| firefox.settings.services.mozilla.com/v1/ |  143.204.55.27 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash2d12f67fe57a87e7366b662d153a5582 d7b02d81cc74f24a251d9363e0f4b0a149264ec1 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 07:29:42 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: u_rAA_BhR1d3JX0SVKzYy3wwGbUjQspyhHaMacMDp7cRBMt81CTHHw==
Age: 1531
|
|
| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9955bda9c9ef64bc5700a14af0bae25e 8de7b7469e905af0374bdfcc3006bbb844f13e94 1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3223
Expires: Tue, 04 Oct 2022 08:48:56 GMT
Date: Tue, 04 Oct 2022 07:55:13 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash74134730f642b6f6dfeca3ecc61a329e 668914cc93cceb123d199a45df13ad764704fa84 d681a4c2e20a6019c7e2d980cbfa77b34db9356899099296c3b8b4263ca5fb5f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D681A4C2E20A6019C7E2D980CBFA77B34DB9356899099296C3B8B4263CA5FB5F"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8493
Expires: Tue, 04 Oct 2022 10:16:46 GMT
Date: Tue, 04 Oct 2022 07:55:13 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: urKw4XgkCZKHbdAszQw1TPgmYxVS7kXVB8fjMvgwehT5RbIvEInr+EF1aK8wkIcqH6mkubh63cs=
x-amz-request-id: FVPGZ5FKQKFZH53D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 04 Oct 2022 07:51:12 GMT
age: 241
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 07:55:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| seguro.missrosaboutique.com/ |  170.82.174.30 | 301 Moved Permanently | 134 B |
URL HTTP/1.1seguro.missrosaboutique.com/ IP170.82.174.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET / HTTP/1.1
Host: seguro.missrosaboutique.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Oct 2022 07:55:13 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.missrosaboutique.com:443/
X-GoCache-CacheStatus: BYPASS
Server: gocache
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.27 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 07:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 08:26:00 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mwZOgbMdyfawIIeBGU6aFkrXqIFc1KKsVPiHq4F_uFWKT3SIO9gYsQ==
Age: 1541
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashde17753d6a52b10d1138bde2bd48a481 9456f24de3f699058c1c0686e3d95aa146fa60d5 ade61f70b0d657a1d9de604ebdd256616bc0f24da75c7a9d21e2075f460715df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ADE61F70B0D657A1D9DE604EBDD256616BC0F24DA75C7A9D21E2075F460715DF"
Last-Modified: Mon, 03 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21554
Expires: Tue, 04 Oct 2022 13:54:28 GMT
Date: Tue, 04 Oct 2022 07:55:14 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash321fa9a78e31dcb66601ac5890bfba73 c325580db79bde6fd00d2d0c7e3f675e4c0046bb 83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1565
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:14 GMT
Last-Modified: Tue, 04 Oct 2022 07:29:09 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 54.148.242.254 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.148.242.254:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XslXzEWN9pzRXw1MioWRTQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9nmLcSWBmqg7CR0L88b8viaVnIg=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashb45b15bb651cc185ea82d91a51f06b5a 44987727be72bb12b4e4fc4fac50145835512750 f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash9e40b2c69615f45f2bc898334ab3e343 6a569648ed10564e126d3bbf3f91352e6b3f6d4f 4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashce7a8018d4dcdd0e8aad352eb2d62d05 a4ce1ed2a7a94173bafb282ebb2d116b9dfeb48c b0e57fc45119f58a881a44b188e3543eaa590cde9a3320a02e48cae44774ab02
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2350
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:15 GMT
Last-Modified: Tue, 04 Oct 2022 07:16:05 GMT
Server: ECS (amb/6BA7)
X-Cache: HIT
Content-Length: 471
|
|
| www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC | 142.250.74.164 | 200 OK | 586 B |
URL HTTP/2www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC IP142.250.74.164:0
File typeASCII text, with very long lines (884), with no line terminators Hash8558fc2f84b5a2732c97ab33fa0f02bf 64ba1fa97e06926b2a7d79ecc8fd502db7e67bfd a7bac74c41d2ca93a5521047f33d1e581232bea1c4958c2470458a41589a989c
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 04 Oct 2022 07:55:15 GMT
date: Tue, 04 Oct 2022 07:55:15 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashff433c9569a3557d806b1480aeafece9 20bbd46383b85326837f45290ff87df708b3b310 e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 04 Oct 2022 08:33:34 GMT
