r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5972
Expires: Sat, 01 Apr 2023 06:05:03 GMT
Date: Sat, 01 Apr 2023 04:25:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 034b06325b334948200ef1d79d4ddeb7
b9a3c93cff37cbaaf20cca79b965b1a21c525ce8
417ce2093027b05cc34199c75e6b29f155c4dd3150651b6b3dbe8564098c4143
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "417CE2093027B05CC34199C75E6B29F155C4DD3150651B6B3DBE8564098C4143"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5905
Expires: Sat, 01 Apr 2023 06:03:56 GMT
Date: Sat, 01 Apr 2023 04:25:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 01 Apr 2023 03:28:26 GMT
content-type: application/json
age: 3425
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 374c9e295a804e605c402f48ae7e2446
967394b36ecdff2dd32842f878887f061024c6b3
7652dfcb9e2d620ce1d033be8ecc53166d2881154c15decd60899415e5ac2706
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7652DFCB9E2D620CE1D033BE8ECC53166D2881154C15DECD60899415E5AC2706"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18135
Expires: Sat, 01 Apr 2023 09:27:46 GMT
Date: Sat, 01 Apr 2023 04:25:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cHaBKhAxPl886T+0lPMtUlywaQJE5Myl+klovYCwFS+1WMrrNyC2LGn4BEYQwj1wvdEzRmG0IkQ=
x-amz-request-id: 5V7F8G65P6RR2W0Z
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Apr 2023 04:12:27 GMT
age: 784
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 01 Apr 2023 04:25:31 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f89764b5529b0921337bd77a61e1e56a
9306a0bd5335fc1d8fa08780164b26560f1cb8d3
e0f499802da95da189595b16aceb1984eece3fbf88f7494d3290fbec4df5b4eb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0F499802DA95DA189595B16ACEB1984EECE3FBF88F7494D3290FBEC4DF5B4EB"
Last-Modified: Fri, 31 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18794
Expires: Sat, 01 Apr 2023 09:38:45 GMT
Date: Sat, 01 Apr 2023 04:25:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Expires, Cache-Control, Content-Length, Retry-After, Last-Modified, Pragma, ETag, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 01 Apr 2023 04:17:27 GMT
age: 485
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AVDDQGMWsBc0i/yheYBeQg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /ls9b1OnzKoj4YIJKRphmPhjvAQ=
Date: Sat, 01 Apr 2023 04:25:32 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
seguro.pagmenos.shop/cart?cart_token=c30a6ee4-d02e-11ed-b359-02963cbe165e-64278c85bb33f&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=2807d8e2e5e5402cb9ffc00e12ab202b44848db4&customerToken=080ab880-d02f-11ed-b2b4-69751864b75c
301 Moved Permanently 134 B URL HTTP/1.1 seguro.pagmenos.shop/cart?cart_token=c30a6ee4-d02e-11ed-b359-02963cbe165e-64278c85bb33f&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=2807d8e2e5e5402cb9ffc00e12ab202b44848db4&customerToken=080ab880-d02f-11ed-b2b4-69751864b75c
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /cart?cart_token=c30a6ee4-d02e-11ed-b359-02963cbe165e-64278c85bb33f&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=2807d8e2e5e5402cb9ffc00e12ab202b44848db4&customerToken=080ab880-d02f-11ed-b2b4-69751864b75c HTTP/1.1
Host: seguro.pagmenos.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 01 Apr 2023 04:25:32 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.pagmenos.shop:443/cart?cart_token=c30a6ee4-d02e-11ed-b359-02963cbe165e-64278c85bb33f&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=2807d8e2e5e5402cb9ffc00e12ab202b44848db4&customerToken=080ab880-d02f-11ed-b2b4-69751864b75c
X-GoCache-CacheStatus: BYPASS
Server: gocache
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d9a77b32e0026cf29a56a93b4b47c1f8
59c097cb7d07c97bd72364d4f6cc4a05e9d01584
92ded0f326395e4e1a99da8740c00976504228c3a8e5cdf921787952257b2399
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92DED0F326395E4E1A99DA8740C00976504228C3A8E5CDF921787952257B2399"
Last-Modified: Sat, 01 Apr 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 01 Apr 2023 10:25:33 GMT
Date: Sat, 01 Apr 2023 04:25:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16710
Expires: Sat, 01 Apr 2023 09:04:03 GMT
Date: Sat, 01 Apr 2023 04:25:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16710
Expires: Sat, 01 Apr 2023 09:04:03 GMT
Date: Sat, 01 Apr 2023 04:25:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa438448b-437b-48c9-af47-94514486c67e.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa438448b-437b-48c9-af47-94514486c67e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ee37ccafa69e9c352768fa30819a54f
c5268d4749fa57e8602fcb12fd11d5ffb10d0503
4186438aaede57d6b47306caa12a61328fdc83f421cecce44337ff6df9c8c028
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa438448b-437b-48c9-af47-94514486c67e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8513
x-amzn-requestid: c96fbbef-3321-40ca-9f82-79db833d14ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnXDEcQoAMFZkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64275293-75f3dfe836f9fb52292e0c21;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:37:23 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: _X7O9XKZJkC5d0gdV6D__yO7FMPXC2KhJtE6V9LVHgWlaRcyBe7eEQ==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:43 GMT
age: 23870
etag: "c5268d4749fa57e8602fcb12fd11d5ffb10d0503"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
seguro.pagmenos.shop/cart?cart_token=c30a6ee4-d02e-11ed-b359-02963cbe165e-64278c85bb33f&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=2807d8e2e5e5402cb9ffc00e12ab202b44848db4&customerToken=080ab880-d02f-11ed-b2b4-69751864b75c
302 Found 21 kB URL HTTP/2 seguro.pagmenos.shop/cart?cart_token=c30a6ee4-d02e-11ed-b359-02963cbe165e-64278c85bb33f&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=2807d8e2e5e5402cb9ffc00e12ab202b44848db4&customerToken=080ab880-d02f-11ed-b2b4-69751864b75c
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash f3fdd559a56bb25bb8d8ea1639d395ec
d061eb623cecd48ea96edcaf4d6fa7a18e01b06b
323f8c86eb5f8bb405ea5c71493377b15cbe7f7007f4c3e2dfbac8c023eba1a1
GET /cart?cart_token=c30a6ee4-d02e-11ed-b359-02963cbe165e-64278c85bb33f&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=2807d8e2e5e5402cb9ffc00e12ab202b44848db4&customerToken=080ab880-d02f-11ed-b2b4-69751864b75c HTTP/1.1
Host: seguro.pagmenos.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:25:33 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.pagmenos.shop/checkout/payment?cart_token=c30a6ee4-d02e-11ed-b359-02963cbe165e-64278c85bb33f&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=2807d8e2e5e5402cb9ffc00e12ab202b44848db4&customerToken=080ab880-d02f-11ed-b2b4-69751864b75c
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InJ5NlJhdXhrdnhlMllRb2pIdkE2Nmc9PSIsInZhbHVlIjoiVk9xU0Z4NHA0bHBMVkk4cEFjaXZsYWhtMHlNR2V3XC9jVVAwRXFySEt0TEZKWXR4K3ZWV240bGh4Q05XYUVLVVwvZjZzZjZDRW5zdHVlWVZMSkhqYkdFQT09IiwibWFjIjoiZjE0MTAxOGM4ZjU4NzUyZWFkODdjODQ2ZWYzYmZiZTZkZDU0NGUzZWRlODRjYTRkNTk1NTNiZWUxYjc0Y2RlNiJ9; expires=Sat, 01-Apr-2023 07:25:33 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImZ3eXFZQTd2WVVuTEJMZ0RLREhaZVE9PSIsInZhbHVlIjoiZnBuZFwvakFCQ1FNaW1ZdUtUa2VIaENXSVFMUDlWRlJwM1J1b1V0VDRxYkNNU2xpNHp4SlZqVUpMdW5wVFNHSFN4UG42dTJ4TmJpZkpvQ042dTRRSllnPT0iLCJtYWMiOiJhZmY4Mzk4ZjE5Y2U3N2E0ODhhYWZkODY1NGM4NGY4MDNjMTZlZWFkMGQ1Yzc4YTY4NmIyMjQ1ZTMwYTk1NDI4In0%3D; expires=Sat, 01-Apr-2023 07:25:33 GMT; Max-Age=10800; path=/; httponly
pagmenosshop_cart=eyJpdiI6ImMwUjNBZUdRR3NyS0JjN3lQK1VPNmc9PSIsInZhbHVlIjoidlpuT0h4THJuUWJLeVNRSFk0UkhZUVwvWFJ0YTdpQklNOGVrK2NaWDZuZ1VqMjhFNUZ2S1ZFQXBhTWMxbGdxZDB4T2c5cW1XaGVmNk5RMHY1MXlZQzN3PT0iLCJtYWMiOiJhZWM0ODM2ZDEwNTBiNjI2NjcwODU5NDY5M2UwNjk1ZTY0ZjFhZmJkYTkwOTdmZWMzZjhjYzY4Nzc4ZTEzZWNmIn0%3D; expires=Thu, 06-Apr-2023 04:25:33 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0797be4-c308-47e3-9657-c929f7be021e.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0797be4-c308-47e3-9657-c929f7be021e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba8077c110172a232340b8c843c21704
110ce19838f6050e0df60240211e66bb95659018
ed614253863b689b947ee48c384b0d96360730d25c6a573a8f1776c0f31b4c4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0797be4-c308-47e3-9657-c929f7be021e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10139
x-amzn-requestid: a65e17df-5f88-4840-a573-8820b3734e82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnHJE9AoAMFdwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427522d-13577a7f180985f20a340c8e;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:35:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pCHOy35HMhXe7y4p5HZcpSVBS8BEEh0stYUpY7BpLJTD0sHa7xmEgw==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:50:28 GMT
age: 23705
etag: "110ce19838f6050e0df60240211e66bb95659018"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 800c2662fd6ab8829a02b7d63084c38d
0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239
76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5950
x-amzn-requestid: 5d5a94f5-db2f-4c4c-9c9f-08c14b0ccd80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NG2NIAMF-sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-57c957f442c42fe148e66831;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: k7ZzBBGmbX5OCG_u8RwOqyLQBvohNe643wpsd3Srg2hoxh55aqSV6A==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:38:48 GMT
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
content-type: image/jpeg
age: 24405
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c193cd4520e8ee5d17cd1f3faadc1c73
b46effcb93e0ad066474ec1f67bcd54020615caf
bc824341b884278e7e69ae3bb87484ad914e5909544959ebc8f8661a545cb929
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10128
x-amzn-requestid: bdd46a1d-4b43-4450-be32-3e3947d2fcd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VELdIAMFmmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-346e92d143f6fcf46db741c8;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: TzZpij5xeF-mrrMvpNNPJQA62GcNd0qPNAh_7IAme7SI3WwmZ4itcg==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:54 GMT
etag: "b46effcb93e0ad066474ec1f67bcd54020615caf"
content-type: image/jpeg
age: 23859
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ddcef2c96778d9fdee670e187a43ab32
e8c98891a1ffdbb6d30cf8746e067d56fe65d964
4e6fb506079b1daab0b1913a31c6252452f133af9276e18d25fe6fb622ce54ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3800
x-amzn-requestid: a182fb32-649a-4228-a591-080aae8c053a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VEY2oAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-3a1abb584aa61a954dbd52c1;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 8_m0xs9JUsoheDqkfPQdh3kzcE3zhX2Io1kl_Y4sDqLr2_03TiK2eA==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:50:35 GMT
etag: "e8c98891a1ffdbb6d30cf8746e067d56fe65d964"
content-type: image/jpeg
age: 23698
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 741a2f47aab81a2c7ed0fadaa1fa74e3
be34e0df4a5f272589a017ce77ece974d890f27c
4ea1737c8246072ea1072314ae684c1f7e518a81a5200c46374e47378bfb6b63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
200 OK 588 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
IP
File type ASCII text, with very long lines (884), with no line terminators
Hash 13b7b3b08fb8dfaf349e25e363af5d1c
6190b00d8ea07f8bb2e90e9d488209dd6a98a805
42f623ea727625f39cfd9fc89b1ff23c1544081421e90a9c663ed1278de5b380
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 01 Apr 2023 04:25:34 GMT
date: Sat, 01 Apr 2023 04:25:34 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 588
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 7718223103860b33648e260eb425d733
73b981656185311b54a2edd1acaf8c238598017f
