| linkcurto.co/ch7vt28dh68sg | 188.114.96.1 | 301 Moved Permanently | 0 B |
URL HTTP/1.1linkcurto.co/ch7vt28dh68sg IP188.114.96.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ch7vt28dh68sg HTTP/1.1
Host: linkcurto.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 09 Dec 2022 20:55:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 09 Dec 2022 21:55:21 GMT
Location: https://linkcurto.co/ch7vt28dh68sg
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CGo80F89Jw29p0oL3MbrWUpq61y%2BQC6CcZhoGfPQJLiqUV0YZ%2Fs1k9%2BtXPsbM%2Bldp6m50zcmyhHBnJlx1pu7ibyXxkv7pEwWVIB%2BW7XUclbC0qR4iSJ7aWHg04FFW0c%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7770a42a0d7cb4f4-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf2acd891dc6eb1f09f57a2b086791781 1e2088306501a61edcca1ade62c4d54f23b3b083 51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5869
Expires: Fri, 09 Dec 2022 22:33:11 GMT
Date: Fri, 09 Dec 2022 20:55:22 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashaea93551fa9deb76ae49a3b4019d64fe e3b8862057ebe839959228e42246d7b1807fc90c 7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2903
Expires: Fri, 09 Dec 2022 21:43:45 GMT
Date: Fri, 09 Dec 2022 20:55:22 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash4ee537977be9c03702f8ffe0025bf1fe 21637881c4aa34c4add703f8bff4eff573159f45 4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11842
Expires: Sat, 10 Dec 2022 00:12:44 GMT
Date: Fri, 09 Dec 2022 20:55:22 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 20:33:14 GMT
content-type: application/json
age: 1328
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FAHxxdkcbp2wL9VHTOahvLpksMGm+Q2tS05O6kEV3bEPjeb8RZHCH/OKShbGeT583l6MU7Y7kyg=
x-amz-request-id: EGX4CW4C2Z6B6047
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 20:48:30 GMT
age: 412
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:55:22 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 20:07:55 GMT
age: 2847
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashe6be4d2155028ffff5d01ab6e7edf6da 07172071b5cf43c4cd7d7930b4ad8518ec1e32e9 4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5582
Cache-Control: max-age=135874
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:23 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 10:39:57 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 35.164.186.39 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.164.186.39:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: S5ZrzSd0lZqsIw6FYmQdqQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6U2J1ElfKncsDdtvvKRZZCNezbU=
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash98a5937332f9c83c62bcebf4c09f644e 4e002c91ebac96a405ba5847237eabd78d71553f 1a5f8e5ee30e9ceb79ddf844cba04eb8c58f38846a25dfe44179ae89068308ea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1A5F8E5EE30E9CEB79DDF844CBA04EB8C58F38846A25DFE44179AE89068308EA"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21520
Expires: Sat, 10 Dec 2022 02:54:04 GMT
Date: Fri, 09 Dec 2022 20:55:24 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13695
Expires: Sat, 10 Dec 2022 00:43:39 GMT
Date: Fri, 09 Dec 2022 20:55:24 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13695
Expires: Sat, 10 Dec 2022 00:43:39 GMT
Date: Fri, 09 Dec 2022 20:55:24 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13695
Expires: Sat, 10 Dec 2022 00:43:39 GMT
Date: Fri, 09 Dec 2022 20:55:24 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash730ba1a8edb79ba6f83b46d1ba5aed7b 55a236fedf6f5f7ca2bb88ae13e20846a50fd36d f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:44:29 GMT
age: 47455
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8c3214044657f3b876d1f1848bca5684 7558222788f06623ddae6e883413e38e1146281e e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:41:46 GMT
age: 62018
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg | 34.120.237.76 | 200 OK | 5.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfba9a3854df65740512f96efe7442e58 8fbff7725c842d70e047c635a725723a9dc9c55a 6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7Dp35PIr_WYUI1bBa21AvmCMEPi0d3jnhuS8eEk3Q3CXRcGWAnkD8g==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 16:56:53 GMT
age: 14311
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5de5d319f43d9c9c641419d96655541f cde4c7fa0145d3645af17e34c83c63c08f76a076 fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:07:07 GMT
age: 60497
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg | 34.120.237.76 | 200 OK | 6.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8546542f00ea29ef4df6ab8d3c7c2164 5c8ffe91490006a9890188b53f875568c2b6bd8f 7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H067kZXU_djWxbWO34bYMqa0xZ-WF9ntEBhZ-kV_TDoJFXQL_J1hqQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:34:27 GMT
age: 62457
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg | 34.120.237.76 | 200 OK | 7.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8c94003641bb5a7595e7004f80f95d22 3446450df60d732f9021d5bfd5f5f7c6c870d9ec 4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 17:48:23 GMT
age: 11221
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hashedac2b4e678c48b1fc3be3a06793bfcb 23f1f41a2194536d77a2497d7255b13747fd9af0 e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hasha49ab5ecc317aa7e4724050053737549 3ffff77715bf8c5dbcbb5e17abbbc2c683c36f60 844f25237f9906c3fb977d58259e132c41dacbbe546adc8b45e9992e6ee711c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| seguro.caixamisteriosa.net/?cart_token=6515ada0-60b0-11ed-990f-027165b02942-636c7e6074c9c&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae | 170.82.173.30 | 302 Found | 24 kB |
URL HTTP/2seguro.caixamisteriosa.net/?cart_token=6515ada0-60b0-11ed-990f-027165b02942-636c7e6074c9c&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hashff705f6075c47099e92e0494902a02e1 1b5ddc0f768d2267bb504a9b126a068185b8b51b 0792aa1a1a3411da4b63985e467a3081771429d290abcd160a4780acaa3bfb7c