Date: Tue, 04 Oct 2022 07:55:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashff433c9569a3557d806b1480aeafece9 20bbd46383b85326837f45290ff87df708b3b310 e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 04 Oct 2022 08:33:34 GMT
Date: Tue, 04 Oct 2022 07:55:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashff433c9569a3557d806b1480aeafece9 20bbd46383b85326837f45290ff87df708b3b310 e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 04 Oct 2022 08:33:34 GMT
Date: Tue, 04 Oct 2022 07:55:15 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg | 34.120.237.76 | 200 OK | 6.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash206fb65e75dbadf119512f71e0b78402 58ff0bf8ce7528b303d28bab01a80ad721705569 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 11542
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashff433c9569a3557d806b1480aeafece9 20bbd46383b85326837f45290ff87df708b3b310 e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 04 Oct 2022 08:33:34 GMT
Date: Tue, 04 Oct 2022 07:55:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashff433c9569a3557d806b1480aeafece9 20bbd46383b85326837f45290ff87df708b3b310 e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 04 Oct 2022 08:33:34 GMT
Date: Tue, 04 Oct 2022 07:55:15 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481896f6-cdf2-442f-aea2-dfa2c7c45f77.png | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481896f6-cdf2-442f-aea2-dfa2c7c45f77.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd5745f8e3528f481ae2acf05b4abd3d0 d830b94bea3b5698e5192a7ea05f90b25b2f9cc9 313e11915f0869a608c830637b9dfd236ff28a8fb3354c3cc8748816b0ee18b0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481896f6-cdf2-442f-aea2-dfa2c7c45f77.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8738
x-amzn-requestid: ede4db78-f2ab-4226-a855-dc7373978dfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTFrBoAMFR3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-2776543e774f0016329ddade;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: c9bu34_KooZB6Z4d8xXGnsd9jZ7lPl3yIo9II1Dm_2YVId3l9-7n-w==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:46 GMT
age: 35969
etag: "d830b94bea3b5698e5192a7ea05f90b25b2f9cc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F840ae91d-bdbe-4236-ad14-27b04e390b6a.jpeg | 34.120.237.76 | 200 OK | 2.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F840ae91d-bdbe-4236-ad14-27b04e390b6a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfb7d0bdcd7cf60e39ee64d92f5694384 0f0c8f45a22563c3c87ab7ec6279fabc96cdfb1f a6dd1fade6b47e539dd42ed07d2cf58179db10fe946809f201889a1f9c4ef282
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F840ae91d-bdbe-4236-ad14-27b04e390b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2761
x-amzn-requestid: 00090151-da40-48e8-98f0-a0c579fe6d1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI_EgdIAMFc0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556c-06ceb1750213c44130848bf2;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -VI34uA9q6D2_lYs0LtkmZOKZrBKQsYX9plMuw8zwnCt_3b2ZZ1Uxg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:46 GMT
age: 35969
etag: "0f0c8f45a22563c3c87ab7ec6279fabc96cdfb1f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap | 142.250.74.10 | 200 OK | 1.0 kB |
URL HTTP/2fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap IP142.250.74.10:0
Hash83bd3c56be412102fd7ea3c0e4ebbba3 5fa78406e375b55aa9e9a3f176b24b403156575c b6ac627853f7eb9cf621d4c5ea7fb4c4cab730f904dbc0008f188b71c0f6840e
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 07:55:15 GMT
date: Tue, 04 Oct 2022 07:55:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fcdf5f2-fb82-429f-a6f0-8f79d8aa9106.jpeg | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fcdf5f2-fb82-429f-a6f0-8f79d8aa9106.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash50556325e5a38a5dd7802b1391815bcb cf021352d993967e78552b275424ff139e4ef66c 96fd2e848a45d071e334a8d08c8b89215f80f01f947af6da2efaee72dd16914c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fcdf5f2-fb82-429f-a6f0-8f79d8aa9106.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9455
x-amzn-requestid: c7e1aa21-0afd-4329-a886-ca52e1a30c7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqJXHLUIAMFU1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5708-1905710834041431314b11be;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:41:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: D-2NszpZ31D2YAbZRcPdqN3zZ2ScANt6bokfSbANgnsXBoTF2d__AQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:08:09 GMT
age: 35226
etag: "cf021352d993967e78552b275424ff139e4ef66c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd8c08f8066cc732de8befd6ccd629a95 22aab05208a01ae5def4d63dc145085630f57bcb f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 35961