59189c3dc982d992e6030a7716885146ba75cc9293fbb97d7902643f5633b62c
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145271
Date: Sat, 01 Apr 2023 04:25:34 GMT
Etag: "64273c17-1d7"
Expires: Sun, 02 Apr 2023 20:46:45 GMT
Last-Modified: Fri, 31 Mar 2023 20:01:27 GMT
Server: ECAcc (nya/79EB)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uTC5-ctSPW4bq_-r-YI5qDqO_Z3lDveijGuUo2eO_MZmKchealrx5Q==
Age: 2718
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 02ddc021542aadb090aa31099f7b9267
cb2091bff4ad6c225faa4c0c02182217bcdc502c
dcca0f6c051c27f611b9e51981fb34bd0c82a317c2e3ae3412ec6de80c596d24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5b6731341a66be32757ea461f5bd605a
f9a017cd1195d1eafb3839a899baf75f2e71958f
4bda8352f303d3fb71b8c4b2ecc9fbe75dcfc91dd2232260afb1e37ebbf139fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
200 OK 46 kB URL HTTP/2 fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
IP
Hash 9df17a63717a5f01a51619a88c7839ee
4555955223fd8dd6d60230cfd5e3da9fed75df63
b75e7c45f497808b2d0965254507235f5de5115182f3dc89b755fa81dab4e410
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 01 Apr 2023 04:25:34 GMT
date: Sat, 01 Apr 2023 04:25:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.dooki.com.br/fa/4.7.0/fa.css
200 OK 16 kB URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.css
IP
File type Unicode text, UTF-8 text, with very long lines (57176)
Hash 8bea0504c5949a23579d1ddec3026588
ba9230c5ea307ba8e315d5d54e910f1079016692
fa797de737b13217ab9d6bfd6adaed2783721eaca3797d1902979ed4fc3be95b
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:34 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 6591
expires: Sun, 09 Apr 2023 04:25:34 GMT
cache-control: public, max-age=691200
set-cookie: __cf_bm=l9CdGFNjXQh.CVIMlrgPltjfFFfmk.ADasN0a4UobwY-1680323134-0-Acira136dJKBMPuAAENgWoiBQ8n85g0R5k+BOzHIYv2fRKFaKkjeGBhJFgtijf+PbYeaXLeugOjQKQXBOldMWAM=; path=/; expires=Sat, 01-Apr-23 04:55:34 GMT; domain=.dooki.com.br; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e11a678f9b527-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5b6731341a66be32757ea461f5bd605a
f9a017cd1195d1eafb3839a899baf75f2e71958f
4bda8352f303d3fb71b8c4b2ecc9fbe75dcfc91dd2232260afb1e37ebbf139fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
seguro.pagmenos.shop/checkout/address
200 OK 52 kB URL HTTP/2 seguro.pagmenos.shop/checkout/address
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash a222d9a08809e694db14e0a30022281c
03f96d756737dd26b3ec9f82a4343927eba1dffd
592a632ab9efc1e3587c4489ed2491415a472c7ab419029f7fd152795f1b617e
Analyzer Verdict Alert fortinet Phishing
GET /checkout/address HTTP/1.1
Host: seguro.pagmenos.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjJCSFQxM0lBUVVcLzArTTd3SkNxek13PT0iLCJ2YWx1ZSI6Im9XWDdkdUdocHJCbDVHTnVkdnJDVk41M0owVU1ZNG1lanJvS3BoWWNsbnpoejE2SzhYWUVpY0ZjOWR5TWJCS3krUU5JWFRGNVc2UlFVTEVzakVIKzl3PT0iLCJtYWMiOiI4MTZiZjcxNDMwMGZiNTg2ODdjN2NiZTdiOGFjOWNiOGM2YWViNzg4YzFiZmEwMGRhMTcyYjdjZjgzYjU2MWFmIn0%3D; bubbstore_checkout=eyJpdiI6IkI1a1p0ejRBbUdWWlM1UEsrVEVUaVE9PSIsInZhbHVlIjoiQ0RSNXVjbllVM0tQdjVnRlhuVW5LQ0JHczhPQWl2MnlFTVEyMmJ0SEpoa2hXNFYzOTNXVGhWbXp0NlU1ZGhEQXlFdkJPSmFhUDhsVHZqQzBPZWhhQXc9PSIsIm1hYyI6IjRmN2E1NGNlZWM1MzUyZDIyYWY3MTVlMjMyYjZiZTdiYzIwNjc2NGM2MWY5NDRmNjM3ZGIzOTE2NDM0NjU5ZWIifQ%3D%3D; pagmenosshop_cart=eyJpdiI6ImMwUjNBZUdRR3NyS0JjN3lQK1VPNmc9PSIsInZhbHVlIjoidlpuT0h4THJuUWJLeVNRSFk0UkhZUVwvWFJ0YTdpQklNOGVrK2NaWDZuZ1VqMjhFNUZ2S1ZFQXBhTWMxbGdxZDB4T2c5cW1XaGVmNk5RMHY1MXlZQzN3PT0iLCJtYWMiOiJhZWM0ODM2ZDEwNTBiNjI2NjcwODU5NDY5M2UwNjk1ZTY0ZjFhZmJkYTkwOTdmZWMzZjhjYzY4Nzc4ZTEzZWNmIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:34 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InlNc3dzQVJ2dDU2NU95M2I0b015UGc9PSIsInZhbHVlIjoiaSt6WnBvSkoya3BXNHlZM2FcLzZOeTE3NDNpdzNQRktOYXhcL21DRTZReTdjY0xCWGVyV3RtUndCaTN2dlBrQ0tiamFTV3ozaStvZ1kwaEdQK0JoMnlDdz09IiwibWFjIjoiYzc5ZDBlYWM3NmEwMmRhMjRlZmI3ZDYyN2UxMzgzYmYzMTZhMDAyZDRjM2U1MzY2MGUwZTMwZjA3NzhmNzJmNSJ9; expires=Sat, 01-Apr-2023 07:25:34 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6Imd6YTBVNUVrSjFPTFhJQUJQK0l4V1E9PSIsInZhbHVlIjoiUitSM2MxUzJGeGJrdjRwQ3lnc3hsM0p4NUlhZWtIRmVrSUdYZWZjRlwvUGg1bUFNSGhTTktaYUxFcmRtWGgyM2E1TjZnclBrZmRrR0E0S1dsbEJwckJ3PT0iLCJtYWMiOiIyOWE0ZWFmODAxZWNjY2MzOTM4M2I2MjYwNTlmNjgzYTc1MzA1YjA3MDI3OGJjNWI1MTEyYzEzMzNiN2ZhNmQwIn0%3D; expires=Sat, 01-Apr-2023 07:25:34 GMT; Max-Age=10800; path=/; httponly
cart_auth_331138566=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%3D%3D; expires=Sat, 01-Apr-2023 04:35:34 GMT; Max-Age=600; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2
200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 33868, version 1.0\012- data
Hash a55fefd02b25a2cb141efe2d17776d60
ba132269410be55bbd81032011d5904ceb33bc64
e5b4655e2fac9e5887dfc63e54a5ea312f8779ad2a4316765a690c5177ef1acc
GET /s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33868
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:33:02 GMT
expires: Wed, 27 Mar 2024 10:33:02 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Mar 2023 21:37:56 GMT
content-type: font/woff2
age: 323552
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 1.6 kB IP
Hash a1b6889e8b31acca2e0d01dedb16b764
5c8115a8789f01436beaa3970a54ee5d2ccc0ea6
bf58bd85d5febefaf9645243bb48c94a04b2606ad42ab687c32cfb41d0b6e674
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash b370838bacecdfdb8661b793dc906fe5
3e7a4d3178440afa77dc90eb899fce10546aec61
7e378c62d86628d093432114edb610717f3b0b77f3c4b2c1ead171cbb05b516e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1671
Cache-Control: max-age=133038
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:35 GMT
Etag: "64271066-1d7"
Expires: Sun, 02 Apr 2023 17:22:53 GMT
Last-Modified: Fri, 31 Mar 2023 16:55:02 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash b370838bacecdfdb8661b793dc906fe5
3e7a4d3178440afa77dc90eb899fce10546aec61
7e378c62d86628d093432114edb610717f3b0b77f3c4b2c1ead171cbb05b516e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4541
Cache-Control: max-age=135908
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:35 GMT
Etag: "64271066-1d7"
Expires: Sun, 02 Apr 2023 18:10:43 GMT
Last-Modified: Fri, 31 Mar 2023 16:55:02 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 2.3 kB IP
Hash 9757ec2e303f1bb8e51b30c8df1832aa
5e420c51438d92a88c312f8451d87ebf22d6a817
375d980566c7c931b159279ffded2eb271321983fb2fae20dc2e572019d08321
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1671
Cache-Control: max-age=133038
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:35 GMT
Etag: "64271066-1d7"
Expires: Sun, 02 Apr 2023 17:22:53 GMT
Last-Modified: Fri, 31 Mar 2023 16:55:02 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash b370838bacecdfdb8661b793dc906fe5
3e7a4d3178440afa77dc90eb899fce10546aec61
7e378c62d86628d093432114edb610717f3b0b77f3c4b2c1ead171cbb05b516e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1671
Cache-Control: max-age=133038
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:35 GMT
Etag: "64271066-1d7"
Expires: Sun, 02 Apr 2023 17:22:53 GMT
Last-Modified: Fri, 31 Mar 2023 16:55:02 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
api.mercadopago.com/v1/device_sessions/web_device
200 OK 0 B URL HTTP/2 api.mercadopago.com/v1/device_sessions/web_device
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/device_sessions/web_device HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://seguro.pagmenos.shop/
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:35 GMT
content-type: application/json; charset=utf-8
content-length: 0
access-control-allow-origin: https://seguro.pagmenos.shop
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-allow-headers: content-type
access-control-max-age: 86400
x-request-id: 1d5d318a-4f44-4041-a758-e18b9a91c5e6
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-28,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: bb621b22e2f4f44f
x-b3-traceid: bb621b22e2f4f44f
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-digest-28: jpq3ndY+xUZq/A+h6xjB6jySgmc2bj6wZvtf5yTrKLTQompb+6inRjseqgVrRvdf
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 2e98c659f2868f240fd46f4b9b9a775a
d03f7b4ae1913f9af08e91fcec2bce5b72758db9
c2f0b5ff025ecdbdb89d0b05ab69339fbc990084d22417907464621af34cb5da
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142830
Date: Sat, 01 Apr 2023 04:25:35 GMT
Etag: "64272c6d-1d7"
Expires: Sun, 02 Apr 2023 20:06:05 GMT
Last-Modified: Fri, 31 Mar 2023 18:54:37 GMT
Server: ECAcc (nya/7919)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hI_qtcyb7Bby4YEjebtmeSOzFrC5VPW8jtE7PHWah8niwZFex8ejIQ==
Age: 4288
api.mercadopago.com/v1/devices/widgets?referer=https%3A//seguro.pagmenos.shop
204 No Content 0 B URL HTTP/2 api.mercadopago.com/v1/devices/widgets?referer=https%3A//seguro.pagmenos.shop
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/devices/widgets?referer=https%3A//seguro.pagmenos.shop HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://seguro.pagmenos.shop/
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 01 Apr 2023 04:25:35 GMT
x-request-id: 19c7f14e-eaee-4d38-8ef4-0f531b8bae0c
x-trace-digest-84: ts3tTVBP/2PhYd3M11CTctlEb3zGMYilk4+brgQeOi9CjqV5F7TBuENeWbrCxQsQ
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-84,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: ce87fa297cb0e1a9
x-b3-traceid: ce87fa297cb0e1a9
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
access-control-allow-origin: https://seguro.pagmenos.shop
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: content-type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
X-Firefox-Spdy: h2
fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
200 OK 77 kB URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
IP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:35 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: yIaEn465e7lJNlUne3f9iqAR0JiImy+9lTNYwCJ7KT5xNhQzYtRA8QRGK6LQLj05eEqulKEAgcY=
x-amz-request-id: 8S26VXQ87DDD9XFA
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: MISS
expires: Sun, 09 Apr 2023 04:25:35 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=BP5vfZbTHe9Fcz3UZu2KfFI4BfY5R1UHXRi5IZOkbds-1680323135-0-AS8eYUB7+e7u+zA90kD+w39LTJcbaG8lAnk7YEhSTgEoC8TTmbic+2ANH+FW9uclVQHe+BDDQDIpg3Zx1FlBuZo=; path=/; expires=Sat, 01-Apr-23 04:55:35 GMT; domain=.dooki.com.br; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7b0e11a8acc2fab4-OSL
X-Firefox-Spdy: h2
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/6346e486e3c50/6346e486e3c56.png
200 OK 18 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/6346e486e3c50/6346e486e3c56.png
IP
File type PNG image data, 602 x 200, 8-bit colormap, non-interlaced\012- data
Hash b1be6af9a6fea4d238b8a637c3af65d1
8ef48a78d4370662227475fa83a6b23e880d40bf
4c04808d3776c054d751f196421d546be1d9f3001606c0d124528d370d0a73e6
GET /king-assets.yampi.me/dooki/6346e486e3c50/6346e486e3c56.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: dZDVmMqtkefcP6jBILkGgaIQRET7q3eCQ1ruvGCDUXXHID7BWnyHPpzpwhNFwEi2UNUWErp/KsY=
x-amz-request-id: TYD5JWCPMYDWSND7
Date: Sat, 01 Apr 2023 04:25:36 GMT
Last-Modified: Wed, 12 Oct 2022 16:00:07 GMT
ETag: "b1be6af9a6fea4d238b8a637c3af65d1"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 17573
www.gstatic.com/recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/recaptcha__en.js
200 OK 166 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/recaptcha__en.js
IP
File type ASCII text, with very long lines (582)
Size 166 kB (166464 bytes)
Hash b81d6636c3ad72c63e532e5180eaf7f9
ddcd059999fff6218e98af62dbe3fa9c885a0de8
2fb4351c49b47b7cdaa9516237a8b1e690e4448339d09d70a84c658729e461ef