GET /?cart_token=6515ada0-60b0-11ed-990f-027165b02942-636c7e6074c9c&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Fri, 09 Dec 2022 20:55:24 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.caixamisteriosa.net/cart
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InB4ZHA3WU5nSG9TanhDOHVIVGRqRFE9PSIsInZhbHVlIjoiUldaa0JcL1VLQUlhVUxiVVoxa1k2S2JER3k1dTFYZkF4RWhDMUU5VjBEdlh4RTg0YjdLUGZzUU9iZklMVFcwOFQxeFF6TXBkMThJNm1Qd3pjTzMwQlpnPT0iLCJtYWMiOiIyYjM1ZmViZjBhMWMyNzdmZGViYjhjMmVlODkwNmUyN2Q1YmQ3MDcwOTU5Yjk0NDcxY2I5ZTA3NWNhMDQ3ZWE1In0%3D; expires=Fri, 09-Dec-2022 23:55:24 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlJyTkNLQjhFaGhXZG10U29MODhHNkE9PSIsInZhbHVlIjoiYVBQdlN3K3Q3SlJ6WU0yakc3Zk1EaWNUMXJzTThNaDd4aFp3MGtQamZZMTFuTzdiVzV1RWY2Zmw3RGhvWGdNSTZIWmVsRjQra0Z1UlFyTXNYWnAwQmc9PSIsIm1hYyI6IjQxZWJhNzc4Mzg1ZWJkMzNkZDk4OThmZjA2ZTYxNGYxNTk0NTU0MmFhNmRmNTAzYzU2NmU2ODMzZmJlNDVkY2EifQ%3D%3D; expires=Fri, 09-Dec-2022 23:55:24 GMT; Max-Age=10800; path=/; httponly
caixa-misteriosa9_cart=eyJpdiI6IlhKS01TXC9wbG9zS3g5RDJCSUJ1NjlnPT0iLCJ2YWx1ZSI6IlZmSk1IaDFxNWZkMWtWXC9EcTE2czJBVU5mWmdrdEJOeXZ3TlZ4NEhSdVR3aU9hWVdabVoxYXJxdkNuK2FrTjN0eU9zTDZDeUNIMDRyXC9kSXJhRDZSWEE9PSIsIm1hYyI6IjE2ZTA2NmQ0OTBkNmFhMjE0ODY5ZDU0NmViYzlkMjliMDFkMTA5NTJhODFjZTFhZmQzMmFjMjA5NWY2ODgwZWQifQ%3D%3D; expires=Wed, 14-Dec-2022 20:55:24 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hashedac2b4e678c48b1fc3be3a06793bfcb 23f1f41a2194536d77a2497d7255b13747fd9af0 e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash5496e18a30e039b44989d9a0e932d4bc c5bfb1b9ce711e38d69e78486017f07cc47fe04a 26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash8321a8176968f05a4bb16f34e6b3ddc5 33e9576f81674632c28e6e49969a1c98e142d048 11c51ba96e9170c739c3773bf5669ec289322f687f1a1ff1a7f9cdf38d177a6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4965
Cache-Control: max-age=117953
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Etag: "6392b71a-116"
Expires: Sun, 11 Dec 2022 05:41:19 GMT
Last-Modified: Fri, 09 Dec 2022 04:18:34 GMT
Server: ECS (amb/6B8A)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash8321a8176968f05a4bb16f34e6b3ddc5 33e9576f81674632c28e6e49969a1c98e142d048 11c51ba96e9170c739c3773bf5669ec289322f687f1a1ff1a7f9cdf38d177a6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=112988
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Etag: "6392b71a-116"
Expires: Sun, 11 Dec 2022 04:18:34 GMT
Last-Modified: Fri, 09 Dec 2022 04:18:34 GMT
Server: nginx
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash8321a8176968f05a4bb16f34e6b3ddc5 33e9576f81674632c28e6e49969a1c98e142d048 11c51ba96e9170c739c3773bf5669ec289322f687f1a1ff1a7f9cdf38d177a6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=112988
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Etag: "6392b71a-116"
Expires: Sun, 11 Dec 2022 04:18:34 GMT
Last-Modified: Fri, 09 Dec 2022 04:18:34 GMT
Server: nginx
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash8321a8176968f05a4bb16f34e6b3ddc5 33e9576f81674632c28e6e49969a1c98e142d048 11c51ba96e9170c739c3773bf5669ec289322f687f1a1ff1a7f9cdf38d177a6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Etag: "6392b71a-116"
Server: ECS (amb/6BC1)
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash8321a8176968f05a4bb16f34e6b3ddc5 33e9576f81674632c28e6e49969a1c98e142d048 11c51ba96e9170c739c3773bf5669ec289322f687f1a1ff1a7f9cdf38d177a6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4965
Cache-Control: max-age=117953
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Etag: "6392b71a-116"
Expires: Sun, 11 Dec 2022 05:41:19 GMT
Last-Modified: Fri, 09 Dec 2022 04:18:34 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash8321a8176968f05a4bb16f34e6b3ddc5 33e9576f81674632c28e6e49969a1c98e142d048 11c51ba96e9170c739c3773bf5669ec289322f687f1a1ff1a7f9cdf38d177a6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4965
Cache-Control: max-age=117953
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Etag: "6392b71a-116"
Expires: Sun, 11 Dec 2022 05:41:19 GMT
Last-Modified: Fri, 09 Dec 2022 04:18:34 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash47e65a3c8a0f8ba36609e085178f6c0d 0f7d27756b07086882721c1f72be2b969ac16982 717e75acc0a3fbe95556c148851b2bc36eecf1ac6dd83e159bf2b28c1503f578
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=152246
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Etag: "63935074-117"
Expires: Sun, 11 Dec 2022 15:12:52 GMT
Last-Modified: Fri, 09 Dec 2022 15:12:52 GMT
Server: nginx
Content-Length: 279
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/images/3-caixas-misteriosas-edicao-limitada-62e956f8e3474-small.png | 104.26.2.88 | 200 OK | 6.7 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/images/3-caixas-misteriosas-edicao-limitada-62e956f8e3474-small.png IP104.26.2.88:0
File typePNG image data, 70 x 50, 8-bit/color RGBA, non-interlaced\012- data Hashcb332a9efc0f28bc6357e82081339d04 63aac9734334212ac2498a15ca73e9de42f4c230 174fd118754bae0b9ae5072cfbca854abf50f143027aebe99c57567648feda17
GET /assets/stores/caixa-misteriosa9/uploads/images/3-caixas-misteriosas-edicao-limitada-62e956f8e3474-small.png HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:55:26 GMT
content-type: image/png
content-length: 6667
x-amz-id-2: 4hOJM01HBjo1yJ9mCktMXcQc14wY9iubE6Hpjh6LczpV9mLjv9vPETq41afnQ0M125Qfen6ZRmg=
x-amz-request-id: TK2BDSNBMVGZNE5P
last-modified: Tue, 02 Aug 2022 16:55:24 GMT
x-amz-version-id: gZiAb0MoTC0nCljGfsmDQ972cjn1s4z_
etag: "cb332a9efc0f28bc6357e82081339d04"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B9sXOnh1wYwL9p6UxGLbIYeVp4bizCkjHe1ErpbSS%2FE61YYmrqWhWq14ZXSDbJQQQQyZ3bPv2P5NhaNI6Go16%2FDjLtsr%2FYzJkp6yFr9jYz8fXIH3e%2FSSVKlbbdPy6%2FV%2FfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7770a44639bb0b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hashe4f546e102d986faf1029509d599b730 cc045a705fd6758b7b575fde5dfb79facc9c3546 ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.css | 104.18.1.53 | 200 OK | 7.9 kB |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.css IP104.18.1.53:0