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| icons.yampi.me/svg/card-amex.svg | 104.26.3.88 | 200 OK | 1.2 kB |
URL HTTP/2icons.yampi.me/svg/card-amex.svg IP104.26.3.88:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (856) Hashc279cde18322d3526c2c1f7f2654c7b3 13173c32d1eb7fdcb79187258db69e66b5d7905b 1d099234e69ae5cde5d495e2995d144cb016f272c118f61fd299589c87b04f9d
GET /svg/card-amex.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-5f3"
expires: Mon, 03 Oct 2022 09:15:06 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 91A6:4F1E:78598A:A211A7:6320B35F
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.024635,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: 2f17251d5b4f449d5b870863801562998cd0f600
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l3pTGJqm%2BoV3CDzq7Ui4aCQg1goZyZ9xqeCoVgwarbq94LFWmNtvOKO9w%2F8bzZy2F%2BWQfYcuHtcNHdM5QRM0V6EDxiHpJz9ZT44kQwTuoAome6wJi8EVLAkd83brlNhO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c5aaeaa82b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92f8209d-8dc3-45f5-bfb8-151edb23e30c.jpeg | 34.120.237.76 | 200 OK | 5.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92f8209d-8dc3-45f5-bfb8-151edb23e30c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash126f1f4538e5e4228a4f36d3b02e9d62 16f2fe758de4ebf7d654cb9669c73f030eb1fdef 594210beaabbc35a37d5d648836277f950e46b2d4c2eab2abde2d33beafdff37
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92f8209d-8dc3-45f5-bfb8-151edb23e30c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4996
x-amzn-requestid: 2f13b6ea-4426-4b3f-81be-5d8ca0278ce7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcrokFkroAMF0XA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5969-421b4993676a68df2b43ad65;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:51:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0s9K75q7TzjbFBJ3vviHLcItPRb6CP2URJRYs2k9JmppyWHKvzv5hg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 35056
etag: "16f2fe758de4ebf7d654cb9669c73f030eb1fdef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.158 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.158:0
Hashe6de140acd5b9e030623fd130be58e06 f82a81719e75823e58b5b71768885dd347a0a513 8fa06434dcc0c6e59aa09d0cbd36cc5dec7a39fbda7ff6b60526be47f61badbb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 07:55:16 GMT
Last-Modified: Tue, 04 Oct 2022 06:16:11 GMT
Server: ECS (bsa/EB18)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GPJag1VyS5g98a5bxUVvuy7gWEInclboN_PQDxWsT_EIlom9QLXMQA==
Age: 5945
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash0ac04f7c449093fff4f846a7ae56cd4f 50aeb5664545a0dec4173920a274e906bcbcdf6f 18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 | 216.58.207.195 | 200 OK | 34 kB |
URL HTTP/2fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data Hash848cd2ecd011428969dc6b90431bc482 6b1a7b562a56bd54510e0f6f95e26babca331a1b 981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.missrosaboutique.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:08:19 GMT
expires: Tue, 03 Oct 2023 21:08:19 GMT
cache-control: public, max-age=31536000
age: 38817
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash0ac04f7c449093fff4f846a7ae56cd4f 50aeb5664545a0dec4173920a274e906bcbcdf6f 18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdn.yampi.me/jquery/jquery.js | 104.26.3.88 | 200 OK | 35 kB |
URL HTTP/2cdn.yampi.me/jquery/jquery.js IP104.26.3.88:0
File typeASCII text, with very long lines (32060) Hasha685f2b325a3db7cf5f9c38c4cc02b71 115e1947d21e2bee47dd0aefb119ea4b2fa9883c df1e47dc741ee308c5f5b0d6c8e8ac7966f4ceb6e8fdbb52fd0e9ad783d68ff8
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: application/javascript
x-amz-id-2: ObJdaZ5mpmj0Der+jptzhwi4p0JPn/XFncHgb1a4Lp1QUSTOtUvc/+ePkWvNzRoqGgOGAFt1zFk=
x-amz-request-id: 2AMWW94D714SP0SA
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=453114S552IvltVHpPTNoNfaY5X7cKJOVucAbfhBQcechJCUe0C7b1TZMACdwS75DenJsRh8R7RsqwDWmN4J8%2FlcUJFlFuwhZu2I1IFLxxPyOFpSGhsTyohpIgLqfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754c5aaecaaeb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashccba97f6a195fa1830a5564edf556744 5a8a70bf11a8e1504cd38a8d1877f868735cce57 c2ceb37343d4c93f48de98397fc7cea47ea47fb01129c494cd2847f2945fed4d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3853
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:16 GMT
Last-Modified: Tue, 04 Oct 2022 06:51:03 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
|
| s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/633476fcd525c/633476fcd5265.jpg | 52.95.164.124 | 200 OK | 5.7 kB |
