITUFnMGh6d3paWGdYb0ZGeTljZWZJd21cLzVydjRJOUFyRFF4Ymp1SUc1NDFscFh1XC9iSndxQ0Z2ZzFRTER0OW5oc3Bxd3pMQkpzUkxodz09IiwibWFjIjoiYTE1NjAxYjUyNTJjNzg2ZTJiZjcyMDhiMmYwMjczMzA3YjY5YWMyYWQwOWEyNGJlY2I1ZDg2Nzk5YWNhZGEwMSJ9; bubbstore_checkout=eyJpdiI6InFGMlJqNXNRazJJemp4ZzNteiswQ3c9PSIsInZhbHVlIjoidXpDT0JWSm15Z0x6ZFB1SHNEWEdDNGUyQXFCekVadlhIRHNcL001bm1pYVNPSHkrMExESVU3bmcwaWtTdWJHRnlmeWt5YkNjbjRtRWlcL01JTjUzS0Z2UT09IiwibWFjIjoiYTNmMjFlYjliYmE0ODEzMjM3ZTI3ZmFjODI3MDA0NjI1N2VlODljOTM2NjI0ODRiNzI5M2UxNWQ1YTQ3M2Y0MyJ9; caixa-misteriosa9_cart=eyJpdiI6IlJvTGNyT2RCSzIwRG1OMkpOUjg5WGc9PSIsInZhbHVlIjoiZHVaRE4xVU9mWnd5VjdFTHFIeWgxSFJ4REErNndYaUd3VVQ5U0cxMnFMRlUzeGw5ZmFzZVh3MHYzQ3VyY0lxVWhuZ2lMZDhqVmdwT2xTdDlFcFNydWc9PSIsIm1hYyI6ImMwNDI0OTJiNDRkMzE3ZGM0MzIxODc4Y2RkMmJkNTc1YjEzNTM5NjI1MmMyYzgyYTNmZDU1MThkMDhhNmU0ZDUifQ%3D%3D; cart_auth_274608902=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:03 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IkI2XC9IcjdTdWM0Z2hGd01NXC9xTmVuZz09IiwidmFsdWUiOiJIY3A0am94SWtGdEFWU1ltbjRUZWF4c1hCU1lYM3NtUU9ZbUV0b2dreUNWMzhmcDhVRXpuWmNyNkZOUGZ4bmpRZWdVaWRpMElVSGRrT2UyeXFwZ1REUT09IiwibWFjIjoiNzZjMTFjNzA2MWViYTQyMDc3ZGQ4ZjkyYzdkMTgwMWJjODM3NzU4ODBhZTNlMjk5ZGJmMzNmY2Y4Y2M5YmJhYSJ9; expires=Sun, 06-Nov-2022 16:46:03 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkpCOFZoNlg4NjNITGxrWjV3aE9mQ3c9PSIsInZhbHVlIjoiY1p4ek00VE1OdnZHd2VreWxCYStPb2NSbDV1aDdxR0hsdkcySzRQN1ZNMFdUV3NTWndmdEc3WmZZaCswUGpTYkRaUmgybGRIRk55VTBacmJVTkNBYWc9PSIsIm1hYyI6IjIwMzg0YzZkMjEwN2UyNTdkNjQ4Nzg5NmEzNGQxMDdjODBiNTVlNGUwNTI0OTViZTZmNDM3YTFkMDY3NTEyZjYifQ%3D%3D; expires=Sun, 06-Nov-2022 16:46:03 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.yampi.me/jquery/jquery.js
172.67.72.14200 OK 0 B URL HTTP/2 cdn.yampi.me/jquery/jquery.js
IP 172.67.72.14:0
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:02 GMT
content-type: application/javascript
x-amz-id-2: ILZmLC/8xna6FmsXdPeQFmrthYLTeDP76FAp+EitPECkMWcmbW/VCwRc3PP3cCFdNanDgCUhpQQ=
x-amz-request-id: DJMKDNPKPYM8B8XF
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2748
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C3booXDmesLQlIYxC9hhOZaVdKAclLrK93fLOh4GkxMXDhP6i0BH%2B3Nh2CHNWwB15v1eAmYNBBnOx6X%2FpzqOLGYJLww3FdInRO11sjRymWGFxhO7T62Q5WZGG4pLig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 765e45e74debb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.upnid.com/v0.js
130.211.14.112200 OK 0 B IP 130.211.14.112:0
GET /v0.js HTTP/1.1
Host: js.upnid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin
content-encoding: br
via: 1.1 google
content-length: 8310
date: Sun, 06 Nov 2022 13:00:19 GMT
age: 2743
last-modified: Tue, 19 Jan 2021 20:16:07 GMT
content-type: text/javascript; charset=utf-8
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.dooki.com.br/fa/4.7.0/fa.css
104.18.0.53200 OK 0 B URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.css
IP 104.18.0.53:0
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:02 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 5172
expires: Mon, 14 Nov 2022 13:46:02 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 765e45e8398bb4ed-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 0 B URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: oMd+0iI1RXyFsBSn1FGX7afc6PfqRAKsvpN7CCdgM+ElpfBQzEMDAHFrakZgwRs0KqqIOfySZROJV7w+Doiuog==
content-length: 27337
x-fb-trip-id: 1904183273
date: Sun, 06 Nov 2022 13:46:04 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25
172.67.72.14200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25
IP 172.67.72.14:0
GET /checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:46:02 GMT
content-type: text/css
x-amz-id-2: YA1eDbyiFw9F7lvoHKFMrUFI+rzs4fWeaPTK8HBrcIojzp1Ze0GAqZwjGyO3EOKzm5Y2nWL5dqs=
x-amz-request-id: P208087TQ0JZ3MS4
last-modified: Fri, 04 Nov 2022 18:19:16 GMT
x-amz-version-id: 5lxShk4xe0C8IXXkoQQWK8S_0jFPf.GV
etag: W/"78c7a473b51f1cc2067d1b8860950b25"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5172
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZzRF%2F0AE7Ajbe4HcUwtIgTPj4wIfvHd9InWaYyqnt9XruBrQmb8wL%2BopPDxunUOI4kDw3LL%2FTJbBwo9yzY4zDEFlMqR%2B7%2BKWefhe9%2BEsZMvJ8xV1Jpy0ym0KnIrw2pcc%2FiLCuxEw2KZD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 765e45e72daab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/identify.js
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/identify.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221106134603B727EA18A425582D8A33
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465be3adf41f567d340c6f9814b9b2289b7a361aae22194b33c5fe78e4502c19a92e9d0194117ce6a9dd462c7c84ab8f7d47
content-encoding: gzip
expires: Sun, 06 Nov 2022 13:46:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 13:46:03 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=101
x-origin-response-time: 101,23.36.79.28
x-akamai-request-id: 25b6bd69
X-Firefox-Spdy: h2