File typeASCII text, with very long lines (30897) Hash1837d09a20613e0a4c6211b7c293037e 287368e96f41f9e79e547b67217c1b36af2344a0 9d09e8ffec67b103591521eba36efbd91019076bacda489d9aa6ea6e4bae8eab
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:55:26 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 5104
expires: Sat, 17 Dec 2022 20:55:26 GMT
cache-control: public, max-age=691200
set-cookie: __cf_bm=DgNIl9VL5o1_rxKiCtq3faYlxetsrCC2Q2ZhG1VTrBY-1670619326-0-AcfH7xCHJR+klZvbgMsz8im9CHShvCB3IAvYfrOB0pX0PDvh43VaR8EcDrzag+3mU4EdO4mutENmGjTA5P3gbGM=; path=/; expires=Fri, 09-Dec-22 21:25:26 GMT; domain=.dooki.com.br; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7770a446ea660b61-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/events.js?sdkid=419295709021341305&lib=ttq | 95.101.10.113 | 200 OK | 1.0 kB |
URL HTTP/2analytics.tiktok.com/i18n/pixel/events.js?sdkid=419295709021341305&lib=ttq IP95.101.10.113:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (2089) Hashf6f29195ad7ff4e8066b7fe324246354 99c26d72bee31fef64fda611dec82d30e0a5dee4 46fc530e6983d230baaf14b398253c2e7e88672e262605423313413b4a0843de
GET /i18n/pixel/events.js?sdkid=419295709021341305&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202212092055263D26125FE7DF87D0AC8D
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb61987e92ca6e82fe8f5ce61a0d782a00b72d257f2a73c575c6e0485e7c1cb2425ce1993a31d2d90f5c644d39a16774a1470c3324d753f67f26c27adead3658f2a949ab27a2ac3940b219494625f0f21b3
content-encoding: gzip
content-length: 1030
x-origin-response-time: 8,23.220.104.219
x-akamai-request-id: 484f8c84.7b044f0f
expires: Fri, 09 Dec 2022 20:55:26 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 20:55:26 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2Ih27TwYpgy3ANfEGpkgzOIWNVS; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-220-104-219.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=91, origin; dur=8, inner; dur=3
x-parent-response-time: 98,95.101.10.109
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 | 216.58.207.227 | 200 OK | 34 kB |
URL HTTP/2fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data Hashc21e7acd53a6d80fa451f1af92d9a492 4096e12b96fa2549e4f169044a49b6ec60214008 6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd
GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:42:15 GMT
expires: Thu, 07 Dec 2023 19:42:15 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
age: 177191
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDK4VU3C77U9GFT2SN80&lib=ttq | 95.101.10.113 | 200 OK | 1.1 kB |
URL HTTP/2analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDK4VU3C77U9GFT2SN80&lib=ttq IP95.101.10.113:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (2115) Hash871d9c09ae0c57ad49e2397635b3c6bb c4d8cb0f49c53afad14bc31fecf6cbe5e8916d64 78a26f9eb56dd3d3869fe55a1c22c2740a7c3ff4ceaecf542ae1518f8a8965ac
GET /i18n/pixel/events.js?sdkid=CDK4VU3C77U9GFT2SN80&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022120920552688C52938904953B7A689
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb61987e92ca6e82fe8f5ce61a0d782a00bf52469c95d22e2a620f99d651000426c0a9ccac1b81476cfbcd19504643cc434755b739f4be852402bfd8c162157fd9c8e27b2244d2394815b86747a51d8f4a4
content-encoding: gzip
content-length: 1057
x-origin-response-time: 4,23.220.104.211
x-akamai-request-id: fea8e332.7b044f18
expires: Fri, 09 Dec 2022 20:55:26 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 20:55:26 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2Ih27VG1Pyl1gneLzLaGfODCY9i; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-220-104-211.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=93, origin; dur=4, inner; dur=2
x-parent-response-time: 97,95.101.10.109
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDUVI73C77UAFLPMLING&lib=ttq | 95.101.10.113 | 200 OK | 1.1 kB |
URL HTTP/2analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDUVI73C77UAFLPMLING&lib=ttq IP95.101.10.113:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (2108) Hashbde4453abb8f6a086079a416c3437246 640727530703d83604ca3938865e94a683d990b9 5aaa6defe7ca6b25cbe8a81bf25346331b80a89eaa4d293c44558f274db031fe
GET /i18n/pixel/events.js?sdkid=CDUVI73C77UAFLPMLING&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202212092055262FFE88C4192BEFCF64D7
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb61987e92ca6e82fe8f5ce61a0d782a00bf7bdb6cbcf1347b56b3a81d1a3d4b6495fd90e1a6ec3da9506af86cd8cb3031dec304200fd4897c0412f501052b7ca444e10605a3c94ed99fc6c8bf228608749
content-encoding: gzip
content-length: 1058
x-origin-response-time: 7,23.32.16.75
x-akamai-request-id: 24531360.7b044f15
expires: Fri, 09 Dec 2022 20:55:26 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 20:55:26 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2Ih27Speju69x02hNL3atD6UpZq; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-32-16-75.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=108, origin; dur=7, inner; dur=5
x-parent-response-time: 115,95.101.10.109
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/static/main.MTRjZDliOGFlMg.js | 95.101.10.113 | 200 OK | 63 kB |
URL HTTP/2analytics.tiktok.com/i18n/pixel/static/main.MTRjZDliOGFlMg.js IP95.101.10.113:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (21653) Hashf57759382d7c655150aa35b6189ccbe3 ccf021db8f3389f5f45f60a8443eecda36dda7e0 5447d2e825344f2957a72c495d98af4aac32ddec307dfced0804c6de2e134ab4
GET /i18n/pixel/static/main.MTRjZDliOGFlMg.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Ih27SBXJU0GDE2p4ZkY3ETrzLg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202212011510398583013E3EBCE62A13A5
x-tt-trace-host: 0144bcadd966dc6671caa265dd4a25bffe0016f5ca8f23cb93e50475bb204d8a0db7e58ad7d783d4b5d774dc33b9c94bdaa969cbd20c61fe8f90d231a970beee0e7954b9ebf4663e96a40d77979f973423