URL HTTP/1.1s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/633476fcd525c/633476fcd5265.jpg IP52.95.164.124:0
File typeJPEG image data, baseline, precision 8, 228x90, components 4\012- data Hash8ec4866da956b5972534405b9a3badd2 7ec195a88cfa42c31b09745ea6e483849fda3b9c 29d8cda6cf2a478205dd8d91979c879286ce5782566189f3a9a8d905d4d6489f
GET /king-assets.yampi.me/dooki/633476fcd525c/633476fcd5265.jpg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: BcpV4kXVnK8OiZhrPMj552M7YKprwOrnHmWZm/ibInS9d7MbDeusWi26QKd3v9D7jMHzhkae+1U=
x-amz-request-id: QEG2MF2K2YZ7W9D0
Date: Tue, 04 Oct 2022 07:55:17 GMT
Last-Modified: Wed, 28 Sep 2022 16:31:57 GMT
ETag: "8ec4866da956b5972534405b9a3badd2"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 5701
|
|
| api.mercadopago.com/v1/device_sessions/web_device | 35.168.45.38 | 200 OK | 0 B |
URL HTTP/2api.mercadopago.com/v1/device_sessions/web_device IP35.168.45.38:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/device_sessions/web_device HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://seguro.missrosaboutique.com/
Origin: https://seguro.missrosaboutique.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:16 GMT
content-type: application/json; charset=utf-8
content-length: 0
access-control-allow-origin: https://seguro.missrosaboutique.com
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-allow-headers: content-type
access-control-max-age: 86400
x-request-id: a6c4f06c-7b6c-4acf-bbd4-78078c0adff9
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-79,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: fdc630908166b272
x-b3-traceid: fdc630908166b272
x-trace-digest-79: x7fRLUe+HYMVJZKBB3vT2a4XN97dZ42uK8w16mTt+YzNvrBYyTeVitXLinv5M9W5
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash5e89969841b429e3ca44b320d17ea98a 30486a886b793ad5431b73d983d091487e5709c6 2d08365a447343168153cf1178b3b847377c2923bce06d9f6485ad08d3a06d34
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3119
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:16 GMT
Last-Modified: Tue, 04 Oct 2022 07:03:17 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
|
| connect.facebook.net/en_US/fbevents.js |  31.13.72.12 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP31.13.72.12:0
File typeASCII text, with very long lines (64348) Hashe1327a02d76346c7e23d114e4e508b30 195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3 331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 24Q69aeFiU3H8WAWecwWNwSqOJGv9e9EEiZjewV53YybIu6f0rmMCyq4sNjox974sLBzIHeT4U73CoqVqoVHRA==
priority: u=3,i
content-length: 26840
x-fb-trip-id: 1904183273
date: Tue, 04 Oct 2022 07:55:16 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.css |  104.18.1.53 | 200 OK | 7.4 kB |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.css IP104.18.1.53:0
Hash644f5807958f0e4a2fce75863346db5d ef8ff23807cfb37fd7f98f3af71f44f3bf13fe5e 9e699e6c2b4949361969ca47afc84e82c433e2b48ef337997880fa7b6bcb4561
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
expires: Wed, 12 Oct 2022 07:55:15 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 754c5aaec8c9b518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js | 142.250.74.163 | 200 OK | 159 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js IP142.250.74.163:0
File typeASCII text, with very long lines (711) Size159 kB (158844 bytes) Hashb4ed95d4318e3b78b936c9c0f1ffa96e b53c9376b1459afb07fb4b5c2e8d8dad776d3a02 3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.missrosaboutique.com
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 01:05:31 GMT
expires: Sun, 01 Oct 2023 01:05:31 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 283785
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash5e89969841b429e3ca44b320d17ea98a 30486a886b793ad5431b73d983d091487e5709c6 2d08365a447343168153cf1178b3b847377c2923bce06d9f6485ad08d3a06d34
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3119
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:16 GMT
Last-Modified: Tue, 04 Oct 2022 07:03:17 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash5ba23234dfb31276cc3bf9a347508595 a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3 33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google-analytics.com/j/collect?v=1&_v=j98&a=784711429&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.missrosaboutique.com%2Fcart&ul=en-us&de=UTF-8&dt=Carrinho%20-%20missrosaboutique&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=750236267&gjid=337958284&cid=1744667420.1664870116&tid=UA-45745009-5&_gid=512796172.1664870116&_r=1&_slc=1&z=241276373 | 142.250.74.174 | 200 OK | 4 B |