GET /recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166464
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 08:50:01 GMT
expires: Wed, 27 Mar 2024 08:50:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Mar 2023 00:02:54 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 329734
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 02303126c6c390b3c06593625186f4bf
1b71c1b9a6e5c84536de78021f94f87424579298
2cffed5b6470da73dc57dd9c5c7a5683e83f0e947eb63fbd8a8e226b18192a76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5111
Cache-Control: max-age=145134
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:36 GMT
Etag: "64273237-1d7"
Expires: Sun, 02 Apr 2023 20:44:30 GMT
Last-Modified: Fri, 31 Mar 2023 19:19:19 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
api.mercadopago.com/v1/device_sessions/web_device
200 OK 32 kB URL HTTP/2 api.mercadopago.com/v1/device_sessions/web_device
IP
File type JSON data\012- HTML document, ASCII text, with very long lines (40674)
Hash 00ec276be9512e05c06754181ec16ddb
b28517dddc36983cdfff09403a9eefad9337ad05
7626027e0182cf3d04648df1ccc22103c7e033d484bc4a4a7780867a13547a27
POST /v1/device_sessions/web_device HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 48
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:35 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://seguro.pagmenos.shop
x-request-id: 061c91f4-6372-42be-b9ad-0a146c4d35e7
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-28,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: 32c244283b17a649
x-b3-traceid: 32c244283b17a649
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-digest-28: f7fDteGGg09SXh3cWxHV84alwfQuaCSUBwpB9HWWZ8CiLVxVONcjGu679q1H4Izd
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
access-control-allow-credentials: true
vary: Accept-Encoding, Accept,Accept-Encoding
cache-control: max-age=0
set-cookie: profile=1680323135215;Path=/;Max-Age=220752000;HttpOnly;SameSite=none;Secure
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: Content-Type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 27931d15bf5fa11151ea03fc7122c56f
986529ca57686f94180a03dd7bd7068ff464bfa5
3893e3cfd05d015568d2672801fadba7875631dfe6a950c95d35cbb2a56120dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64347)
Hash 7716e124e19760049484d1bcde4a8af2
51d50c9e9b7fc658c1316d1844418cee0baffa2a
fa7968a9a888e1a6dc6ac6126b8edd6e73974c2b0629f669bfb74916f0e7d534
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: KUCRyVONP24hmkLGzW/JhkmSQMc52Fbl7g5Jlr2TGzdSOZqCtLyDoE4RECb7itIhfQN1IYu+G51MNf1eDPz6ZA==
content-length: 27909
x-fb-trip-id: 1679558926
date: Sat, 01 Apr 2023 04:25:36 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 02303126c6c390b3c06593625186f4bf
1b71c1b9a6e5c84536de78021f94f87424579298
2cffed5b6470da73dc57dd9c5c7a5683e83f0e947eb63fbd8a8e226b18192a76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5111
Cache-Control: max-age=145134
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:36 GMT
Etag: "64273237-1d7"
Expires: Sun, 02 Apr 2023 20:44:30 GMT
Last-Modified: Fri, 31 Mar 2023 19:19:19 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
www.gstatic.com/recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/styles__ltr.css
200 OK 25 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/styles__ltr.css
IP
File type ASCII text, with very long lines (56403), with no line terminators
Hash a42c6333a13e5376af95f46fd9c7b627
57a98e519a44915e39a0cb6f23812adfa6611e67
62bff9dd0379da44f9d7f739af671bb6b243c016b49c7146b431ae9e6b9cb41b
GET /recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 08:50:01 GMT
expires: Wed, 27 Mar 2024 08:50:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Mar 2023 00:02:54 GMT
content-type: text/css
vary: Accept-Encoding
age: 329735
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/recaptcha__en.js
200 OK 471 B URL HTTP/2 www.gstatic.com/recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/recaptcha__en.js
IP
Hash 4eec701fec69b73ab6ff1af2c178806f
5de0d4c444297364831a311b4c13954aa31976b0
fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512
GET /recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166464
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 08:50:01 GMT
expires: Wed, 27 Mar 2024 08:50:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Mar 2023 00:02:54 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 329735
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4eec701fec69b73ab6ff1af2c178806f
5de0d4c444297364831a311b4c13954aa31976b0
fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-226955392-1&cid=1609085768.1680323135&jid=2014985792&gjid=7556221&_gid=300802101.1680323135&_u=IEBAAEASAAAAACAAI~&z=1741523408
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-226955392-1&cid=1609085768.1680323135&jid=2014985792&gjid=7556221&_gid=300802101.1680323135&_u=IEBAAEASAAAAACAAI~&z=1741523408
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-226955392-1&cid=1609085768.1680323135&jid=2014985792&gjid=7556221&_gid=300802101.1680323135&_u=IEBAAEASAAAAACAAI~&z=1741523408 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.pagmenos.shop
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 01 Apr 2023 04:25:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=1609085768.1680323135&jid=698027406&gjid=993800534&_gid=300802101.1680323135&_u=IEHAAEATAAAAACAAI~&z=1416452771
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=1609085768.1680323135&jid=698027406&gjid=993800534&_gid=300802101.1680323135&_u=IEHAAEATAAAAACAAI~&z=1416452771
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=1609085768.1680323135&jid=698027406&gjid=993800534&_gid=300802101.1680323135&_u=IEHAAEATAAAAACAAI~&z=1416452771 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.pagmenos.shop
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 01 Apr 2023 04:25:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4eec701fec69b73ab6ff1af2c178806f
5de0d4c444297364831a311b4c13954aa31976b0
fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/627081b754b18/627081b754b1d.png
200 OK 52 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/627081b754b18/627081b754b1d.png
IP
Hash 97f2ff61f55f14d8244b7e446538ad4a
a111b91509b03a94072209d7e7b908c63c4e1db9
6f56b293f44c96c4b12de7b686aaa2f0338e2c83933b7e81af13032d61132701
GET /king-assets.yampi.me/dooki/627081b754b18/627081b754b1d.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Kc0kHw1DqzFsgDyQbW3/+1vRnMgGT1J90MsxXKAkdlF5pAn3qRslv/K8GTpzu5JcdBDrB/oE2ac=
x-amz-request-id: XTTWGJSCN643HCK3
Date: Sat, 01 Apr 2023 04:25:37 GMT
Last-Modified: Tue, 03 May 2022 01:13:28 GMT
ETag: "c2c85fca2b5186f56b4b3d70f9c81c94"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 51839
script.hotjar.com/modules.76304821fe35d593f0f4.js
200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.76304821fe35d593f0f4.js
IP
File type Unicode text, UTF-8 text, with very long lines (50980)
Hash fa9caf97b169b97f64425fac5776898a
799cdbf5060714a92aa991f93202cc55f97ca60c
29c10624673cbf80e30c64190a1bc32131ed5f4be8879fe21e4b68b22a5c24a6
GET /modules.76304821fe35d593f0f4.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68985
date: Thu, 30 Mar 2023 07:56:07 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "fa9caf97b169b97f64425fac5776898a"
last-modified: Thu, 30 Mar 2023 07:56:01 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ULhkwKVliFa04x-jvtUa2aeGs-led7wOXDRKr6SRxXfYPG6OVJ9V0g==
age: 160169
X-Firefox-Spdy: h2
seguro.pagmenos.shop/e/t
200 OK 23 B IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash 2965de50eeef1e515f352460f8448ee2
15a0587d0cd0e237ccc5a17d12ce1516e224783e
846893ffc92ede62e7292304059b5af9aa89c971f831f6bba76e76408464a4d2
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.pagmenos.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImQ4MjhhYmFkODYxNzc2OTkiLCJ0ciI6IjBjZGMyMDQ2ODM4NDg3NTM3YjI1YmY3MTUzMzI2ZjUwIiwidGkiOjE2ODAzMjMxMzM0NjZ9fQ==
traceparent: 00-0cdc2046838487537b25bf7153326f50-d828abad86177699-01
tracestate: 2935249@nr=0-1-2935249-1134170823-d828abad86177699----1680323133466
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 376
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6InlNc3dzQVJ2dDU2NU95M2I0b015UGc9PSIsInZhbHVlIjoiaSt6WnBvSkoya3BXNHlZM2FcLzZOeTE3NDNpdzNQRktOYXhcL21DRTZReTdjY0xCWGVyV3RtUndCaTN2dlBrQ0tiamFTV3ozaStvZ1kwaEdQK0JoMnlDdz09IiwibWFjIjoiYzc5ZDBlYWM3NmEwMmRhMjRlZmI3ZDYyN2UxMzgzYmYzMTZhMDAyZDRjM2U1MzY2MGUwZTMwZjA3NzhmNzJmNSJ9; bubbstore_checkout=eyJpdiI6Imd6YTBVNUVrSjFPTFhJQUJQK0l4V1E9PSIsInZhbHVlIjoiUitSM2MxUzJGeGJrdjRwQ3lnc3hsM0p4NUlhZWtIRmVrSUdYZWZjRlwvUGg1bUFNSGhTTktaYUxFcmRtWGgyM2E1TjZnclBrZmRrR0E0S1dsbEJwckJ3PT0iLCJtYWMiOiIyOWE0ZWFmODAxZWNjY2MzOTM4M2I2MjYwNTlmNjgzYTc1MzA1YjA3MDI3OGJjNWI1MTEyYzEzMzNiN2ZhNmQwIn0%3D; pagmenosshop_cart=eyJpdiI6ImMwUjNBZUdRR3NyS0JjN3lQK1VPNmc9PSIsInZhbHVlIjoidlpuT0h4THJuUWJLeVNRSFk0UkhZUVwvWFJ0YTdpQklNOGVrK2NaWDZuZ1VqMjhFNUZ2S1ZFQXBhTWMxbGdxZDB4T2c5cW1XaGVmNk5RMHY1MXlZQzN3PT0iLCJtYWMiOiJhZWM0ODM2ZDEwNTBiNjI2NjcwODU5NDY5M2UwNjk1ZTY0ZjFhZmJkYTkwOTdmZWMzZjhjYzY4Nzc4ZTEzZWNmIn0%3D; cart_auth_331138566=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%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:35 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6ImZYcm04NkxudjhNRTNBYzFiVWdrUVE9PSIsInZhbHVlIjoiNTF2TGNCMFRXOEFRTUVQWmNtcjB3NWxJXC9nMmtkV2pcLzh0UHNla051U1FhYTVcL2ZraU5zU0tjOXVrU1wvb0daQzBSVGRTeGxoV09BS3o0WHJnVXFEcnFRPT0iLCJtYWMiOiJjMzE5ZmE3NTQxZjM1YjE1YmVkNTIwNDkwOTBhN2NmMGE4Y2Y5NTJhNGU0NTUwYmEzYzNkMGRhYWY4YzI1NDBjIn0%3D; expires=Sat, 01-Apr-2023 07:25:35 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InUxaFlwNExcL0hVRGJ5MXllRkZ6RDFnPT0iLCJ2YWx1ZSI6IlFtUG8rbkFhUjFzUVNWWXJncnp1NzBBcVdUakY2WjVEdG85SlV4V2o3RUp2b3c4Z2dZcDh5WjJxUDBXMmJ4ZHp0VncxdU5WYkljWnVwRExCbzVjbkF3PT0iLCJtYWMiOiI3MTdjNmY0NTM2OGFlZjQ4ZDU4MGYwMjg3MWI4ODA3ZTQ2NThlNzFlZGYyZDk2NTY5Yjg1NTFhMDE4MmJjMTEyIn0%3D; expires=Sat, 01-Apr-2023 07:25:35 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApXCQoFHh5UFUMHUwJaUQdUUVYCCgVVV1VTFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
seguro.pagmenos.shop/cart/recomm
200 OK 1.7 kB URL HTTP/2 seguro.pagmenos.shop/cart/recomm
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash 87772c2c4434c84f9292fe8881d328b1
d8a85e281ff318944565772a0570b08319e98de3
569ff3d67dfc0fec0d2bf6645dddbb0da5b71d668feb69f0b907865168423c9a
Analyzer Verdict Alert fortinet Phishing
GET /cart/recomm HTTP/1.1
Host: seguro.pagmenos.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjI3MzVjYTFjZTc2YzRlY2QiLCJ0ciI6Ijk5MjY3ZTdmYTZmY2FkMWFhOTNmNDU1YzUwNjgzMjAwIiwidGkiOjE2ODAzMjMxMzM0NTF9fQ==
traceparent: 00-99267e7fa6fcad1aa93f455c50683200-2735ca1ce76c4ecd-01
tracestate: 2935249@nr=0-1-2935249-1134170823-2735ca1ce76c4ecd----1680323133451