content-encoding: gzip
date: Fri, 09 Dec 2022 20:55:26 GMT
content-length: 63157
x-cache: TCP_MEM_HIT from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=13
x-akamai-request-id: 7b044fd9
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hashe4f546e102d986faf1029509d599b730 cc045a705fd6758b7b575fde5dfb79facc9c3546 ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.158 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.158:0
Hash69932251821d3aa21953ccde9bc90fd6 60b4fd11751f4672e4da8f7342d92afbe0646dbe 6d824c2155d94ce6ece91e2cb22b2b677e9d90f26d4747359c4fb7ae1e342a7a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=88679
Date: Fri, 09 Dec 2022 20:55:26 GMT
Etag: "639240fc-1d7"
Expires: Sat, 10 Dec 2022 21:33:25 GMT
Last-Modified: Thu, 08 Dec 2022 19:54:36 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -zkJtvsXHcs2rARSQvDNe7nn3NqlKq8Mg0gFDd7nJTXWEUv1PpIZjQ==
Age: 5929
|
|
| analytics.tiktok.com/i18n/pixel/static/identify_87671.js | 95.101.10.113 | 200 OK | 31 kB |
URL HTTP/2analytics.tiktok.com/i18n/pixel/static/identify_87671.js IP95.101.10.113:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (65536), with no line terminators Hashf1b3ced909848ba051b05c5046933e65 4619465ea9cd664d27573bdd1c48b784bbe41dac 6330ee005df8eda2b138a7cff221f0b8ec1ba3140a82e86aa0a6b06a1dcff7aa
GET /i18n/pixel/static/identify_87671.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Ih27Speju69x02hNL3atD6UpZq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221025132332E17C791651961F7529DD
x-tt-trace-host: 01fd55814806c56b8ac2f7e1fc489b012cf7fe6389034e9b793ed3f334e223bd41bfd41207f501e0c60912367ce731d86fcc288b51b0e2e83bc1d92d187febaa71b2c172923b15de83698dac715e98e721
content-encoding: gzip
content-length: 30778
date: Fri, 09 Dec 2022 20:55:26 GMT
x-cache: TCP_MEM_HIT from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 7b045097
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 95.101.10.113 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP95.101.10.113:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 772
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Ih27Speju69x02hNL3atD6UpZq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022120920552744E1E1AE93D246CE15CA
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb61987e92ca6e82fe8f5ce61a0d782a00b0b084dfaf722314786dcde0cdb8460c771f5827f6caf88b9d03d330c7b71133372931cd2247928efc0314339ae962135a63e685fde38e5cf9d673ffe30582bab
x-origin-response-time: 22,23.32.16.92
x-akamai-request-id: 386c7b40.7b0450b0
expires: Fri, 09 Dec 2022 20:55:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 20:55:27 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-32-16-92.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=98, origin; dur=22, inner; dur=20
x-parent-response-time: 114,95.101.10.109
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 95.101.10.113 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP95.101.10.113:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 772
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Ih27Speju69x02hNL3atD6UpZq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221209205527969DA028575E20CF0192
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb61987e92ca6e82fe8f5ce61a0d782a00bf25fa2b111032e6c7e27b8ab98573b8ad47e16c4220d3b6b5a4b26265358ce9a79cf8b84297d3f8e885e3173b72f018bc7ddb35384d166d440a11a643f907307
x-origin-response-time: 18,23.32.16.68
x-akamai-request-id: 48d88a86.7b0450c0
expires: Fri, 09 Dec 2022 20:55:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 20:55:27 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-32-16-68.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=96, origin; dur=18, inner; dur=16
x-parent-response-time: 110,95.101.10.109
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 95.101.10.113 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP95.101.10.113:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 924
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Ih27Speju69x02hNL3atD6UpZq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221209205527FCE1D2F8940004CD0E53
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb61987e92ca6e82fe8f5ce61a0d782a00bf25fa2b111032e6c7e27b8ab98573b8a878da1e27932da909adf5a044eafb4ccba1deb4ec44236c9033e3e3156dae839f66aea990f362ec5e3336fdde4516c63
x-origin-response-time: 21,23.32.16.68
x-akamai-request-id: 48d88ad0.7b0450b4
expires: Fri, 09 Dec 2022 20:55:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 20:55:27 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-32-16-68.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=21, inner; dur=15
x-parent-response-time: 118,95.101.10.109
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 95.101.10.113 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP95.101.10.113:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 924
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Ih27Speju69x02hNL3atD6UpZq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221209205527B0F16D0763977FCEAD19
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb61987e92ca6e82fe8f5ce61a0d782a00b750e2f70667c20865fe477110e66df1686ef7613a8128a380cc76a19d4373a098a862ad488b9502d3e8896e6fcfddcf8922a32b7ef72dbceb9dfafa7b3053acb
x-origin-response-time: 20,23.220.104.215
x-akamai-request-id: 47fe65ee.7b0450c1
expires: Fri, 09 Dec 2022 20:55:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 20:55:27 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-220-104-215.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=95, origin; dur=20, inner; dur=18
x-parent-response-time: 111,95.101.10.109
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 95.101.10.113 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP95.101.10.113:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 764
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Ih27Speju69x02hNL3atD6UpZq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022120920552770F78F22BF9E68D1C206