URL HTTP/2www.google-analytics.com/j/collect?v=1&_v=j98&a=784711429&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.missrosaboutique.com%2Fcart&ul=en-us&de=UTF-8&dt=Carrinho%20-%20missrosaboutique&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=750236267&gjid=337958284&cid=1744667420.1664870116&tid=UA-45745009-5&_gid=512796172.1664870116&_r=1&_slc=1&z=241276373 IP142.250.74.174:0
File typeASCII text, with no line terminators Hash9e92e190700c1af4539b40c2171320a9 209bcdb79e6067b51091ce8586d4b977f25b67d8 aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j98&a=784711429&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.missrosaboutique.com%2Fcart&ul=en-us&de=UTF-8&dt=Carrinho%20-%20missrosaboutique&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=750236267&gjid=337958284&cid=1744667420.1664870116&tid=UA-45745009-5&_gid=512796172.1664870116&_r=1&_slc=1&z=241276373 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.missrosaboutique.com
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://seguro.missrosaboutique.com
date: Tue, 04 Oct 2022 07:55:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashadcd51f5c59b0086d1ee264c59c04374 190068d1258444d3e7222018c9e3358bb4703faa ff5c8b6c5460e6fa59550e0bee3c36bddaded3874250058b75a2e9c4b17eb389
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5258
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:16 GMT
Last-Modified: Tue, 04 Oct 2022 06:27:38 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
|
| icons.yampi.me/svg/card-elo.svg | 104.26.3.88 | 200 OK | 2.4 kB |
URL HTTP/2icons.yampi.me/svg/card-elo.svg IP104.26.3.88:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1575) Hashe015e52faf4b481fba62063f0c7be6f6 370cc9508948f95527726c4bd10f3190ed666a37 fc39b129e81e326efe7f15d1be172bf12c64cdbd810c4ef6c4e139037b1e0eb7
GET /svg/card-elo.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-c43"
expires: Tue, 04 Oct 2022 01:34:39 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 21F6:7B16:7627A1:A81A20:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1665-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.063167,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: f023c773bee9415a21039ef215a05ef2473a235d
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BZWOB%2FqpwrqhalWCU0902IkBJtIhCtzaNtPo%2BrqHcvAaZhicUqicAfV5kJPNfb2%2BVIVMnowd6CFPDK2Nmo6sNX2qfo7B%2FSFDrsfRSpwzgP5AgY5uup3%2FfWt90V%2BuKzjw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c5aaeaa80b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| icons.yampi.me/svg/card-mastercard.svg | 104.26.3.88 | 200 OK | 472 B |
URL HTTP/2icons.yampi.me/svg/card-mastercard.svg IP104.26.3.88:0
Hash53e0e5a2455fedae0d6308f91d41e445 237c2856f8a89ae3673ea909164557d65268c463 ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8
GET /svg/card-mastercard.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-5b3"
expires: Mon, 03 Oct 2022 09:14:44 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: C870:2D21:780010:A9F3D9:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.049285,VS0,VE123
vary: Accept-Encoding
x-fastly-request-id: 2b8147f241789884e26825ded5048f2450716653
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v7LO4Y6IVhdgqjWkuO5xL4mEZSntOwIx17U6D7yhp0zkZixFOBJzF5CHpFg%2B2IdsVSAXmpMpeCIK4r7azNA9mFSKUmNbSkOfcBbHn0Px0iwv09lgIFNe8Xcjjb5BqbZi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c5aaeaa8fb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=1744667420.1664870116&jid=750236267&gjid=337958284&_gid=512796172.1664870116&_u=IEDAAAASAAAAAC~&z=574758957 | 74.125.131.157 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=1744667420.1664870116&jid=750236267&gjid=337958284&_gid=512796172.1664870116&_u=IEDAAAASAAAAAC~&z=574758957 IP74.125.131.157:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=1744667420.1664870116&jid=750236267&gjid=337958284&_gid=512796172.1664870116&_u=IEDAAAASAAAAAC~&z=574758957 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.missrosaboutique.com
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.missrosaboutique.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 04 Oct 2022 07:55:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| cdn.yampi.io/ana/ana.min.js?t=1664928000000 | 104.18.15.227 | 200 OK | 3.3 kB |
URL HTTP/2cdn.yampi.io/ana/ana.min.js?t=1664928000000 IP104.18.15.227:0
Hashf1a5eb5790c153093a73cbfa8968c800 89a4bea7a6dab4e9ffc0a2e464efd419fff08127 97ef9ca7014c52d6087a8698b8bbd60b1b71cc6d4f61daf847157932cca30232
GET /ana/ana.min.js?t=1664928000000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:17 GMT
content-type: application/javascript
x-amz-id-2: ZNs9GpEyzdDMn7hjofIa+DjVm8IzW88O7u7zYFzY1Sba3A/hz2zXtJCoz1Ac9SbPcEyNRJ5BBlw=
x-amz-request-id: ATZJ4GJFV39PF6GD
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