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6InlNc3dzQVJ2dDU2NU95M2I0b015UGc9PSIsInZhbHVlIjoiaSt6WnBvSkoya3BXNHlZM2FcLzZOeTE3NDNpdzNQRktOYXhcL21DRTZReTdjY0xCWGVyV3RtUndCaTN2dlBrQ0tiamFTV3ozaStvZ1kwaEdQK0JoMnlDdz09IiwibWFjIjoiYzc5ZDBlYWM3NmEwMmRhMjRlZmI3ZDYyN2UxMzgzYmYzMTZhMDAyZDRjM2U1MzY2MGUwZTMwZjA3NzhmNzJmNSJ9; bubbstore_checkout=eyJpdiI6Imd6YTBVNUVrSjFPTFhJQUJQK0l4V1E9PSIsInZhbHVlIjoiUitSM2MxUzJGeGJrdjRwQ3lnc3hsM0p4NUlhZWtIRmVrSUdYZWZjRlwvUGg1bUFNSGhTTktaYUxFcmRtWGgyM2E1TjZnclBrZmRrR0E0S1dsbEJwckJ3PT0iLCJtYWMiOiIyOWE0ZWFmODAxZWNjY2MzOTM4M2I2MjYwNTlmNjgzYTc1MzA1YjA3MDI3OGJjNWI1MTEyYzEzMzNiN2ZhNmQwIn0%3D; pagmenosshop_cart=eyJpdiI6ImMwUjNBZUdRR3NyS0JjN3lQK1VPNmc9PSIsInZhbHVlIjoidlpuT0h4THJuUWJLeVNRSFk0UkhZUVwvWFJ0YTdpQklNOGVrK2NaWDZuZ1VqMjhFNUZ2S1ZFQXBhTWMxbGdxZDB4T2c5cW1XaGVmNk5RMHY1MXlZQzN3PT0iLCJtYWMiOiJhZWM0ODM2ZDEwNTBiNjI2NjcwODU5NDY5M2UwNjk1ZTY0ZjFhZmJkYTkwOTdmZWMzZjhjYzY4Nzc4ZTEzZWNmIn0%3D; cart_auth_331138566=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%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:35 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6Im9PSlwvNVl3NGRpOXUrQVwvSTNxXC9zVVE9PSIsInZhbHVlIjoiM253U3hTdFwvdDY5QXAyVUFVVnhNMlBkTE5UT1ZHU1FWNFhxY0RWcXRyeVhVZk5NcmlCNktRTzdORWFZc0tLR3hVeUVjNVBMNHlhU0NJMU9YNmZxNW1nPT0iLCJtYWMiOiJhNjA2OWExYjZmMWNhMjBjNTIzYmMyOGUxNjk2NzRlMzQ0NTIwY2QyNmViODhjNDk5OTM1NTgyNDU1MGJjYWNkIn0%3D; expires=Sat, 01-Apr-2023 07:25:35 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImJyUEtWUnBDaUNYVktRa2VBUURMN1E9PSIsInZhbHVlIjoiNE0rNGpzMXZzZWlPWkZMdUFVUlNXbVVkbWhjVmo5bGtkRjFjeGdnZW82d2doMmduVzFsWDNScVd2UmhQZkgzVHhzXC9RcDlkdkpnaU9VYlM5cndrNUZ3PT0iLCJtYWMiOiJhNDhmNmNlODBkNmNhMDdjZDUyNDRlOGNiZGJmNWNlYjU3ZjQ0YjhjZTM2MDE3YTVlYzU0MDIzMjkwM2QyNDVhIn0%3D; expires=Sat, 01-Apr-2023 07:25:35 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFtSQhBPEFJSWAsJExoDTFZTUgBSFFIWCAcHA1AVTABNEVtUBlNTUFsIUFQAAlNVUwNESFdXXxEDPg==
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=00899952f9e563e17af416bef799856acd
200 OK 35 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=00899952f9e563e17af416bef799856acd
IP
File type ASCII text, with no line terminators
Hash 75c843c7b717e7b722777907475c67a3
983d1c9a05b315288039b9d4694ce3b402259240
1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580
GET /cachedClickId?marketerId=00899952f9e563e17af416bef799856acd HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:25:36 GMT
Content-Type: application/javascript
Content-Length: 35
X-TraceId: c4751f30bb5ca497a404ec711a1b1b26
tr.outbrain.com/unifiedPixel?optOut=false&bust=05448140292684548&referrer=&marketerId=00899952f9e563e17af416bef799856acd&name=PAGE_VIEW&dl=https%3A%2F%2Fseguro.pagmenos.shop%2Fcheckout%2Faddress&g=0&obApiVersion=1.1&obtpVersion=2.0.5
200 OK 53 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?optOut=false&bust=05448140292684548&referrer=&marketerId=00899952f9e563e17af416bef799856acd&name=PAGE_VIEW&dl=https%3A%2F%2Fseguro.pagmenos.shop%2Fcheckout%2Faddress&g=0&obApiVersion=1.1&obtpVersion=2.0.5
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 414bd2a5161db03fdd910327b42c6daa
65d4cf50496813c5f1a34eddd5c50dc67d44ff47
b51f3497b0a65f1e1e87e75f5e7e823d871c23bcf76a5ee4101783c8f939e553
GET /unifiedPixel?optOut=false&bust=05448140292684548&referrer=&marketerId=00899952f9e563e17af416bef799856acd&name=PAGE_VIEW&dl=https%3A%2F%2Fseguro.pagmenos.shop%2Fcheckout%2Faddress&g=0&obApiVersion=1.1&obtpVersion=2.0.5 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:25:36 GMT
Content-Type: image/gif;
Content-Length: 53
Cache-Control: no-cache
X-TraceId: 5a25d5a0e551737cc32ded0145463f22
www.mercadolibre.com/jms/lgz/background/etid
200 OK 0 B URL HTTP/2 www.mercadolibre.com/jms/lgz/background/etid
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jms/lgz/background/etid HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 0
date: Sat, 01 Apr 2023 04:25:36 GMT
server: Tengine
set-cookie: _d2id=3a781d40-553d-45e9-a9d5-771da3aa5902-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 31 Mar 2024 04:25:36 GMT
access-control-allow-origin: *
access-control-expose-headers: Etag
etag: 069a0a8d-7d7f-4e1e-a394-b1293285d06c-1680323136808
cache-control: private, must-revalidate, proxy-revalidate
x-request-id: 3a781d40-553d-45e9-a9d5-771da3aa5902
x-trace-digest-keys: x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-33,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-trace-source: fury_app
x-trace-digest-33: kyhI1x+T1njAKyzEP+lAshtqqjtfYk8j5S2iw6PNXAh31wx9V8C42BXtNQ+UUbsP
x-b3-sampled: 0
x-request-device-id: 3a781d40-553d-45e9-a9d5-771da3aa5902
x-meli-trace-bu: mercadolibre
x-b3-spanid: 43bbb26098070998
x-b3-traceid: 43bbb26098070998
x-meli-trace-platform: /web/desktop
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-meli-trace-site: UNKNOWN
x-envoy-upstream-service-time: 1
x-d2id: 3a781d40-553d-45e9-a9d5-771da3aa5902
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
reporting-endpoints: endpoint-csp="https://events.mercadolibre.com/csp/v2/reports"
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.gstatic.com https://www.google.com https://adservice.google.com https://www.googleadservices.com https://*.mlstatic.com https://js-agent.newrelic.com https://*.hotjar.com https://*.nr-data.net https://www.google-analytics.com https://analytics.tiktok.com https://connect.facebook.net https://*.googlesyndication.com https://tags.creativecdn.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://www.datadoghq-browser-agent.com https://maps.googleapis.com https://ssl.google-analytics.com https://static.meli.com https://*.mercadolibre.com https://*.mercadopago.com; report-to endpoint-csp; report-uri https://events.mercadolibre.com/csp/reports
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 cda2fe8856474897aae1c45c7f104fba.cloudfront.net (CloudFront)
x-amz-cf-pop: TPE51-C1
x-amz-cf-id: gIVdKBV8EsWXxhPOJUuQkPumxhdOCysBdHRyFw9j6YOWuAp26Siw3A==
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background/etid
200 OK 0 B URL HTTP/2 www.mercadolibre.com/jms/lgz/background/etid
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jms/lgz/background/etid HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 0
date: Sat, 01 Apr 2023 04:25:36 GMT
server: Tengine
set-cookie: _d2id=9ac48360-67dd-4a19-b5be-69d1cbc633ee-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 31 Mar 2024 04:25:36 GMT
access-control-allow-origin: *
access-control-expose-headers: Etag
etag: 9c1bb54b-be0e-4664-8182-24645a0b7359-1680323136916
cache-control: private, must-revalidate, proxy-revalidate
x-request-id: 9ac48360-67dd-4a19-b5be-69d1cbc633ee
x-trace-digest-keys: x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-33,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-trace-source: fury_app
x-trace-digest-33: 66uThHmvWmzmI+j7mb8TuATo29kpqPVafjvt7qvcWnf4QFt/5SPZuvwZAYE2i7Vp
x-b3-sampled: 0
x-request-device-id: 9ac48360-67dd-4a19-b5be-69d1cbc633ee
x-meli-trace-bu: mercadolibre
x-b3-spanid: e16d5fe0189d816c
x-b3-traceid: e16d5fe0189d816c
x-meli-trace-platform: /web/desktop
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-meli-trace-site: UNKNOWN
x-envoy-upstream-service-time: 1
x-d2id: 9ac48360-67dd-4a19-b5be-69d1cbc633ee
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
reporting-endpoints: endpoint-csp="https://events.mercadolibre.com/csp/v2/reports"
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.gstatic.com https://www.google.com https://adservice.google.com https://www.googleadservices.com https://*.mlstatic.com https://js-agent.newrelic.com https://*.hotjar.com https://*.nr-data.net https://www.google-analytics.com https://analytics.tiktok.com https://connect.facebook.net https://*.googlesyndication.com https://tags.creativecdn.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://www.datadoghq-browser-agent.com https://maps.googleapis.com https://ssl.google-analytics.com https://static.meli.com https://*.mercadolibre.com https://*.mercadopago.com; report-to endpoint-csp; report-uri https://events.mercadolibre.com/csp/reports
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 cda2fe8856474897aae1c45c7f104fba.cloudfront.net (CloudFront)
x-amz-cf-pop: TPE51-C1
x-amz-cf-id: iICJAlVsJqXkCSabTzH9gPCf1TzofBS1DAYwb7NaTKuG0NLB0SCk-w==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3c805a5c8d88d63e317a631e82533b14
c9c70d6d8c42c5690e57e1d3b0b6331a8b1ec1a7
4957e91e8473ee4aaf83db07185ba4a0eab8f9b5687d566e65cb5f4028071183
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=1154480188737369&ev=PageView&dl=https%3A%2F%2Fseguro.pagmenos.shop%2Fcheckout%2Faddress&rl=&if=false&ts=1680323135527&cd[content_ids]=%5B%2276050479%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=29&cs_est=true&fbp=fb.1.1680323135525.349163066&it=1680323134699&coo=false&eid=PageView_w1t9xg9n5&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1154480188737369&ev=PageView&dl=https%3A%2F%2Fseguro.pagmenos.shop%2Fcheckout%2Faddress&rl=&if=false&ts=1680323135527&cd[content_ids]=%5B%2276050479%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=29&cs_est=true&fbp=fb.1.1680323135525.349163066&it=1680323134699&coo=false&eid=PageView_w1t9xg9n5&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1154480188737369&ev=PageView&dl=https%3A%2F%2Fseguro.pagmenos.shop%2Fcheckout%2Faddress&rl=&if=false&ts=1680323135527&cd[content_ids]=%5B%2276050479%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=29&cs_est=true&fbp=fb.1.1680323135525.349163066&it=1680323134699&coo=false&eid=PageView_w1t9xg9n5&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 01 Apr 2023 04:25:37 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1154480188737369&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.pagmenos.shop%2Fcheckout%2Faddress&rl=&if=false&ts=1680323135529&cd[content_ids]=%5B%2276050479%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.100&r=stable&ec=1&o=29&fbp=fb.1.1680323135525.349163066&it=1680323134699&coo=false&eid=InitiateCheckout_cqoqo0vbb&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1154480188737369&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.pagmenos.shop%2Fcheckout%2Faddress&rl=&if=false&ts=1680323135529&cd[content_ids]=%5B%2276050479%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.100&r=stable&ec=1&o=29&fbp=fb.1.1680323135525.349163066&it=1680323134699&coo=false&eid=InitiateCheckout_cqoqo0vbb&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1154480188737369&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.pagmenos.shop%2Fcheckout%2Faddress&rl=&if=false&ts=1680323135529&cd[content_ids]=%5B%2276050479%22%5D&cd[content_type]=product_group&cd[value]=99.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.100&r=stable&ec=1&o=29&fbp=fb.1.1680323135525.349163066&it=1680323134699&coo=false&eid=InitiateCheckout_cqoqo0vbb&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 01 Apr 2023 04:25:37 GMT
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-226955392-1&cid=1609085768.1680323135&jid=2014985792&_u=IEBAAEASAAAAACAAI~&z=685928825
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-226955392-1&cid=1609085768.1680323135&jid=2014985792&_u=IEBAAEASAAAAACAAI~&z=685928825
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-226955392-1&cid=1609085768.1680323135&jid=2014985792&_u=IEBAAEASAAAAACAAI~&z=685928825 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 01 Apr 2023 04:25:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3c805a5c8d88d63e317a631e82533b14
c9c70d6d8c42c5690e57e1d3b0b6331a8b1ec1a7
4957e91e8473ee4aaf83db07185ba4a0eab8f9b5687d566e65cb5f4028071183
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js-agent.newrelic.com/async-api.61caf4d9-1228.min.js
200 OK 1.1 kB URL HTTP/2 js-agent.newrelic.com/async-api.61caf4d9-1228.min.js
IP
File type ASCII text, with very long lines (2127), with no line terminators
Hash 606b062f028a46f78399bb7d44e1bf9a
0db86185b54254f268bf63ad7eab2711e197396a
7e10af14b845f8d8bf4246edf5a58ad7962b843acee6dcf7ab358fa81b0ad763
GET /async-api.61caf4d9-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FaTns9UUgZi4YzlML5M+B2GxQjl8spE0ZFt9s/sxYc5DpdQxLHcoPpItdVUDqPm8nsecig5XfE8=
x-amz-request-id: 39MYZ5RQ7GMNE1T1
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "5a15fa90d5c9cf59729e937de488758b"
x-amz-server-side-encryption: AES256
x-amz-version-id: J0GluopGath26np.0jFNgGyfwhEN0LgG
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Apr 2023 04:25:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 1358