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb61987e92ca6e82fe8f5ce61a0d782a00b72d257f2a73c575c6e0485e7c1cb24250114a32af73a85e68a7240d439dbbecf9a68095d727531817bb14a88e661ee60dfcd10aab1d533cf10d32ccf234df9a4
x-origin-response-time: 17,23.220.104.219
x-akamai-request-id: 484f9944.7b0450c2
expires: Fri, 09 Dec 2022 20:55:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 20:55:27 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-220-104-219.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=96, origin; dur=17, inner; dur=16
x-parent-response-time: 109,95.101.10.109
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 95.101.10.113 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP95.101.10.113:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 916
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Ih27Speju69x02hNL3atD6UpZq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221209205527E70F1AC7A3A095CF955A
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb61987e92ca6e82fe8f5ce61a0d782a00bbd246e26737ae805f9311d6bdd1e46bb3f4dad5932d7c2b5b565109a9a13fd58bf4456adfb259eb933f60a4c98611d442747a7b35930407fd3b2b949cc6f30d4
x-origin-response-time: 20,23.32.16.71
x-akamai-request-id: 251095f7.7b0450c3
expires: Fri, 09 Dec 2022 20:55:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 20:55:27 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-32-16-71.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=97, origin; dur=20, inner; dur=16
x-parent-response-time: 112,95.101.10.109
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 95.101.10.113 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP95.101.10.113:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 924
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Ih27Speju69x02hNL3atD6UpZq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221209205527811725EC6C4001B98201
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb61987e92ca6e82fe8f5ce61a0d782a00b550987e12696731f765c351bb0df1bc683a76e1d65f3f6955fe6447547d7d29c43a6defa4ab2fe990bae793d6c02c5dc2bba21900d5b02c238b06f051ab4befd
x-origin-response-time: 23,23.32.16.73
x-akamai-request-id: 9a6ee33b.7b0450da
expires: Fri, 09 Dec 2022 20:55:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 20:55:27 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-32-16-73.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=109, origin; dur=22, inner; dur=17
x-parent-response-time: 125,95.101.10.109
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 95.101.10.113 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP95.101.10.113:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 772
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Cookie: _ttp=2Ih27Speju69x02hNL3atD6UpZq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221209205527EE03DACEAA0D37CD4789
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb61987e92ca6e82fe8f5ce61a0d782a00b24227efd46c02c07622bcd6785cfb42b38af80f32b779f4ec3515637028411f0b79c2020a3285b761da272a121e49427b24839798d41393eadfb28f0b6c3e116
x-origin-response-time: 48,23.32.16.72
x-akamai-request-id: 4df51116.7b0450d9
expires: Fri, 09 Dec 2022 20:55:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 20:55:27 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-32-16-72.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=96, origin; dur=48, inner; dur=45
x-parent-response-time: 140,95.101.10.109
X-Firefox-Spdy: h2
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0 | 104.18.1.53 | 200 OK | 77 kB |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0 IP104.18.1.53:0
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:55:27 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: FtgQ30UQ4ZW/vbLGopDkwDziJFt6Y9AQM8Fu2JCggj/ryezhsZuJeccwO4Y8WVgNHDwAJapTEuU=
x-amz-request-id: XMWC01NFN3XRPQSR
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: MISS
expires: Sat, 17 Dec 2022 20:55:27 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=Q03Hkk3.uGFJRTOK2D6vsaryJ6r9h7ceuP1WyKwizYI-1670619327-0-AWDITfaCzmYxY6O7oLBMqqM50+9p8wsOWK0qMoYWIOUEUVZHR6f9YoVHZGp8p/CD6KP5BRej9MCQ+eeI08dhr1w=; path=/; expires=Fri, 09-Dec-22 21:25:27 GMT; domain=.dooki.com.br; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7770a4481f240b65-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashf7aef7109978f8c1c53298563756a403 d610bb812b080710945dd47f9cccd794af9fe2f7 6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js | 142.250.74.3 | 200 OK | 163 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js IP142.250.74.3:0
File typeASCII text, with very long lines (730) Size163 kB (162976 bytes) Hash79d18cf4265108d7cecca1bf4ada6109 e51d0285a545381d4c39e9e0292a650ffeeecbb9 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 13:40:02 GMT
expires: Thu, 07 Dec 2023 13:40:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 198925
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashf7aef7109978f8c1c53298563756a403 d610bb812b080710945dd47f9cccd794af9fe2f7 6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google-analytics.com/j/collect?v=1&_v=j98&a=1476113382&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcart&ul=en-us&de=UTF-8&dt=Carrinho%20-%20Caixa%20Misteriosa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=1249770989&gjid=157926196&cid=1291868026.1670619327&tid=UA-45745009-5&_gid=39059771.1670619327&_r=1&_slc=1&z=1489077113 | 142.250.74.110 | 200 OK | 4 B |
URL HTTP/2www.google-analytics.com/j/collect?v=1&_v=j98&a=1476113382&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcart&ul=en-us&de=UTF-8&dt=Carrinho%20-%20Caixa%20Misteriosa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=1249770989&gjid=157926196&cid=1291868026.1670619327&tid=UA-45745009-5&_gid=39059771.1670619327&_r=1&_slc=1&z=1489077113 IP142.250.74.110:0