expires: Wed, 04 Oct 2023 07:55:17 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 754c5ab218c1b4ed-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash0a7b92212ae4106a9ed5d5e1799853f2 c1fef7d0e5389a9dc047bb1ff0bd7f923cf83d97 ba1b8ae206d40083e34aeb116ac4356070aa12bc09e051765154e8a1648fe2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 07:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail | 216.58.207.237 | 302 Found | 392 B |
URL HTTP/2accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail IP216.58.207.237:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380) Hashacb1dccd6ea73ad69e00854a45e30f5f 5fa077331ec25b88ceed3b7e53ed10f684d1dd97 ac1de8d2e2ccfe328c151b449badece09e06088001464bd1527e51ce06978aa3
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 04 Oct 2022 07:55:17 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S1510435441%3A1664870117288770&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWq1z69bTabOFqQaRo2Qj9rJKfmN2oqugGDLC2PVkLGKdYXipE-cVnJVxWW0EGhAw0t-bL-5tw
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-jq79ffkaLQhUjRa44TqqQg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 392
server: GSE
set-cookie: __Host-GAPS=1:wShCif3Ufhh2IK66MyDwGO7EzlqzMw:EIpNpQbXy4Ms6Ivw;Path=/;Expires=Thu, 03-Oct-2024 07:55:17 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.mercadolibre.com/jms/lgz/background/etid | 143.204.55.53 | 200 OK | 0 B |
URL HTTP/2www.mercadolibre.com/jms/lgz/background/etid IP143.204.55.53:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jms/lgz/background/etid HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.missrosaboutique.com
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 0
date: Tue, 04 Oct 2022 07:55:17 GMT
server: Tengine
set-cookie: _d2id=b7896c14-8800-4710-afb3-8e0710dd540b-n; Path=/; Domain=.mercadolibre.com; Expires=Wed, 04 Oct 2023 07:55:17 GMT
access-control-allow-origin: *
access-control-expose-headers: Etag
etag: 4e800e0d-b92b-4651-a9d3-9b6e7ae44908-1664870117283
cache-control: private, must-revalidate, proxy-revalidate
x-envoy-upstream-service-time: 6
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: b7896c14-8800-4710-afb3-8e0710dd540b
x-request-device-id: b7896c14-8800-4710-afb3-8e0710dd540b
x-d2id: b7896c14-8800-4710-afb3-8e0710dd540b
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vOpF7iGeWQGD4n5ZC21prqYDQl4E9cWPdP5Flc4TsrT7UstznqI34w==
X-Firefox-Spdy: h2
|
|
| js-agent.newrelic.com/nr-spa-1216.min.js | 151.101.86.137 | 200 OK | 362 kB |
URL HTTP/2js-agent.newrelic.com/nr-spa-1216.min.js IP151.101.86.137:0
File typeASCII text, with very long lines (64471) Size362 kB (361542 bytes) Hash5117a8c136c4081e4abe8c61470a76d1 c2c227a470ce781a8803fa9799a057bf4c48634c 9c73b5cd07175e317bc02d92f9808f8f4f3c581ba8c7cc1749a76613271ed304
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 04 Oct 2022 07:55:18 GMT
via: 1.1 varnish
x-served-by: cache-bma1631-BMA
x-cache: HIT
x-cache-hits: 467
x-timer: S1664870118.194537,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
|
|
| bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=5181&ck=1&ref=https://seguro.missrosaboutique.com/cart&ap=32&be=2243&fe=4893&dc=2966&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664870112852,%22n%22:0,%22f%22:1369,%22dn%22:1369,%22dne%22:1369,%22c%22:1369,%22s%22:1369,%22ce%22:1369,%22rq%22:1372,%22rp%22:2220,%22rpe%22:2221,%22dl%22:2226,%22di%22:2965,%22ds%22:2965,%22de%22:2979,%22dc%22:4892,%22l%22:4892,%22le%22:5160%7D,%22navigation%22:%7B%7D%7D&fcp=2919&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken | 162.247.241.14 | 200 OK | 77 B |
URL HTTP/1.1bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=5181&ck=1&ref=https://seguro.missrosaboutique.com/cart&ap=32&be=2243&fe=4893&dc=2966&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664870112852,%22n%22:0,%22f%22:1369,%22dn%22:1369,%22dne%22:1369,%22c%22:1369,%22s%22:1369,%22ce%22:1369,%22rq%22:1372,%22rp%22:2220,%22rpe%22:2221,%22dl%22:2226,%22di%22:2965,%22ds%22:2965,%22de%22:2979,%22dc%22:4892,%22l%22:4892,%22le%22:5160%7D,%22navigation%22:%7B%7D%7D&fcp=2919&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken IP162.247.241.14:0
File typeASCII text, with no line terminators Hashf1442f5831dbbe0210da2d7a4180d6b8 2ade23c6c7a001c66f0c0a9a101ec152747b434e c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=5181&ck=1&ref=https://seguro.missrosaboutique.com/cart&ap=32&be=2243&fe=4893&dc=2966&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664870112852,%22n%22:0,%22f%22:1369,%22dn%22:1369,%22dne%22:1369,%22c%22:1369,%22s%22:1369,%22ce%22:1369,%22rq%22:1372,%22rp%22:2220,%22rpe%22:2221,%22dl%22:2226,%22di%22:2965,%22ds%22:2965,%22de%22:2979,%22dc%22:4892,%22l%22:4892,%22le%22:5160%7D,%22navigation%22:%7B%7D%7D&fcp=2919&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 07:55:18 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 754c5ac1be031c0e-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=a44d555a8b0c7d39; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