x-timer: S1680323137.274597,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1122
X-Firefox-Spdy: h2
js-agent.newrelic.com/lazy-loader.37550b27-1228.min.js
200 OK 415 B URL HTTP/2 js-agent.newrelic.com/lazy-loader.37550b27-1228.min.js
IP
File type ASCII text, with very long lines (928), with no line terminators
Hash 5c27b117169d51b62811508a19428588
556e43e62196a24cce7eccf1ef69595759a9fbf2
c6f60726478aad438071daa75444fa323154769c9e691b135702483bf7c2a157
GET /lazy-loader.37550b27-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ILGeIOOcW2XzXLaEcsXV9V9TfMNLnv2+6RyhPFruyyXdXAz7y1zLmAhtv267GRZtJqqkYqFXeMU=
x-amz-request-id: 39MGMJYBQ0K360Q7
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "b6eaf4dad9b3e3384b0e9366ff9d0080"
x-amz-server-side-encryption: AES256
x-amz-version-id: veSIorK788CursSmiZNo6DAf4uBLqr8D
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Apr 2023 04:25:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 199033
x-timer: S1680323137.280088,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 415
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 500a93bb82275db43385ec41c3fd8bf8
663d78d2b734daab6ab51f7ecc9a86df5dc3844f
1953b5c58d06bdfd254f106ff8d7e8ee219bf2d82172cc2f514e760d0b25d2e0
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 01 Apr 2023 04:25:37 GMT
Etag: "64277cb7-1d7"
Server: ECAcc (dcb/7E9A)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BFpmRe--cEcoMac0bjWdgELjukGAsw0uka73srMt2L10LDG7ahOI4w==
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
302 Found 3.3 kB URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
File type gzip compressed data, from Unix\012- data
Hash 2c6d67d2bd7aa1f6c08a76954d047c3c
5daade1c47bb6f50b2113b517b12d44b13931e83
7126244a7f6f3d790033e16d8ccf52d4d41f5f4b98168e9efae681f220899149
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 01 Apr 2023 04:25:36 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AQMjQ7Rhl4DP6QWe5-DSklVyi5hqveMJQpUl2zK-r8qPnrd_XFtW7pxHAsxuQ7uk6KLX3kfPy6si
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-XGJzIygleoUW4_l44xKrww' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy: unsafe-none; report-to="AccountsSigninPassiveLoginHttp"
report-to: {"group":"AccountsSigninPassiveLoginHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSigninPassiveLoginHttp/external"}]}, {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-type: application/binary
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
set-cookie: __Host-GAPS=1:dQbXwIzSmZANz6IebIAPzFzD2i7fmw:pXc2ZDDxHHpgDFN9; Expires=Mon, 31-Mar-2025 04:25:36 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js-agent.newrelic.com/page_view_event-aggregate.46b69e61-1228.min.js
200 OK 1.7 kB URL HTTP/2 js-agent.newrelic.com/page_view_event-aggregate.46b69e61-1228.min.js
IP
File type ASCII text, with very long lines (3842), with no line terminators
Hash d703d7154e49d9a1ce07d4dd2b226cb7
37cadee9462cfff37a74fbcb55936a45b64e4e48
8f905564e9fb69c42bf6f862883603849a4b44c64725e0795556d1dc5f5ea084
GET /page_view_event-aggregate.46b69e61-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: wpcNsXjoHlvFEMqEfBnoXR7azh/dyo326jO9pkgDUZ53cIEbMeEefDNmOCfR/M0g2nLKgERAoJ0=
x-amz-request-id: 39MTW978EYVMGW4Z
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "75e56b9529bc3582d1ee120d4a1d49e9"
x-amz-server-side-encryption: AES256
x-amz-version-id: KBeqQAET2qZgk2U9E4XZJmVRm1HOq8Rk
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Apr 2023 04:25:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 1349
x-timer: S1680323138.884412,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1729
X-Firefox-Spdy: h2
js-agent.newrelic.com/page_view_timing-aggregate.ced8c919-1228.min.js
200 OK 2.2 kB URL HTTP/2 js-agent.newrelic.com/page_view_timing-aggregate.ced8c919-1228.min.js
IP
File type ASCII text, with very long lines (5426), with no line terminators
Hash c75a5acd79c2d258696d115cb843a372
d6e6ca6e03dddd29d5bb612b7894261a8b445a98
0de60dedc16b420a590189f7e3bf8b8bdadfa33b6419834db2ffa3fa6b7e69fd
GET /page_view_timing-aggregate.ced8c919-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: jUjMIZ7xbf4OCntVWpcUFSOkADTGGAXc18TbZLQEZ3lHAz70zPgyP+HbD9UjQRpGIOX2Rc95ccs=
x-amz-request-id: 39MSDYGEPDXDA140
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "ddb946a277f5c644d555e8e1bcf23b77"
x-amz-server-side-encryption: AES256
x-amz-version-id: ktDXvd_Dmea2UVJNoozUGAPGaGpVn1ZV
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Apr 2023 04:25:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 1344
x-timer: S1680323138.884586,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2225
X-Firefox-Spdy: h2
js-agent.newrelic.com/metrics-aggregate.56d9a464-1228.min.js
200 OK 1.8 kB URL HTTP/2 js-agent.newrelic.com/metrics-aggregate.56d9a464-1228.min.js
IP
File type ASCII text, with very long lines (4128), with no line terminators
Hash f84674d70f2da6cf2475d96cb7bd17a3
ab21646e21c60f5434becfdddbdc7ed93dc37675
bdffea2371721acbad0ce69cbe57a6fda503fd0e4a300918aa3d8da4a598d65f
GET /metrics-aggregate.56d9a464-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: WFYoj1GOEaEh0Tn9Itj1DuQwzC93wKb4XQlJwoKle93nSW1Ru4XogbU6jS0JuHtghejOiLLd8DU=
x-amz-request-id: 39MR4EJHC33PNBN6
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "04475d81e10a8c7213d39d14e581c599"
x-amz-server-side-encryption: AES256
x-amz-version-id: cAHIZ8FQmEPf2jyMvAgXJXAVQ_Jrw1XM
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Apr 2023 04:25:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 907
x-timer: S1680323138.884744,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1751
X-Firefox-Spdy: h2
js-agent.newrelic.com/jserrors-aggregate.64f61365-1228.min.js
200 OK 2.9 kB URL HTTP/2 js-agent.newrelic.com/jserrors-aggregate.64f61365-1228.min.js
IP
File type ASCII text, with very long lines (7660), with no line terminators
Hash e460383ef942d4368147befed4756575
97c96dbd480b1822fea8928db812da692d587d55
a4c77314269906cfdfc84678035cae17f03e9b836d59de9f2a1f25c943c3a030
GET /jserrors-aggregate.64f61365-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 97fBC+JmQTKfoCkHGvCgjTIe+Ng5tf1M3HJaB4Lz6AmKfegYCdUvK1Z2bEQMaRheayW6QLqr0yw=
x-amz-request-id: 39MRAK9Y0ERBK70N
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "06e9895d210a73225fa4b9a47e6e9c5a"
x-amz-server-side-encryption: AES256
x-amz-version-id: 7blonOgQSCw8rfW7sCjHyJm0L6QYtp4X
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Apr 2023 04:25:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 863
x-timer: S1680323138.884905,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2938
X-Firefox-Spdy: h2
js-agent.newrelic.com/ajax-aggregate.e6085a9a-1228.min.js
200 OK 2.4 kB URL HTTP/2 js-agent.newrelic.com/ajax-aggregate.e6085a9a-1228.min.js
IP
File type ASCII text, with very long lines (5165), with no line terminators
Hash 02911d7d1cb7fe28b7b2bc1acf9ad6aa
d83bdd4826e1cf5c5bfd6f3aa67dd07ff20c082a
239bc00b7961a0be6e7440f295cea69127a37649aecb3ec202a24e4ceba46e37
GET /ajax-aggregate.e6085a9a-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: lXWRYtMlAx1UptFh/6AuTfo0XnkMMBiO6S9BuegQmHga3Ejw4JGJ0XWaXLxDoIo/xROSasuQrZ0=
x-amz-request-id: 39MPE8FR3AZAM0JJ
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "61554094cde63c6eec39f630c32a828f"
x-amz-server-side-encryption: AES256
x-amz-version-id: Z4Nlcg06uCyBNWwjTtAHDtnTc5kadigL
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Apr 2023 04:25:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 860
x-timer: S1680323138.885196,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2365
X-Firefox-Spdy: h2
js-agent.newrelic.com/session_trace-aggregate.ada8b15b-1228.min.js
200 OK 3.7 kB URL HTTP/2 js-agent.newrelic.com/session_trace-aggregate.ada8b15b-1228.min.js
IP
File type ASCII text, with very long lines (9901), with no line terminators
Hash 6f91df6fc998fa88f468eaa1ebd3155d
b6b7e5cf4da4aceab02cadf0a47b02868b97fcaf
a795bf965e8d8d2ffa8b93495f82a337bc23815f4fc3c54a91e13541db672348
GET /session_trace-aggregate.ada8b15b-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: VYrOv6cuP4Gl4HN0xkB+XstRqkdG5JdHyyQmyAfQUy8FT3GgmxCNGWDZzoIpeWIkY9PIesBxP4o=
x-amz-request-id: 39MWTDRH8GD3DJSD
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "69d309900c2caeef33af662ddf91affc"
x-amz-server-side-encryption: AES256
x-amz-version-id: CejlNuOfipmDjtAs.g7oae_1BhJQzddr
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Apr 2023 04:25:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 863
x-timer: S1680323138.885341,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3732
X-Firefox-Spdy: h2
js-agent.newrelic.com/page_action-aggregate.1ef08094-1228.min.js
200 OK 1.2 kB URL HTTP/2 js-agent.newrelic.com/page_action-aggregate.1ef08094-1228.min.js
IP
File type ASCII text, with very long lines (2766), with no line terminators
Hash 266c07f5762c0bc8bd699ea3321ea4b2
7753ab73650177a18565e14f64eb9164e09145b6
fd2c0b6ec6fe04fcc0fd0af6689e8bd3204c7f249d0b26a5d131e4985d9b78d3
GET /page_action-aggregate.1ef08094-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: s5kRCDUyc/6f6MvtTn4JK5ug6qVq0cFu0GqXjJ5w0z593aeCWKcBrFjAfycRESuPwY29q8nxpVY=
x-amz-request-id: 39MPM1D2XAFE40ZN
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "9c1563b1437a04e5cd75285b2f4bffb0"
x-amz-server-side-encryption: AES256
x-amz-version-id: ZC9wFZ_QkK2B08VVIX3wzqk3DACA4ZFm
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Apr 2023 04:25:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 861
x-timer: S1680323138.885489,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1202
X-Firefox-Spdy: h2
js-agent.newrelic.com/spa-aggregate.7222cbb6-1228.min.js
200 OK 6.7 kB URL HTTP/2 js-agent.newrelic.com/spa-aggregate.7222cbb6-1228.min.js
IP
File type ASCII text, with very long lines (18769), with no line terminators
Hash 5deb666ca97bdb7ea6a3678df0f93046
10e6d4b738ac831808f181174a5d47e6714f0c66
86863712a2d1bccf1fb256cebd5a11d38fd15a4f8a579f062fa067c99fd2a9d3
GET /spa-aggregate.7222cbb6-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: CNNTY4mos5KD9whKnuV0ZcleiF/BFCAbrwXn8UzxfBGtfcpU4ts7s/GpTjxxIU0ukN++RO56ib4=
x-amz-request-id: 39MHX1KR20NE4QV3
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "5d22b006d12752c6dafe1b5f41318762"
x-amz-server-side-encryption: AES256
x-amz-version-id: 8nTKqPmpPpJMnC7V_9l7a.Xfo0rf._qG
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Apr 2023 04:25:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 654
x-timer: S1680323138.885621,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 6663
X-Firefox-Spdy: h2
www.mercadolivre.com/jms/mlb/lgz/background/session/armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d?background=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d&message=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%3D
200 OK 78 B URL HTTP/2 www.mercadolivre.com/jms/mlb/lgz/background/session/armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d?background=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d&message=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%3D
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 2126783e7c36a8e2d73ae746f0108053
d1bba7ee4d4421c0216bb93a14005e23f52fdb24
1a5bb92d3a4f3d6c5260b0cebc7fd5fc9da5afc7dbba4716771abbb64922fcce
GET /jms/mlb/lgz/background/session/armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d?background=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d&message=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%3D HTTP/1.1
Host: www.mercadolivre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 78
date: Sat, 01 Apr 2023 04:25:37 GMT
server: Tengine