File typeASCII text, with no line terminators Hash9e92e190700c1af4539b40c2171320a9 209bcdb79e6067b51091ce8586d4b977f25b67d8 aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j98&a=1476113382&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcart&ul=en-us&de=UTF-8&dt=Carrinho%20-%20Caixa%20Misteriosa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=1249770989&gjid=157926196&cid=1291868026.1670619327&tid=UA-45745009-5&_gid=39059771.1670619327&_r=1&_slc=1&z=1489077113 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://seguro.caixamisteriosa.net
date: Fri, 09 Dec 2022 20:55:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| connect.facebook.net/en_US/fbevents.js | 157.240.221.16 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP157.240.221.16:0
File typeASCII text, with very long lines (64348) Hash44ecaa3c2a4929a40141edc4540aaf84 f29a573182333b2500d41bfc389d6c5232dfb348 6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: RaWK3B8KA4s8tcwBkI5DcNbwAD2N1DlnOEFzyrTzi7Hu70lgYv+TF5ZLC3mlj0jln4zz6mErP+PuyOtQi4ridA==
content-length: 27340
x-fb-trip-id: 1679558926
date: Fri, 09 Dec 2022 20:55:27 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash101b88a5a141e4659cc3150b7ca565b6 898ea48b6bb3c316e651cb4bc6451be06c050ab9 5ae54f788fa6724f16af03528f24db2ecbbefd8e5fc9af7fb2a79551911ca09f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5302
Cache-Control: max-age=161142
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:27 GMT
Etag: "63935e7f-1d7"
Expires: Sun, 11 Dec 2022 17:41:09 GMT
Last-Modified: Fri, 09 Dec 2022 16:12:47 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash8105b33e4e3af998e9d016e156205c22 dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9 4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=1291868026.1670619327&jid=1249770989&gjid=157926196&_gid=39059771.1670619327&_u=IEDAAAASAAAAAC~&z=1405303310 | 64.233.164.155 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=1291868026.1670619327&jid=1249770989&gjid=157926196&_gid=39059771.1670619327&_u=IEDAAAASAAAAAC~&z=1405303310 IP64.233.164.155:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=1291868026.1670619327&jid=1249770989&gjid=157926196&_gid=39059771.1670619327&_u=IEDAAAASAAAAAC~&z=1405303310 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.caixamisteriosa.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Dec 2022 20:55:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash8105b33e4e3af998e9d016e156205c22 dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9 4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| seguro.caixamisteriosa.net/cart | 170.82.173.30 | 200 OK | 227 kB |
URL HTTP/2seguro.caixamisteriosa.net/cart IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Size227 kB (227422 bytes) Hash615d0c8fbe601a7eba69f073a903404e bc4eddfab62818b6c984a594be30d6827cac7be1 b020d248a3cfdd4b7749a90a09c28bb17b8a0f1ed558be3201fe8ebb3cf05018
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /cart HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6InB4ZHA3WU5nSG9TanhDOHVIVGRqRFE9PSIsInZhbHVlIjoiUldaa0JcL1VLQUlhVUxiVVoxa1k2S2JER3k1dTFYZkF4RWhDMUU5VjBEdlh4RTg0YjdLUGZzUU9iZklMVFcwOFQxeFF6TXBkMThJNm1Qd3pjTzMwQlpnPT0iLCJtYWMiOiIyYjM1ZmViZjBhMWMyNzdmZGViYjhjMmVlODkwNmUyN2Q1YmQ3MDcwOTU5Yjk0NDcxY2I5ZTA3NWNhMDQ3ZWE1In0%3D; bubbstore_checkout=eyJpdiI6IlJyTkNLQjhFaGhXZG10U29MODhHNkE9PSIsInZhbHVlIjoiYVBQdlN3K3Q3SlJ6WU0yakc3Zk1EaWNUMXJzTThNaDd4aFp3MGtQamZZMTFuTzdiVzV1RWY2Zmw3RGhvWGdNSTZIWmVsRjQra0Z1UlFyTXNYWnAwQmc9PSIsIm1hYyI6IjQxZWJhNzc4Mzg1ZWJkMzNkZDk4OThmZjA2ZTYxNGYxNTk0NTU0MmFhNmRmNTAzYzU2NmU2ODMzZmJlNDVkY2EifQ%3D%3D; caixa-misteriosa9_cart=eyJpdiI6IlhKS01TXC9wbG9zS3g5RDJCSUJ1NjlnPT0iLCJ2YWx1ZSI6IlZmSk1IaDFxNWZkMWtWXC9EcTE2czJBVU5mWmdrdEJOeXZ3TlZ4NEhSdVR3aU9hWVdabVoxYXJxdkNuK2FrTjN0eU9zTDZDeUNIMDRyXC9kSXJhRDZSWEE9PSIsIm1hYyI6IjE2ZTA2NmQ0OTBkNmFhMjE0ODY5ZDU0NmViYzlkMjliMDFkMTA5NTJhODFjZTFhZmQzMmFjMjA5NWY2ODgwZWQifQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:55:25 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6Ijh2VnYwRDBZeElFRWsyelNpWDdBRXc9PSIsInZhbHVlIjoiQ0t4SWNWWGZqcTFhN3c1TXBGdVk1XC9RZFMxOFJmeFpPWkJMVERSYml2d0NUUEtoV05la3pwalZHQXY3bmNhMU91Nk9jdkg0Q1FcL0I4dGQrOUhYXC9FWVE9PSIsIm1hYyI6IjQzOTE0ZWJjMjYwZDFjOTM0MTc5ZTExMDZhZjMyNDAzYjE0NzIwMzBlMDg3NDkyMzgxNzE5NmIyY2JjYzk4NGMifQ%3D%3D; expires=Fri, 09-Dec-2022 23:55:25 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IjRZcFpsZzVoc05qVjZ4MzJYYTVCMlE9PSIsInZhbHVlIjoib2l6a3pzbGlObHdyZUFVT3daQjdJZGtkbEtBUU1DWit6REs0T1AxSnRvbTNvbE9TR3ZsaXpwRkt5S2drTEo5U3pMMHczMzZ2b1U5aTVJTGJZZVwvNXZ3PT0iLCJtYWMiOiJhYjUxODFlMjYyN2IwMWViMmE2ZDU2OTJmZjIxN2M3NmY0OTJlYTIzOTEyYjFlMWQ1ZTE0OGZiNDI0NmE5YzJjIn0%3D; expires=Fri, 09-Dec-2022 23:55:25 GMT; Max-Age=10800; path=/; httponly
cart_auth_276440478=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%3D%3D; expires=Fri, 09-Dec-2022 21:05:25 GMT; Max-Age=600; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ana.yampi.io/v1/hits?id=checkout&uid=1-ssfxtvlx-lbgzm2de&ev=checkout-cart-initiate&ed=%7B%22screen_resolution%22%3A%221280x1024%22%2C%22store_id%22%3A220992%2C%22store_profile%22%3A%22checkout%22%2C%22content_ids%22%3A%5B%2263825031%22%5D%2C%22content_type%22%3A%22sku%22%2C%22session_id%22%3A%226515ada0-60b0-11ed-990f-027165b02942-636c7e6074c9c%22%2C%22customer_id%22%3A117098609%7D&v=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcart&rl=&ts=1670619326595&load_time=4978&de=UTF-8&sr=1280x1024&vp=1280x939&cd=24&dt=Carrinho%20-%20Caixa%20Misteriosa&bn=Firefox%20105&md=false&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&tz=0&utm_source=&utm_medium=&utm_term=&utm_content=&utm_campaign=&utm_source_platform=&utm_creative_format=&utm_marketing_tactic= | 104.18.15.227 | 204 No Content | 0 B |