|
|
| bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=5723&ck=1&ref=https://seguro.missrosaboutique.com/cart | 162.247.241.14 | 200 OK | 24 B |
URL HTTP/1.1bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=5723&ck=1&ref=https://seguro.missrosaboutique.com/cart IP162.247.241.14:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashbc32ed98d624acb4008f986349a20d26 2d3df8c11d2168ce2c27e0937421d11d85016361 0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=5723&ck=1&ref=https://seguro.missrosaboutique.com/cart HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 672
Origin: https://seguro.missrosaboutique.com
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 07:55:19 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 754c5ac3afbb1c0e-OSL
Access-Control-Allow-Origin: https://seguro.missrosaboutique.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
|
|
| www.mercadolibre.com/jms/lgz/background/session/armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiIwMGU0YWUxNS03MzlmLTRkZDItOWMwYi0yYjAwNmJhZWZlNjEtMTY2NDg3MDExODc5OSIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiNzU5NzY0MTktYjc3Zi00OGIxLTg3YTYtZjdkZjRjMGQ0ZjE0LTE2NjQ4NzAxMTg3OTkifQ%3D%3D%22%7D&callback=dp_jsonp.process | 143.204.55.53 | 200 OK | 47 B |
URL HTTP/2www.mercadolibre.com/jms/lgz/background/session/armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiIwMGU0YWUxNS03MzlmLTRkZDItOWMwYi0yYjAwNmJhZWZlNjEtMTY2NDg3MDExODc5OSIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiNzU5NzY0MTktYjc3Zi00OGIxLTg3YTYtZjdkZjRjMGQ0ZjE0LTE2NjQ4NzAxMTg3OTkifQ%3D%3D%22%7D&callback=dp_jsonp.process IP143.204.55.53:0
File typeASCII text, with no line terminators Hasha5e5ac191be59d156aa9ad6750b2ca1d 1a5643b00f342e086e50f908eb10bf915b3c4320 07bf1ae0dfc813b1603d59ec939af723f1d89927518d53d1fb28bdd94b6130e6
GET /jms/lgz/background/session/armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiIwMGU0YWUxNS03MzlmLTRkZDItOWMwYi0yYjAwNmJhZWZlNjEtMTY2NDg3MDExODc5OSIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiNzU5NzY0MTktYjc3Zi00OGIxLTg3YTYtZjdkZjRjMGQ0ZjE0LTE2NjQ4NzAxMTg3OTkifQ%3D%3D%22%7D&callback=dp_jsonp.process HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mercadolibre.com/jms/lgz/background?dps=armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea
Connection: keep-alive
Cookie: dsid=a71eae28-c38d-4144-af46-115cd35789b7-1664870118797; edsid=8d19f9d3-e734-4a2c-862c-f880c1c331d4-1664870118797
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
date: Tue, 04 Oct 2022 07:55:19 GMT
server: Tengine
set-cookie: _d2id=e119e561-c1f6-4e8a-9ade-49ceaee15ad7-n; Path=/; Domain=.mercadolibre.com; Expires=Wed, 04 Oct 2023 07:55:19 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_cross_domain_profiling
content-encoding: gzip
x-envoy-upstream-service-time: 4
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: e119e561-c1f6-4e8a-9ade-49ceaee15ad7
x-request-device-id: e119e561-c1f6-4e8a-9ade-49ceaee15ad7
x-d2id: e119e561-c1f6-4e8a-9ade-49ceaee15ad7
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: obSBZ9w-sIIZRFT5eyEjvtQ2RfcgmMCTbSFlbbc2U6I7LnS0a0A9eg==
X-Firefox-Spdy: h2
|
|
| api.mercadopago.com/v1/device_sessions/anonymous_device_session | 35.168.45.38 | 200 OK | 337 B |
URL HTTP/2api.mercadopago.com/v1/device_sessions/anonymous_device_session IP35.168.45.38:0
File typeJSON data\012- , ASCII text, with very long lines (337), with no line terminators Hasha6d51c155d4d6e6d25c9ace21323d44d e13dff7505fc9fc2c2a1e9415b4ea580b4c4e7b9 7725ef74fb609274cc2e87834477457717c328f48927160a40e7274ee70f2f68
POST /v1/device_sessions/anonymous_device_session HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 98
Origin: https://seguro.missrosaboutique.com
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:20 GMT
content-type: application/json; charset=utf-8
content-length: 337
access-control-allow-origin: https://seguro.missrosaboutique.com
x-request-id: 87336735-6b6a-47b5-8d85-cdfa4b031131
x-trace-digest-86: N7xPiaIao/9yOB7XEfiK4HqRKvFGJS38/o9uzZQR32ziEsmkHR99wPCQbD8pej9t
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-86,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: 8ccf069e54e4515d
x-b3-traceid: 8ccf069e54e4515d