set-cookie: _d2id=6c8b1966-8e1d-47f5-b566-9423a0706b72-n; Path=/; Domain=.mercadolivre.com; Expires=Sun, 31 Mar 2024 04:25:37 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-request-id: 6c8b1966-8e1d-47f5-b566-9423a0706b72
x-trace-digest-keys: x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-33,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-trace-source: fury_app
x-trace-digest-33: sfuA3AtMSFxVyAcip3/hyBejTgD+MSNlCZ65xLQWe/tII9GQ2Pg/c6fS2Pqo+Ub9
x-b3-sampled: 0
x-request-device-id: 6c8b1966-8e1d-47f5-b566-9423a0706b72
x-meli-trace-bu: mercadolibre
x-b3-spanid: 0b75a163e25699ca
x-b3-traceid: 0b75a163e25699ca
x-meli-trace-platform: /web/desktop
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-meli-trace-site: UNKNOWN
x-transaction-name: save_js_profiling
x-envoy-upstream-service-time: 2
x-d2id: 6c8b1966-8e1d-47f5-b566-9423a0706b72
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
reporting-endpoints: endpoint-csp="https://events.mercadolibre.com/csp/v2/reports"
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.gstatic.com https://www.google.com https://adservice.google.com https://www.googleadservices.com https://*.mlstatic.com https://js-agent.newrelic.com https://*.hotjar.com https://*.nr-data.net https://www.google-analytics.com https://analytics.tiktok.com https://connect.facebook.net https://*.googlesyndication.com https://tags.creativecdn.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://www.datadoghq-browser-agent.com https://maps.googleapis.com https://ssl.google-analytics.com https://static.meli.com https://*.mercadolibre.com https://*.mercadopago.com; report-to endpoint-csp; report-uri https://events.mercadolibre.com/csp/reports
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3azCfbxtqeNsVZ07jGxO9-FLQNs58ODS_VWzeKRTHVmTeaMWHD3FbQ==
X-Firefox-Spdy: h2
www.mercadolivre.com/jms/mlb/lgz/background/session/armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0?background=armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0&message=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%3D
200 OK 78 B URL HTTP/2 www.mercadolivre.com/jms/mlb/lgz/background/session/armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0?background=armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0&message=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%3D
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 2126783e7c36a8e2d73ae746f0108053
d1bba7ee4d4421c0216bb93a14005e23f52fdb24
1a5bb92d3a4f3d6c5260b0cebc7fd5fc9da5afc7dbba4716771abbb64922fcce
GET /jms/mlb/lgz/background/session/armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0?background=armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0&message=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%3D HTTP/1.1
Host: www.mercadolivre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 78
date: Sat, 01 Apr 2023 04:25:38 GMT
server: Tengine
set-cookie: _d2id=abf75bcd-ece7-4666-b9ea-1cc4503cfe4a-n; Path=/; Domain=.mercadolivre.com; Expires=Sun, 31 Mar 2024 04:25:38 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-request-id: abf75bcd-ece7-4666-b9ea-1cc4503cfe4a
x-trace-digest-keys: x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-12,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-trace-digest-12: OVEZf6NdFLBvDNZqJ0TfMVjqiP9B2FxMGIRJDG9Dj3t9zEEJEihFP2LrK6iiIPn5
x-trace-source: fury_app
x-b3-sampled: 0
x-request-device-id: abf75bcd-ece7-4666-b9ea-1cc4503cfe4a
x-meli-trace-bu: mercadolibre
x-b3-spanid: 70693cd438ad04e1
x-b3-traceid: 70693cd438ad04e1
x-meli-trace-platform: /web/desktop
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-meli-trace-site: UNKNOWN
x-transaction-name: save_js_profiling
x-envoy-upstream-service-time: 3
x-d2id: abf75bcd-ece7-4666-b9ea-1cc4503cfe4a
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
reporting-endpoints: endpoint-csp="https://events.mercadolibre.com/csp/v2/reports"
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.gstatic.com https://www.google.com https://adservice.google.com https://www.googleadservices.com https://*.mlstatic.com https://js-agent.newrelic.com https://*.hotjar.com https://*.nr-data.net https://www.google-analytics.com https://analytics.tiktok.com https://connect.facebook.net https://*.googlesyndication.com https://tags.creativecdn.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://www.datadoghq-browser-agent.com https://maps.googleapis.com https://ssl.google-analytics.com https://static.meli.com https://*.mercadolibre.com https://*.mercadopago.com; report-to endpoint-csp; report-uri https://events.mercadolibre.com/csp/reports
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NpUsf8JB-3edWghPsIjhDcipkhUXLIxPtOWBCvs0tW-4V9PuiugxiA==
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background?dps=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d
200 OK 8.1 kB URL HTTP/2 www.mercadolibre.com/jms/lgz/background?dps=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1025)
Hash fdf4c3fffd52862d40dd5bfe04d32cb1
044940662cd90aa48b4c185301b3375826165dee
240ada6eee81728249827b23be341dbd92870b63a0ee9c8bd658d41dad404ffe
GET /jms/lgz/background?dps=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 8082
date: Sat, 01 Apr 2023 04:25:38 GMT
server: Tengine
set-cookie: _d2id=c2369543-dfe9-41d7-b446-3a89f8a864d8-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 31 Mar 2024 04:25:38 GMT
x-request-id: c2369543-dfe9-41d7-b446-3a89f8a864d8
x-trace-digest-52: SJy7qYIFSScoHy0K0DCiQsa2QevOY2mPx5KL8ATROn2FSO40zo96wt8Dq7pNPiyI
x-trace-digest-keys: x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-52,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-trace-source: fury_app
x-b3-sampled: 0
x-request-device-id: c2369543-dfe9-41d7-b446-3a89f8a864d8
x-meli-trace-bu: mercadolibre
x-b3-spanid: 9720d6caad9f5486
x-b3-traceid: 9720d6caad9f5486
x-meli-trace-platform: /web/desktop
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-meli-trace-site: UNKNOWN
access-control-allow-origin: *
x-transaction-name: cross_domain_profiler
x-envoy-upstream-service-time: 2
x-d2id: c2369543-dfe9-41d7-b446-3a89f8a864d8
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
reporting-endpoints: endpoint-csp="https://events.mercadolibre.com/csp/v2/reports"
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.gstatic.com https://www.google.com https://adservice.google.com https://www.googleadservices.com https://*.mlstatic.com https://js-agent.newrelic.com https://*.hotjar.com https://*.nr-data.net https://www.google-analytics.com https://analytics.tiktok.com https://connect.facebook.net https://*.googlesyndication.com https://tags.creativecdn.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://www.datadoghq-browser-agent.com https://maps.googleapis.com https://ssl.google-analytics.com https://static.meli.com https://*.mercadolibre.com https://*.mercadopago.com; report-to endpoint-csp; report-uri https://events.mercadolibre.com/csp/reports
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 cda2fe8856474897aae1c45c7f104fba.cloudfront.net (CloudFront)
x-amz-cf-pop: TPE51-C1
x-amz-cf-id: 1dYkNjdXotV3v0Xu134pHNqkbUdsdBBBdMXy1VBR8NbFoQAGVspHIw==
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background/session/armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0?background=armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D
200 OK 78 B URL HTTP/2 www.mercadolibre.com/jms/lgz/background/session/armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0?background=armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 2126783e7c36a8e2d73ae746f0108053
d1bba7ee4d4421c0216bb93a14005e23f52fdb24
1a5bb92d3a4f3d6c5260b0cebc7fd5fc9da5afc7dbba4716771abbb64922fcce
GET /jms/lgz/background/session/armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0?background=armor.fcb27b65b4fc5be0bdec1bfb8db1234591a3d96c24d9d5566c125560c65979650ce4e0f293b755d3db1efaa248f6f62fd7fd4c5abf210424f16b5d48b1ae23887b10d345688d1ebc6bf43822acb90871495839134ee14c383f124ac900dc5726.4c05647ae56006759ebb466b9caf5ad0&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 78
date: Sat, 01 Apr 2023 04:25:38 GMT
server: Tengine
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-request-id: 183e71a7-b5fe-4970-89b0-2006e29ed582
x-trace-digest-keys: x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-33,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-trace-source: fury_app
x-trace-digest-33: RKUlCAIzB6HC3rNQN9MT8mp2RSualdzxT172r/i6UM5Xg8UxdtqyF1nabS2iwaql
x-b3-sampled: 0
x-request-device-id: 183e71a7-b5fe-4970-89b0-2006e29ed582
x-meli-trace-bu: mercadolibre
x-b3-spanid: 6cd592d2f9ad8a48
x-b3-traceid: 6cd592d2f9ad8a48
x-meli-trace-platform: /web/desktop
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-meli-trace-site: UNKNOWN
x-transaction-name: save_js_profiling
set-cookie: _d2id=183e71a7-b5fe-4970-89b0-2006e29ed582-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 31 Mar 2024 04:25:38 GMT
dsid=baebff11-cf8d-48cc-b21f-57544242feab-1680323138189;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
edsid=2db23cb0-bb9d-438d-9572-74029164572f-1680323138189;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
x-envoy-upstream-service-time: 10
x-d2id: 183e71a7-b5fe-4970-89b0-2006e29ed582
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
reporting-endpoints: endpoint-csp="https://events.mercadolibre.com/csp/v2/reports"
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.gstatic.com https://www.google.com https://adservice.google.com https://www.googleadservices.com https://*.mlstatic.com https://js-agent.newrelic.com https://*.hotjar.com https://*.nr-data.net https://www.google-analytics.com https://analytics.tiktok.com https://connect.facebook.net https://*.googlesyndication.com https://tags.creativecdn.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://www.datadoghq-browser-agent.com https://maps.googleapis.com https://ssl.google-analytics.com https://static.meli.com https://*.mercadolibre.com https://*.mercadopago.com; report-to endpoint-csp; report-uri https://events.mercadolibre.com/csp/reports
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 cda2fe8856474897aae1c45c7f104fba.cloudfront.net (CloudFront)
x-amz-cf-pop: TPE51-C1
x-amz-cf-id: kRUzkC7YN9OpWNtwDH2nS9JWUvf5BpU4hD0D4Tg0X_t3mV5C_3tfBA==
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background/session/armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d?background=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D
200 OK 78 B URL HTTP/2 www.mercadolibre.com/jms/lgz/background/session/armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d?background=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 2126783e7c36a8e2d73ae746f0108053
d1bba7ee4d4421c0216bb93a14005e23f52fdb24
1a5bb92d3a4f3d6c5260b0cebc7fd5fc9da5afc7dbba4716771abbb64922fcce
GET /jms/lgz/background/session/armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d?background=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 78
date: Sat, 01 Apr 2023 04:25:38 GMT
server: Tengine
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-request-id: 7c41ee86-60e0-41b2-80a3-636c551d9a73
x-trace-digest-32: PRGM73OgpFx3nRU+92wPe9rbf9O4rsOam1GkFLLh3/0YFcCPuADDhpO3Tj2ZjzjE
x-trace-digest-keys: x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-32,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-trace-source: fury_app
x-b3-sampled: 0
x-request-device-id: 7c41ee86-60e0-41b2-80a3-636c551d9a73
x-meli-trace-bu: mercadolibre
x-b3-spanid: dca9a0f2d979705e
x-b3-traceid: dca9a0f2d979705e
x-meli-trace-platform: /web/desktop
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-meli-trace-site: UNKNOWN
x-transaction-name: save_js_profiling