URL HTTP/2ana.yampi.io/v1/hits?id=checkout&uid=1-ssfxtvlx-lbgzm2de&ev=checkout-cart-initiate&ed=%7B%22screen_resolution%22%3A%221280x1024%22%2C%22store_id%22%3A220992%2C%22store_profile%22%3A%22checkout%22%2C%22content_ids%22%3A%5B%2263825031%22%5D%2C%22content_type%22%3A%22sku%22%2C%22session_id%22%3A%226515ada0-60b0-11ed-990f-027165b02942-636c7e6074c9c%22%2C%22customer_id%22%3A117098609%7D&v=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcart&rl=&ts=1670619326595&load_time=4978&de=UTF-8&sr=1280x1024&vp=1280x939&cd=24&dt=Carrinho%20-%20Caixa%20Misteriosa&bn=Firefox%20105&md=false&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&tz=0&utm_source=&utm_medium=&utm_term=&utm_content=&utm_campaign=&utm_source_platform=&utm_creative_format=&utm_marketing_tactic= IP104.18.15.227:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/hits?id=checkout&uid=1-ssfxtvlx-lbgzm2de&ev=checkout-cart-initiate&ed=%7B%22screen_resolution%22%3A%221280x1024%22%2C%22store_id%22%3A220992%2C%22store_profile%22%3A%22checkout%22%2C%22content_ids%22%3A%5B%2263825031%22%5D%2C%22content_type%22%3A%22sku%22%2C%22session_id%22%3A%226515ada0-60b0-11ed-990f-027165b02942-636c7e6074c9c%22%2C%22customer_id%22%3A117098609%7D&v=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcart&rl=&ts=1670619326595&load_time=4978&de=UTF-8&sr=1280x1024&vp=1280x939&cd=24&dt=Carrinho%20-%20Caixa%20Misteriosa&bn=Firefox%20105&md=false&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&tz=0&utm_source=&utm_medium=&utm_term=&utm_content=&utm_campaign=&utm_source_platform=&utm_creative_format=&utm_marketing_tactic= HTTP/1.1
Host: ana.yampi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Fri, 09 Dec 2022 20:55:28 GMT
content-type: application/json
content-length: 0
x-amzn-requestid: 9051c5a4-3e7e-4645-b496-337a2646bc8e
x-ratelimit-remaining: 59
x-amz-apigw-id: c5YODHSQIAMFqNA=
cache-control: no-cache, private
x-ratelimit-limit: 60
etag: "da39a3ee5e6b4b0d3255bfef95601890afd80709"
x-amzn-trace-id: Root=1-6393a0c0-49361fea5f03184255dee711;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 20:55:28 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7770a44dce10b4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap IP142.250.74.106:0
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 20:55:26 GMT
date: Fri, 09 Dec 2022 20:55:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=2c4aa4172b45c84ea3bac9923a85c4a8 | 104.26.2.88 | 200 OK | 0 B |
URL HTTP/2awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=2c4aa4172b45c84ea3bac9923a85c4a8 IP104.26.2.88:0
GET /checkout/build/mix/assets/js/app.js?id=2c4aa4172b45c84ea3bac9923a85c4a8 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:55:26 GMT
content-type: application/javascript
x-amz-id-2: lHYEKJeDhTw3oCupsDlz/Kr4V+zobgaE6KSF2/vhdW6YQ/t5VY7PABAFhS27IwRrLs7UjgRQqMY=
x-amz-request-id: Z50743QBH7MQXSY3
last-modified: Thu, 08 Dec 2022 11:55:56 GMT
x-amz-version-id: 9yYjBVUlfFdQ0YFRmlopZEvyVSRahOEb
etag: W/"d215a9b88bb37aab897206524c07e10d"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AIP7Gr0nC4rLAFC7QwNYd6gKozpD8LBX0AEV4WfUt%2FgsO0bZfTM28mAFCdeZkubMFVvkwEqO%2F4E19%2FtAJCpd5WyUp0pb4%2B8CSKMEWd8N%2BKx25eVT33xks3gdsyYWqe2FiCBuHUtN21Wu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7770a44649d00b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/e/t | 170.82.173.30 | 200 OK | 0 B |
URL HTTP/2seguro.caixamisteriosa.net/e/t IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer | Verdict | Alert | fortinet | Phishing | |
POST /e/t HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImI3NmE5MjUyODc5NzA2MDEiLCJ0ciI6IjkyMGI5MzQyZGRhNTIwZGFmMTQyN2QxYTNiZWMxYjcwIiwidGkiOjE2NzA2MTkzMjU3NDR9fQ==
traceparent: 00-920b9342dda520daf1427d1a3bec1b70-b76a925287970601-01
tracestate: 2935249@nr=0-1-2935249-1134170823-b76a925287970601----1670619325744
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 373
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/cart
Cookie: XSRF-TOKEN=eyJpdiI6Ijh2VnYwRDBZeElFRWsyelNpWDdBRXc9PSIsInZhbHVlIjoiQ0t4SWNWWGZqcTFhN3c1TXBGdVk1XC9RZFMxOFJmeFpPWkJMVERSYml2d0NUUEtoV05la3pwalZHQXY3bmNhMU91Nk9jdkg0Q1FcL0I4dGQrOUhYXC9FWVE9PSIsIm1hYyI6IjQzOTE0ZWJjMjYwZDFjOTM0MTc5ZTExMDZhZjMyNDAzYjE0NzIwMzBlMDg3NDkyMzgxNzE5NmIyY2JjYzk4NGMifQ%3D%3D; bubbstore_checkout=eyJpdiI6IjRZcFpsZzVoc05qVjZ4MzJYYTVCMlE9PSIsInZhbHVlIjoib2l6a3pzbGlObHdyZUFVT3daQjdJZGtkbEtBUU1DWit6REs0T1AxSnRvbTNvbE9TR3ZsaXpwRkt5S2drTEo5U3pMMHczMzZ2b1U5aTVJTGJZZVwvNXZ3PT0iLCJtYWMiOiJhYjUxODFlMjYyN2IwMWViMmE2ZDU2OTJmZjIxN2M3NmY0OTJlYTIzOTEyYjFlMWQ1ZTE0OGZiNDI0NmE5YzJjIn0%3D; caixa-misteriosa9_cart=eyJpdiI6IlhKS01TXC9wbG9zS3g5RDJCSUJ1NjlnPT0iLCJ2YWx1ZSI6IlZmSk1IaDFxNWZkMWtWXC9EcTE2czJBVU5mWmdrdEJOeXZ3TlZ4NEhSdVR3aU9hWVdabVoxYXJxdkNuK2FrTjN0eU9zTDZDeUNIMDRyXC9kSXJhRDZSWEE9PSIsIm1hYyI6IjE2ZTA2NmQ0OTBkNmFhMjE0ODY5ZDU0NmViYzlkMjliMDFkMTA5NTJhODFjZTFhZmQzMmFjMjA5NWY2ODgwZWQifQ%3D%3D; cart_auth_276440478=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%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:55:27 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IlNtRERmS0ptMG9JTm1hOGd5aTd2K1E9PSIsInZhbHVlIjoiSHlkMzhwWVR1TDhPYXRvZkUwOG16cW5zeXk2Qlh4MmVvYjBPRUx1R2lWcjNqN1JZd2YyZlF0SHlobXh3R1ZCZzhDTFEzbWxzN1doRjR3NjJ0SXFsTlE9PSIsIm1hYyI6Ijk3ZjljNmZlM2ZmZGZkNjI3MDMxZDc5ZTg0NDljODhmNzAwZGQ3MTQ5ZGI1NjA5ZTY5NGYzMWRmYTJiMDlkYmIifQ%3D%3D; expires=Fri, 09-Dec-2022 23:55:27 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IjdWc2JXV1N6dWtJWTl0M0x2ckg3R2c9PSIsInZhbHVlIjoiR2FDMFR4U05RZysxVldZZytRaEdJOElzRk5WMThuMk8rXC94N2xLTGFNQVlCVEg3eWswbnRzOXBNRjR6emlQUEo1aG9KTTMzQ0F1M2toaDMzcnZpNGlBPT0iLCJtYWMiOiI0NjdiMGVkMTQxZmE5ZmJiZjVkY2ZiYmJiYmY5NTllMmQ3NjE3NzliNDM4OTg5ZGFmZDJjNDg0NmFjMTY5MzNiIn0%3D; expires=Fri, 09-Dec-2022 23:55:27 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/cart/recomm | 170.82.173.30 | 200 OK | 0 B |
URL HTTP/2seguro.caixamisteriosa.net/cart/recomm IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /cart/recomm HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImExYjMxZGVhNTczNWFlMTYiLCJ0ciI6IjkwYzA5MDI5OGM4OTlmNzBhMWFjODU4YWE1MjI0YmQwIiwidGkiOjE2NzA2MTkzMjU3MzV9fQ==
traceparent: 00-90c090298c899f70a1ac858aa5224bd0-a1b31dea5735ae16-01
tracestate: 2935249@nr=0-1-2935249-1134170823-a1b31dea5735ae16----1670619325735
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/cart
Cookie: XSRF-TOKEN=eyJpdiI6Ijh2VnYwRDBZeElFRWsyelNpWDdBRXc9PSIsInZhbHVlIjoiQ0t4SWNWWGZqcTFhN3c1TXBGdVk1XC9RZFMxOFJmeFpPWkJMVERSYml2d0NUUEtoV05la3pwalZHQXY3bmNhMU91Nk9jdkg0Q1FcL0I4dGQrOUhYXC9FWVE9PSIsIm1hYyI6IjQzOTE0ZWJjMjYwZDFjOTM0MTc5ZTExMDZhZjMyNDAzYjE0NzIwMzBlMDg3NDkyMzgxNzE5NmIyY2JjYzk4NGMifQ%3D%3D; bubbstore_checkout=eyJpdiI6IjRZcFpsZzVoc05qVjZ4MzJYYTVCMlE9PSIsInZhbHVlIjoib2l6a3pzbGlObHdyZUFVT3daQjdJZGtkbEtBUU1DWit6REs0T1AxSnRvbTNvbE9TR3ZsaXpwRkt5S2drTEo5U3pMMHczMzZ2b1U5aTVJTGJZZVwvNXZ3PT0iLCJtYWMiOiJhYjUxODFlMjYyN2IwMWViMmE2ZDU2OTJmZjIxN2M3NmY0OTJlYTIzOTEyYjFlMWQ1ZTE0OGZiNDI0NmE5YzJjIn0%3D; caixa-misteriosa9_cart=eyJpdiI6IlhKS01TXC9wbG9zS3g5RDJCSUJ1NjlnPT0iLCJ2YWx1ZSI6IlZmSk1IaDFxNWZkMWtWXC9EcTE2czJBVU5mWmdrdEJOeXZ3TlZ4NEhSdVR3aU9hWVdabVoxYXJxdkNuK2FrTjN0eU9zTDZDeUNIMDRyXC9kSXJhRDZSWEE9PSIsIm1hYyI6IjE2ZTA2NmQ0OTBkNmFhMjE0ODY5ZDU0NmViYzlkMjliMDFkMTA5NTJhODFjZTFhZmQzMmFjMjA5NWY2ODgwZWQifQ%3D%3D; cart_auth_276440478=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%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:55:27 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6InpodUdlc3p0MTJpVEtJUjVNR09PU1E9PSIsInZhbHVlIjoiZys2MUpFSFNEbE9mRG9ZRzdsaTA1ZWpXQWlwVm9zSCtuSkpJMVJCK251Tkl3OEEwQ3ZVeW54cGgrQlhvbFN5Y1RSYzVNYUIxQkdrMXMwcWtmNmZza1E9PSIsIm1hYyI6ImQxZTA3ZTlkNTNmY2ZiY2UwZmU2MDZhZDc3NzhkY2VjOWUyZTQ5YjAzMWE1ZTQ2NDI0MWVhMzkyNWMzYzY4NjgifQ%3D%3D; expires=Fri, 09-Dec-2022 23:55:27 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlN1VFlDa2tnNjZcL2pkT0I1VWFNNXpnPT0iLCJ2YWx1ZSI6IkZBdnRWMlJWMVBlZmRGR3FkWnRFXC9uK1FHRU44aG5YdmhUb015WGlDbTc2K3MyVUhlSmRmeWdLcnNZaElMeWxaKzgzS0NqSFlRS01STmJHVnF2WUZFUT09IiwibWFjIjoiMzVmOWVmZGFhODJlZjhjNzU0NDA5MGEwNjhmNTMxMmRiOTE0NWQ1Y2M0MzZlZDhlMjE4ZjRlYjUxNTdiYjI4YSJ9; expires=Fri, 09-Dec-2022 23:55:27 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.yampi.io/ana/ana.min.js?t=1670630400000 | 104.18.15.227 | 200 OK | 0 B |
URL HTTP/2cdn.yampi.io/ana/ana.min.js?t=1670630400000 IP104.18.15.227:0
GET /ana/ana.min.js?t=1670630400000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:55:27 GMT
content-type: application/javascript
x-amz-id-2: r+uAoWkJ4QskasftB7HdWiabZS79fvqElRQerbJLyp9RBulfXdm9QH26PJ2FmvL1tF8paAE4qzI=
x-amz-request-id: YTNMCD8ATA1F4G6Y
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
expires: Sat, 09 Dec 2023 20:55:27 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7770a447fdf9b4ed-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| linkcurto.co/ch7vt28dh68sg | 188.114.97.1 | 301 Moved Permanently | 0 B |
URL HTTP/2linkcurto.co/ch7vt28dh68sg IP188.114.97.1:0
GET /ch7vt28dh68sg HTTP/1.1
Host: linkcurto.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Fri, 09 Dec 2022 20:55:22 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.caixamisteriosa.net?cart_token=6515ada0-60b0-11ed-990f-027165b02942-636c7e6074c9c&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae
set-cookie: XSRF-TOKEN=eyJpdiI6IlNrV1NHL0NMckd1K3U3N1k0b2JZZ3c9PSIsInZhbHVlIjoidnZlYVc5ZVRNckRHR2F1NGpLOVV6MzJmdWFRT2VPMHdhMkV4RlhFWnM3b1pDSUpnS1FNelRpZU5VdEUyVVJZSDN3OVYvbHozL3pQY1E4SUNiSm8zaEhydDlRWGl0TkxnbzBVZjJOWEtvY2hOTFVVNHFIdDZTa2p3dE9JV1FEWVYiLCJtYWMiOiIxM2M0YzA1ZGM4NzMxOGVlYjc0OTM4Y2M3OGM3NThhOGYzY2Y5NmFhMGQ1YjliNjY1MTFhYWM2MmY4NzI2MDU2In0%3D; expires=Fri, 09-Dec-2022 22:55:22 GMT; Max-Age=7200; path=/; samesite=lax
linkcurto_session=eyJpdiI6InVyZFZQYWNlZVNWaHA4OU5WZkc2enc9PSIsInZhbHVlIjoieGlRRmR0V1Aya3ppbzBpU0YrcFQzdmJDWVo0VzYzeWtxR2VGRkx6c055aWpHT0l0TS9uNGYzL2V3aDVmbkNyZVl4dmorT0Y2aDVjaDE3NkIvY2NGRnlhK0lwekxIeGdNbXdzbmZjUFNDTWNvcWJ1aWN4aGQwcUVGc2w4cllrRU4iLCJtYWMiOiJlMjlhNGI3M2Q2ZjJlZmZjYWNmOGJhOWJmYjhhZGY0YWRmOTkxYmVmNmU1NTQyZWRkMWNjNmZkZGY2MWRkNTk1In0%3D; expires=Fri, 09-Dec-2022 22:55:22 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NjSPGB29KS5uvFPawbcpSdlt0lyy%2Fk11ahpiJaDF2gi8mEMA62Xpj3l34tcfKcPuK88HmQPyxD3EZ8CGK5B4ktHJRJIeuXruacmchay3xpD6%2FIaTM4qSxMxW6YeaI1w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7770a42ca8f7b505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25 | 104.26.2.88 | 200 OK | 0 B |
URL HTTP/2awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25 IP104.26.2.88:0
GET /checkout/build/mix/assets/css/app.css?id=78c7a473b51f1cc2067d1b8860950b25 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:55:26 GMT
content-type: text/css
x-amz-id-2: YA1eDbyiFw9F7lvoHKFMrUFI+rzs4fWeaPTK8HBrcIojzp1Ze0GAqZwjGyO3EOKzm5Y2nWL5dqs=
x-amz-request-id: P208087TQ0JZ3MS4
last-modified: Fri, 04 Nov 2022 18:19:16 GMT
x-amz-version-id: 5lxShk4xe0C8IXXkoQQWK8S_0jFPf.GV
etag: W/"78c7a473b51f1cc2067d1b8860950b25"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y8YMgywdgk9iLeiDd5Ojq4k4dHCu%2FOf6xiOqq5LaK2b8UrWZ9Y9oiS9V%2FiVmJhysXI76o3A9MFktm%2FmMmiThHB39Uq%2FfXYTtnz1ipIsICNvntFQQjFqU3yAO1tca1NvJ3EL2UPaqXjMi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7770a44609970b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.yampi.me/jquery/jquery.js | 104.26.2.88 | 200 OK | 0 B |
URL HTTP/2cdn.yampi.me/jquery/jquery.js IP104.26.2.88:0
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:55:26 GMT
content-type: application/javascript
x-amz-id-2: hFHoXHOYgx6I1rT5LmUWFH8I4gzAwp4gh1eg7iqG7hMsH8APKmWODRPyKM4BsNL9sR+LVpsu3MI=
x-amz-request-id: PPGVE8BRHCVNBDAX
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5105
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UCLd2Ss%2BOXweIXkFptZ%2B4sbiiwM%2B2%2FMw%2B%2FGm6ea9zSjhsgkALDWORdsQxLKiGlNy6dB4FDK0bVW622wI3N3t7zURYM2Enafsu%2BrA1dKbFkQGITKagiyxaP%2BollDUOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7770a44639c30b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.110 | 200 OK | 0 B |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.110:0
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 09 Dec 2022 20:41:08 GMT
expires: Fri, 09 Dec 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 859
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|