set-cookie: _d2id=7c41ee86-60e0-41b2-80a3-636c551d9a73-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 31 Mar 2024 04:25:38 GMT
dsid=9125dbd6-841c-4e32-9a96-4ce049bc7c88-1680323138189;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
edsid=40e02b26-6fcd-42f9-93f8-582405630c2d-1680323138189;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
x-envoy-upstream-service-time: 15
x-d2id: 7c41ee86-60e0-41b2-80a3-636c551d9a73
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
reporting-endpoints: endpoint-csp="https://events.mercadolibre.com/csp/v2/reports"
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.gstatic.com https://www.google.com https://adservice.google.com https://www.googleadservices.com https://*.mlstatic.com https://js-agent.newrelic.com https://*.hotjar.com https://*.nr-data.net https://www.google-analytics.com https://analytics.tiktok.com https://connect.facebook.net https://*.googlesyndication.com https://tags.creativecdn.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://www.datadoghq-browser-agent.com https://maps.googleapis.com https://ssl.google-analytics.com https://static.meli.com https://*.mercadolibre.com https://*.mercadopago.com; report-to endpoint-csp; report-uri https://events.mercadolibre.com/csp/reports
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 cda2fe8856474897aae1c45c7f104fba.cloudfront.net (CloudFront)
x-amz-cf-pop: TPE51-C1
x-amz-cf-id: zHRVpA1sQjD_5fxLYvO1cxe7s68ce2zQxIzVSDWg7ufM3zRtvXiRDQ==
X-Firefox-Spdy: h2
bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1228.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=6630&ck=0&s=1625b831f0710f69&ref=https://seguro.pagmenos.shop/checkout/address&ap=168&be=3069&fe=2897&dc=498&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1680323129877,%22n%22:0,%22f%22:2616,%22dn%22:2616,%22dne%22:2616,%22c%22:2616,%22s%22:2616,%22ce%22:2616,%22rq%22:2618,%22rp%22:3042,%22rpe%22:3260,%22dl%22:3048,%22di%22:3475,%22ds%22:3565,%22de%22:3628,%22dc%22:5962,%22l%22:5962,%22le%22:6161%7D,%22navigation%22:%7B%7D%7D&fcp=3464&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken
200 OK 49 B URL HTTP/1.1 bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1228.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=6630&ck=0&s=1625b831f0710f69&ref=https://seguro.pagmenos.shop/checkout/address&ap=168&be=3069&fe=2897&dc=498&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1680323129877,%22n%22:0,%22f%22:2616,%22dn%22:2616,%22dne%22:2616,%22c%22:2616,%22s%22:2616,%22ce%22:2616,%22rq%22:2618,%22rp%22:3042,%22rpe%22:3260,%22dl%22:3048,%22di%22:3475,%22ds%22:3565,%22de%22:3628,%22dc%22:5962,%22l%22:5962,%22le%22:6161%7D,%22navigation%22:%7B%7D%7D&fcp=3464&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken
IP
File type ASCII text, with no line terminators
Hash ada33e5b8877e743ff658bf4bfa1867c
5a78662243dac43c0ee48bcb7e05a536b84c2e38
dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82
GET /1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1228.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=6630&ck=0&s=1625b831f0710f69&ref=https://seguro.pagmenos.shop/checkout/address&ap=168&be=3069&fe=2897&dc=498&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1680323129877,%22n%22:0,%22f%22:2616,%22dn%22:2616,%22dne%22:2616,%22c%22:2616,%22s%22:2616,%22ce%22:2616,%22rq%22:2618,%22rp%22:3042,%22rpe%22:3260,%22dl%22:3048,%22di%22:3475,%22ds%22:3565,%22de%22:3628,%22dc%22:5962,%22l%22:5962,%22le%22:6161%7D,%22navigation%22:%7B%7D%7D&fcp=3464&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 49
date: Sat, 01 Apr 2023 04:25:38 GMT
content-type: text/javascript
cross-origin-resource-policy: cross-origin
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: *
x-served-by: cache-bma1683-BMA
api.mercadopago.com/v1/device_sessions/anonymous_device_session
200 OK 0 B URL HTTP/2 api.mercadopago.com/v1/device_sessions/anonymous_device_session
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/device_sessions/anonymous_device_session HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://seguro.pagmenos.shop/
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:38 GMT
content-type: application/json; charset=utf-8
content-length: 0
access-control-allow-origin: https://seguro.pagmenos.shop
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-allow-headers: content-type
access-control-max-age: 86400
x-request-id: 9b15e59c-6061-423a-8b54-06884298b101
x-trace-digest-87: bRD7PbXe5aqgHFH04wQew+czWQe5MuemzbE8fZbvcoR/Hj3p4AT8WuWAyQChzsMA
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-87,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: 709ec69fbf7f8f3c
x-b3-traceid: 709ec69fbf7f8f3c
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
timing-allow-origin: *
X-Firefox-Spdy: h2
api.mercadopago.com/v1/device_sessions/anonymous_device_session
200 OK 337 B URL HTTP/2 api.mercadopago.com/v1/device_sessions/anonymous_device_session
IP
File type JSON data\012- , ASCII text, with very long lines (337), with no line terminators
Hash 28752da1cd85a97e10e48f37fa03c706
cdac02be083fba0cc4465884f64adf4289883188
538705eb42dd8008768eb5bdb0c2d4fdf1f65d0987fe698d18b705e5b25e0bd4
POST /v1/device_sessions/anonymous_device_session HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 98
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:38 GMT
content-type: application/json; charset=utf-8
content-length: 337
access-control-allow-origin: https://seguro.pagmenos.shop
x-request-id: ffeac1d0-2ba2-4ab4-88a9-917dc3edfb9a
x-trace-digest-53: XE/gEe9ZbIDIiiwRySRURtsPO05N+551dj/vND/R70+wNU3sXblLN9Zkh1d5bCXQ
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-53,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: 1c42d8cbda80cc90
x-b3-traceid: 1c42d8cbda80cc90
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: Content-Type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
X-Firefox-Spdy: h2
bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1228.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=7685&ck=0&s=1625b831f0710f69&ref=https://seguro.pagmenos.shop/checkout/address
200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1228.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=7685&ck=0&s=1625b831f0710f69&ref=https://seguro.pagmenos.shop/checkout/address
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1228.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=7685&ck=0&s=1625b831f0710f69&ref=https://seguro.pagmenos.shop/checkout/address HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1319
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 24
date: Sat, 01 Apr 2023 04:25:39 GMT
content-type: image/gif
access-control-allow-origin: https://seguro.pagmenos.shop
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
access-control-allow-credentials: true
x-served-by: cache-bma1683-BMA
www.mercadolibre.com/jms/lgz/background?dps=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d
200 OK 8.1 kB URL HTTP/2 www.mercadolibre.com/jms/lgz/background?dps=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1025)
Hash 77da2c16b217f2f1c32387c4b1512ded
a70555c724f9913b6c41d90dc3a7cd6d0a4c9458
42a712c031df354a6f808e0e1af185447a4e26c784007633647ceb07cbba496f
GET /jms/lgz/background?dps=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 8082
date: Sat, 01 Apr 2023 04:25:39 GMT
server: Tengine
set-cookie: _d2id=8084620b-39d7-4b84-8ac3-a6787f201713-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 31 Mar 2024 04:25:39 GMT
x-request-id: 8084620b-39d7-4b84-8ac3-a6787f201713
x-trace-digest-84: fAxSQ5ZsEwQNOzFDY8m6bXQpKw58+21lYIwbak/C2lDsrXZCt20FSv6BPeA/Brhg
x-trace-digest-keys: x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-84,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-trace-source: fury_app
x-b3-sampled: 0
x-request-device-id: 8084620b-39d7-4b84-8ac3-a6787f201713
x-meli-trace-bu: mercadolibre
x-b3-spanid: 75f7b1b9cae93290
x-b3-traceid: 75f7b1b9cae93290
x-meli-trace-platform: /web/desktop
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-meli-trace-site: UNKNOWN
access-control-allow-origin: *
x-transaction-name: cross_domain_profiler
x-envoy-upstream-service-time: 1
x-d2id: 8084620b-39d7-4b84-8ac3-a6787f201713
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
reporting-endpoints: endpoint-csp="https://events.mercadolibre.com/csp/v2/reports"
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.gstatic.com https://www.google.com https://adservice.google.com https://www.googleadservices.com https://*.mlstatic.com https://js-agent.newrelic.com https://*.hotjar.com https://*.nr-data.net https://www.google-analytics.com https://analytics.tiktok.com https://connect.facebook.net https://*.googlesyndication.com https://tags.creativecdn.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://www.datadoghq-browser-agent.com https://maps.googleapis.com https://ssl.google-analytics.com https://static.meli.com https://*.mercadolibre.com https://*.mercadopago.com; report-to endpoint-csp; report-uri https://events.mercadolibre.com/csp/reports
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 cda2fe8856474897aae1c45c7f104fba.cloudfront.net (CloudFront)
x-amz-cf-pop: TPE51-C1
x-amz-cf-id: 56A4cs8SZ7DdTG-MRvnwAYX5-bhrinFo-IQe4JgZdMDpWx-VdI5AZQ==
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background/session/armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiJjOTcwYjljYi0zZGVmLTRiNzItYmZiNi00YjYwZTZmMmI2YmMtMTY4MDMyMzEzODE4NCIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiZmJhOGM2YTAtMTJjOC00NjU4LTk4MzAtZjllMDNhODJlOWQwLTE2ODAzMjMxMzgxODQifQ%3D%3D%22%7D&callback=dp_jsonp.process
200 OK 21 B URL HTTP/2 www.mercadolibre.com/jms/lgz/background/session/armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiJjOTcwYjljYi0zZGVmLTRiNzItYmZiNi00YjYwZTZmMmI2YmMtMTY4MDMyMzEzODE4NCIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiZmJhOGM2YTAtMTJjOC00NjU4LTk4MzAtZjllMDNhODJlOWQwLTE2ODAzMjMxMzgxODQifQ%3D%3D%22%7D&callback=dp_jsonp.process
IP
File type ASCII text, with no line terminators
Hash 827cdd4c85bf2b05c56dc2c4d0f93d3a
7281ac3916b761b1e2016d0544bad0f8719f5efc
4abde68cc3ebcb8653668a78058b74a9a67cc03fa87b142616b4041e4f0971e1
GET /jms/lgz/background/session/armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiJjOTcwYjljYi0zZGVmLTRiNzItYmZiNi00YjYwZTZmMmI2YmMtMTY4MDMyMzEzODE4NCIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiZmJhOGM2YTAtMTJjOC00NjU4LTk4MzAtZjllMDNhODJlOWQwLTE2ODAzMjMxMzgxODQifQ%3D%3D%22%7D&callback=dp_jsonp.process HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mercadolibre.com/jms/lgz/background?dps=armor.1fb498ae291b9b17ba9bba86cf2d0999291bb896f6eb7295324093b055eb4772072c925c9f7b5da58a169d8e06565f24fdbeeffd3eac3ed09864c1dcdcda753f74eb3b178d20dcbdb05faccc50c593abee9470bc3d0cabfbfa050d782da69d05.2305617b3145a285410686c1e09d165d
Connection: keep-alive
Cookie: dsid=9125dbd6-841c-4e32-9a96-4ce049bc7c88-1680323138189; edsid=40e02b26-6fcd-42f9-93f8-582405630c2d-1680323138189
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 21
date: Sat, 01 Apr 2023 04:25:39 GMT
server: Tengine
set-cookie: _d2id=a21c81cb-e99a-42ad-ad84-b24f3790c253-n; Path=/; Domain=.mercadolibre.com; Expires=Sun, 31 Mar 2024 04:25:39 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-request-id: a21c81cb-e99a-42ad-ad84-b24f3790c253
x-trace-digest-keys: x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-17,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-trace-source: fury_app
x-b3-sampled: 0
x-request-device-id: a21c81cb-e99a-42ad-ad84-b24f3790c253
x-meli-trace-bu: mercadolibre
x-b3-spanid: bd5b7a1c53230729
x-b3-traceid: bd5b7a1c53230729
x-meli-trace-platform: /web/desktop
x-trace-digest-17: yIps8tdAE6VxQV3Ql6xz1m866GGMVXetil0XYbN1wyycio1A66PmI+6nEUh7/0J1
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-meli-trace-site: UNKNOWN
x-transaction-name: save_cross_domain_profiling
x-envoy-upstream-service-time: 2
x-d2id: a21c81cb-e99a-42ad-ad84-b24f3790c253
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
reporting-endpoints: endpoint-csp="https://events.mercadolibre.com/csp/v2/reports"
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.gstatic.com https://www.google.com https://adservice.google.com https://www.googleadservices.com https://*.mlstatic.com https://js-agent.newrelic.com https://*.hotjar.com https://*.nr-data.net https://www.google-analytics.com https://analytics.tiktok.com https://connect.facebook.net https://*.googlesyndication.com https://tags.creativecdn.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://www.datadoghq-browser-agent.com https://maps.googleapis.com https://ssl.google-analytics.com https://static.meli.com https://*.mercadolibre.com https://*.mercadopago.com; report-to endpoint-csp; report-uri https://events.mercadolibre.com/csp/reports
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 cda2fe8856474897aae1c45c7f104fba.cloudfront.net (CloudFront)
x-amz-cf-pop: TPE51-C1
x-amz-cf-id: 5iIaqngW4HPcQZ1Y_2rF2ChVa82QpyreQQsxDFkf2K1lsURMO3f_JQ==
X-Firefox-Spdy: h2
seguro.pagmenos.shop/checkout/payment?cart_token=c30a6ee4-d02e-11ed-b359-02963cbe165e-64278c85bb33f&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=2807d8e2e5e5402cb9ffc00e12ab202b44848db4&customerToken=080ab880-d02f-11ed-b2b4-69751864b75c
302 Found 0 B URL HTTP/2 seguro.pagmenos.shop/checkout/payment?cart_token=c30a6ee4-d02e-11ed-b359-02963cbe165e-64278c85bb33f&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=2807d8e2e5e5402cb9ffc00e12ab202b44848db4&customerToken=080ab880-d02f-11ed-b2b4-69751864b75c
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /checkout/payment?cart_token=c30a6ee4-d02e-11ed-b359-02963cbe165e-64278c85bb33f&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=2807d8e2e5e5402cb9ffc00e12ab202b44848db4&customerToken=080ab880-d02f-11ed-b2b4-69751864b75c HTTP/1.1
Host: seguro.pagmenos.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6InJ5NlJhdXhrdnhlMllRb2pIdkE2Nmc9PSIsInZhbHVlIjoiVk9xU0Z4NHA0bHBMVkk4cEFjaXZsYWhtMHlNR2V3XC9jVVAwRXFySEt0TEZKWXR4K3ZWV240bGh4Q05XYUVLVVwvZjZzZjZDRW5zdHVlWVZMSkhqYkdFQT09IiwibWFjIjoiZjE0MTAxOGM4ZjU4NzUyZWFkODdjODQ2ZWYzYmZiZTZkZDU0NGUzZWRlODRjYTRkNTk1NTNiZWUxYjc0Y2RlNiJ9; bubbstore_checkout=eyJpdiI6ImZ3eXFZQTd2WVVuTEJMZ0RLREhaZVE9PSIsInZhbHVlIjoiZnBuZFwvakFCQ1FNaW1ZdUtUa2VIaENXSVFMUDlWRlJwM1J1b1V0VDRxYkNNU2xpNHp4SlZqVUpMdW5wVFNHSFN4UG42dTJ4TmJpZkpvQ042dTRRSllnPT0iLCJtYWMiOiJhZmY4Mzk4ZjE5Y2U3N2E0ODhhYWZkODY1NGM4NGY4MDNjMTZlZWFkMGQ1Yzc4YTY4NmIyMjQ1ZTMwYTk1NDI4In0%3D; pagmenosshop_cart=eyJpdiI6ImMwUjNBZUdRR3NyS0JjN3lQK1VPNmc9PSIsInZhbHVlIjoidlpuT0h4THJuUWJLeVNRSFk0UkhZUVwvWFJ0YTdpQklNOGVrK2NaWDZuZ1VqMjhFNUZ2S1ZFQXBhTWMxbGdxZDB4T2c5cW1XaGVmNk5RMHY1MXlZQzN3PT0iLCJtYWMiOiJhZWM0ODM2ZDEwNTBiNjI2NjcwODU5NDY5M2UwNjk1ZTY0ZjFhZmJkYTkwOTdmZWMzZjhjYzY4Nzc4ZTEzZWNmIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:25:33 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.pagmenos.shop/checkout/address
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjJCSFQxM0lBUVVcLzArTTd3SkNxek13PT0iLCJ2YWx1ZSI6Im9XWDdkdUdocHJCbDVHTnVkdnJDVk41M0owVU1ZNG1lanJvS3BoWWNsbnpoejE2SzhYWUVpY0ZjOWR5TWJCS3krUU5JWFRGNVc2UlFVTEVzakVIKzl3PT0iLCJtYWMiOiI4MTZiZjcxNDMwMGZiNTg2ODdjN2NiZTdiOGFjOWNiOGM2YWViNzg4YzFiZmEwMGRhMTcyYjdjZjgzYjU2MWFmIn0%3D; expires=Sat, 01-Apr-2023 07:25:33 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkI1a1p0ejRBbUdWWlM1UEsrVEVUaVE9PSIsInZhbHVlIjoiQ0RSNXVjbllVM0tQdjVnRlhuVW5LQ0JHczhPQWl2MnlFTVEyMmJ0SEpoa2hXNFYzOTNXVGhWbXp0NlU1ZGhEQXlFdkJPSmFhUDhsVHZqQzBPZWhhQXc9PSIsIm1hYyI6IjRmN2E1NGNlZWM1MzUyZDIyYWY3MTVlMjMyYjZiZTdiYzIwNjc2NGM2MWY5NDRmNjM3ZGIzOTE2NDM0NjU5ZWIifQ%3D%3D; expires=Sat, 01-Apr-2023 07:25:33 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=50fc120b1e5840a4e1d3d506db935a8c
200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=50fc120b1e5840a4e1d3d506db935a8c
IP
GET /checkout/build/mix/assets/css/app.css?id=50fc120b1e5840a4e1d3d506db935a8c HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:34 GMT
content-type: text/css
x-amz-id-2: qiq3gCwHJLzAAP8CGiTVDtT0i0DpK0becdue1QaXEsodX97OJpHyRdfIwvGYExbIDrJxxYcPFzc=
x-amz-request-id: D3RJ1VH03SZNEVAX
last-modified: Thu, 09 Feb 2023 12:18:09 GMT
x-amz-version-id: .RccoNUxfU6bKyY60V3uGEvmyetqac4x
etag: W/"50fc120b1e5840a4e1d3d506db935a8c"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RrqfOqsZfpTR0l%2F0uP9n5mCPqaBFOkyl2hsev016RRfaCrXVBgukhpxoSUxXamC9TGLoEbcuXOxN%2B1lM7s41BxniNzqSdFQ0TyoMpxjSxOX%2BLldniRBz7q9kKGSDBr2JeqQJkwvPaOrN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e11a67adfb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
seguro.pagmenos.shop/e/t
200 OK 0 B IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.pagmenos.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjhmMDhhMTBkMWI2ZGJmYjciLCJ0ciI6Ijc2N2NiNTkzZDlkYzhjM2MyYzdmNzg3YmRiMzk1MDkwIiwidGkiOjE2ODAzMjMxMzM0Njl9fQ==
traceparent: 00-767cb593d9dc8c3c2c7f787bdb395090-8f08a10d1b6dbfb7-01
tracestate: 2935249@nr=0-1-2935249-1134170823-8f08a10d1b6dbfb7----1680323133469
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 368
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6InlNc3dzQVJ2dDU2NU95M2I0b015UGc9PSIsInZhbHVlIjoiaSt6WnBvSkoya3BXNHlZM2FcLzZOeTE3NDNpdzNQRktOYXhcL21DRTZReTdjY0xCWGVyV3RtUndCaTN2dlBrQ0tiamFTV3ozaStvZ1kwaEdQK0JoMnlDdz09IiwibWFjIjoiYzc5ZDBlYWM3NmEwMmRhMjRlZmI3ZDYyN2UxMzgzYmYzMTZhMDAyZDRjM2U1MzY2MGUwZTMwZjA3NzhmNzJmNSJ9; bubbstore_checkout=eyJpdiI6Imd6YTBVNUVrSjFPTFhJQUJQK0l4V1E9PSIsInZhbHVlIjoiUitSM2MxUzJGeGJrdjRwQ3lnc3hsM0p4NUlhZWtIRmVrSUdYZWZjRlwvUGg1bUFNSGhTTktaYUxFcmRtWGgyM2E1TjZnclBrZmRrR0E0S1dsbEJwckJ3PT0iLCJtYWMiOiIyOWE0ZWFmODAxZWNjY2MzOTM4M2I2MjYwNTlmNjgzYTc1MzA1YjA3MDI3OGJjNWI1MTEyYzEzMzNiN2ZhNmQwIn0%3D; pagmenosshop_cart=eyJpdiI6ImMwUjNBZUdRR3NyS0JjN3lQK1VPNmc9PSIsInZhbHVlIjoidlpuT0h4THJuUWJLeVNRSFk0UkhZUVwvWFJ0YTdpQklNOGVrK2NaWDZuZ1VqMjhFNUZ2S1ZFQXBhTWMxbGdxZDB4T2c5cW1XaGVmNk5RMHY1MXlZQzN3PT0iLCJtYWMiOiJhZWM0ODM2ZDEwNTBiNjI2NjcwODU5NDY5M2UwNjk1ZTY0ZjFhZmJkYTkwOTdmZWMzZjhjYzY4Nzc4ZTEzZWNmIn0%3D; cart_auth_331138566=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%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:35 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IkZzeVRObnZaSXVcL2tUdW4rRk9wNGZnPT0iLCJ2YWx1ZSI6ImFGczcwVFQ3UnNlWTg4Kyt5VVVYZmZPSkFNRXFsU0VDSFBRUW93akREaTZiYVNzOTBFQUVjeUdZdnpPYlZBVmpmeDduWU5zYndxZU00M3NKR1JWZDJ3PT0iLCJtYWMiOiI2NDFlZDE1YzA5M2Q2ZmRjZThkNmJmMjU1YzJjNmY1ODhmY2I2ZDI5YTE0MTcxNTM5MWJiMjQ3ZjE3MTNlNDY0In0%3D; expires=Sat, 01-Apr-2023 07:25:35 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlRHSlwvb3ZabGxaRXdhU1F1UjZhMGtnPT0iLCJ2YWx1ZSI6IlVXTzRTdFp6bDEwOVJjNHlkTkpvR0RZVGJsZ0hlbks0Z2V2WUNBXC80cFpHTTNFZU1uQmFqQXdVOVwvaHU0RkFwTEFJeTFzYm5CRmp4a29iT1FcL1ZLcVRRPT0iLCJtYWMiOiIwODE3NzViNmE5MzMxMTE3MWY4MTM3ODQyMTliZTJjNjViOGFkYzgyODkwOWY4YWM4OWI2NTljMGE1MWIzMDFmIn0%3D; expires=Sat, 01-Apr-2023 07:25:35 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApUCAoMHh5UFUMCAAJRVFUAWQMGC1YIAANQFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
api.mercadopago.com/v1/devices/widgets?referer=https%3A//seguro.pagmenos.shop
200 OK 0 B URL HTTP/2 api.mercadopago.com/v1/devices/widgets?referer=https%3A//seguro.pagmenos.shop
IP
POST /v1/devices/widgets?referer=https%3A//seguro.pagmenos.shop HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 45
Origin: https://seguro.pagmenos.shop
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:35 GMT
content-type: application/json
vary: Accept-Encoding
x-request-id: bea9938f-b671-4819-9ceb-7d2c39aa73c5
x-trace-digest-32: yCK6Kp3qmIFc1mV9oNDxEJ01JlgcdmnqLQN1w9p3M08ietNwUaMdiEUJTuqEba9q
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-32,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: 9f0b92f6b52fa7f0
x-b3-traceid: 9f0b92f6b52fa7f0
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
access-control-allow-origin: https://seguro.pagmenos.shop
access-control-allow-credentials: true
x-transaction-name: public_get_session_widget
set-cookie: profile=1680323135212;Path=/;Max-Age=220752000;HttpOnly;SameSite=none;Secure
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: Content-Type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3285671.js?sv=6
200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3285671.js?sv=6
IP
GET /c/hotjar-3285671.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 01 Apr 2023 04:25:34 GMT
cache-control: max-age=60
etag: W/c1bb4555bdfb0d9df1c589779ee82d81
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ORlypn1PVU6zHm4kvbvROunACjn4C5h_ywoyNtDrWe9x6b_VOrctBA==
age: 1
X-Firefox-Spdy: h2
www.mercadopago.com/v2/security.js
200 OK 0 B URL HTTP/2 www.mercadopago.com/v2/security.js
IP
GET /v2/security.js HTTP/1.1
Host: www.mercadopago.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
vary: Accept-Encoding
date: Sat, 01 Apr 2023 04:25:34 GMT
set-cookie: _d2id=cb6ab1f8-46ce-4bce-8321-f0b291cbeb5a-n; Path=/; Domain=.mercadopago.com; Expires=Sun, 31 Mar 2024 04:25:34 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-request-id: cb6ab1f8-46ce-4bce-8321-f0b291cbeb5a
x-trace-digest-keys: x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-77,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-trace-source: fury_app
x-trace-digest-77: Aw3nm3lavgN9lAwwPdgqmBG18YK4YyJQtQf6q8aYgAKZGilOih408twjaspISBeb
x-b3-sampled: 0
x-request-device-id: cb6ab1f8-46ce-4bce-8321-f0b291cbeb5a
x-meli-trace-bu: mercadopago
x-b3-spanid: e46fd0d176c2b496
x-b3-traceid: e46fd0d176c2b496
x-meli-trace-platform: /web/desktop
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-meli-trace-site: UNKNOWN
x-transaction-name: get_off_widget
x-d2id: cb6ab1f8-46ce-4bce-8321-f0b291cbeb5a
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
reporting-endpoints: endpoint-csp="https://events.mercadolibre.com/csp/v2/reports"
content-security-policy-report-only: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.gstatic.com https://www.google.com https://adservice.google.com https://www.googleadservices.com https://*.mlstatic.com https://js-agent.newrelic.com https://*.hotjar.com https://*.nr-data.net https://www.google-analytics.com https://analytics.tiktok.com https://connect.facebook.net https://*.googlesyndication.com https://tags.creativecdn.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://www.datadoghq-browser-agent.com https://maps.googleapis.com https://ssl.google-analytics.com https://static.meli.com https://*.mercadolibre.com https://*.mercadopago.com; report-to endpoint-csp; report-uri https://events.mercadolibre.com/csp/reports
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QOaHyDkN3k2xuQOJGnyWNlpu-nLS0LCxnVYFrJwz1ThoCFWLAxEpPw==
X-Firefox-Spdy: h2
cdn.yampi.io/ana/ana.min.js?t=1680393600000
200 OK 0 B URL HTTP/2 cdn.yampi.io/ana/ana.min.js?t=1680393600000
IP
GET /ana/ana.min.js?t=1680393600000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.pagmenos.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:35 GMT
content-type: application/javascript
x-amz-id-2: 3o0/Ni2WaFYMZb1n0j/Yrvsj9ECtIu/cPlSXKRtP6u8FOehkOdgSkPnIQdkMhpTiNPIz/x0dtpI=
x-amz-request-id: APEW1RETVBGWVPK3
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
expires: Sun, 31 Mar 2024 04:25:35 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e11a86a630b06-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
170.82.174.30
54.230.111.79
104.18.14.227
95.101.11.115
157.240.205.11