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: Content-Type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=1e6253632efe7b54975ca2eb278b738b | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=1e6253632efe7b54975ca2eb278b738b IP104.26.3.88:0
GET /checkout/build/mix/assets/js/app.js?id=1e6253632efe7b54975ca2eb278b738b HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:16 GMT
content-type: application/javascript
x-amz-id-2: HeNG/hjysaG3alQ5vUNrBeMws7az9aGIm9Q0BXF3CTVU8EuhrO3u4JeH1GtoScEbzHcYuV4B99k=
x-amz-request-id: DWBZQ81RV96HSGV7
last-modified: Mon, 03 Oct 2022 17:50:55 GMT
x-amz-version-id: X8zrdXFRw6PCKYnrjkxRRKy3CZeQs3Rk
etag: W/"181ba5d6e79d716f7b7d3351c7b8ef59"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W0ZcciV2xZN8o0AUGWjJ7m76VJMzzAJvJxjFg%2BjKy%2FgtcNVWJEw8I6CRHeqXFk%2F2VLj5%2FmUgRFxME6qM9zpLtBd4uTgN2k07TGzrkTf39LNafFGAe6kTlrpbZuIbMeodcKwna7wMNciY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754c5aae8a68b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seguro.missrosaboutique.com/cart/recomm | 170.82.173.30 | 200 OK | 0 B |
URL HTTP/2seguro.missrosaboutique.com/cart/recomm IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /cart/recomm HTTP/1.1
Host: seguro.missrosaboutique.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImM5ZTg0ZjJlNDBkZjRmMzEiLCJ0ciI6IjUyYzMzMGU5NTg1ZGMxYzcwN2ZmNjFiMWMyMmJiMDNiIiwidGkiOjE2NjQ4NzAxMTU4MjR9fQ==
traceparent: 00-52c330e9585dc1c707ff61b1c22bb03b-c9e84f2e40df4f31-01
tracestate: 2935249@nr=0-1-2935249-1134170823-c9e84f2e40df4f31----1664870115824
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/cart
Cookie: XSRF-TOKEN=eyJpdiI6IjhZbVFXTXJnNUg2NXFUSWd4TXlCYWc9PSIsInZhbHVlIjoiS1dmOXJYMDFzSFBwRGpCWlZXbHdSUW9XMmt2NGZla3ZWb2hKWE81dDRMYlpKeGlUXC9nVDBlbjQzRGxlVFdMS2laOWxIb3hWc2EzUzBiWWdMNDBBNGl3PT0iLCJtYWMiOiJkZjVhMTc2MDRiMTIxMzc0YWRkN2ExY2ZiNDFiMjhiZjdmODc0Yzg2ZTQ5MThjM2UxMTFkMGFmZjQ1MTQ0ZjIxIn0%3D; bubbstore_checkout=eyJpdiI6IkdBUkh1S0piYU5RS21JOUNZMGg2NUE9PSIsInZhbHVlIjoiQm1VRFlrcU9scDVJUUlnMzNFKzBHOFJqbXZWNjQrWGMzWVErdjIwc3o1aHgxRlNVUkpsUmRSUFF1WE0xQUhFcFFlTDNTeFwvUG11SWpYZW52c0dPODVBPT0iLCJtYWMiOiJhM2Q5MjZkOWExYTdmMDJmNmJhYjg0YzEyN2U4OWJmYjM0YzE2OGM0NjBkZTAyYzAwMGU2OTExZmU2ZWMyZGQ3In0%3D; missrosaboutique_cart=eyJpdiI6ImxXdWJVamtReE5HNVhTcHhxZ245MWc9PSIsInZhbHVlIjoiM2xTY3VtQmRZOTFhejdMYlh4NXhTcmw1M21TZENKUnFscnR5ZmxiemRPZjlHR0NrMEhualFkSlordVZSRERtelwvOFNmNXZ5Ym9vcHd3aVlWdWQwRmp3PT0iLCJtYWMiOiI5N2M0ZmNjOTk2OTBhNTkwMWZkMDQxNDA0MTk5ZmZmZmUxMTA1ZWZmMDc4YWNmM2U0YzliYzc2YzRiMjY3OTRkIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:16 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IlwvYVZMdGNOYlBVOG1rb1BXamFCenlRPT0iLCJ2YWx1ZSI6IjF1Y3hYbVdrbzRETWF3NitNeWdqRFBSNTVoQzZ1d1ppTjBmWUUweHAyMmNXY0RqaFY2UUJpQkxIanVicnR0R29IQmI4TjMxRFRYd3UwTDhkbDllcHR3PT0iLCJtYWMiOiJiOTkzYmViNzkxMTIxNTRjZTlmNmFhZTQ3YjgyOWNiZTI3NjdjY2ZkMGEwMjYxM2IwYzhmNDhiMDU3YmFiZDhlIn0%3D; expires=Tue, 04-Oct-2022 10:55:16 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImMrb2NteUtwVzhGQUxQRWpMSW9WdHc9PSIsInZhbHVlIjoiVGVVQkdvdStDbjhLYk9TeTFQd1BKSEdkK0NZYzQ0Z2phRGhHVlhuMWttVXRSWHJLK2dLU2hKTDBla3VtdFZpMGh2eHVEUGsxelk1NndjWTFqeTZzSUE9PSIsIm1hYyI6ImM4ODg0OTZlZjZiNDQyOGM1MzRmNWM3YjhmMDQ1NTNjMWE5Y2QzNDFiYmE0ZmM5NmJmMDhlMzZjNmY0ZmJjYzAifQ%3D%3D; expires=Tue, 04-Oct-2022 10:55:16 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFtSQhBPEFJSWAsJExoDTFZTUgBSFFIWCAYABFIVTABNEVNQAAEAA1AKBFNTVVMEBFNESFdXXxEDPg==
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| seguro.missrosaboutique.com/cart | 170.82.173.30 | 200 OK | 0 B |
URL HTTP/2seguro.missrosaboutique.com/cart IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /cart HTTP/1.1
Host: seguro.missrosaboutique.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ilo3S1Q4YUh0ekdDN2FJSWdKV2NUU1E9PSIsInZhbHVlIjoiXC9XQzhjXC93REs2OTc4NWFURTJ0OVEyZm9ad0k5Y1pwaWpDUFhNVXVsTTNlUW1mVTVrcGp2NWwwRjI1clJSdGl1V0VoYzFzZkJtV0ZVQnk0OFRVRnpPZz09IiwibWFjIjoiNGY5MTQ5OGFlNjBiYWYzMTk2NjBiNzA1NzQyZDZlZjZkNmM5NzNjYWNhNzY5NDFlNzcwMjAwMWRiMzM0MjA4NiJ9; bubbstore_checkout=eyJpdiI6InlBcDExQmJKdlwvajh5VWhia09aRTNBPT0iLCJ2YWx1ZSI6IkhWbDh2alhsbkE0NWkzQTBqSmVtMzluZHRuNEN3MmpBTmlGek9GcEJYQXRPeFBkRWFcLytKWU40ampFaWs1YU9naHBLZTV0bHl3Qkw0MWozaEdGaDZVZz09IiwibWFjIjoiNzcyNTY3ZDQxNWEyZDMzOWQ2NzBlN2YxNTE1YmQ0YzYyOTg3YThiYmE4NzBlZmY2NDRlNjkwOWY3ZmFmODE5NCJ9; missrosaboutique_cart=eyJpdiI6ImxXdWJVamtReE5HNVhTcHhxZ245MWc9PSIsInZhbHVlIjoiM2xTY3VtQmRZOTFhejdMYlh4NXhTcmw1M21TZENKUnFscnR5ZmxiemRPZjlHR0NrMEhualFkSlordVZSRERtelwvOFNmNXZ5Ym9vcHd3aVlWdWQwRmp3PT0iLCJtYWMiOiI5N2M0ZmNjOTk2OTBhNTkwMWZkMDQxNDA0MTk5ZmZmZmUxMTA1ZWZmMDc4YWNmM2U0YzliYzc2YzRiMjY3OTRkIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjhZbVFXTXJnNUg2NXFUSWd4TXlCYWc9PSIsInZhbHVlIjoiS1dmOXJYMDFzSFBwRGpCWlZXbHdSUW9XMmt2NGZla3ZWb2hKWE81dDRMYlpKeGlUXC9nVDBlbjQzRGxlVFdMS2laOWxIb3hWc2EzUzBiWWdMNDBBNGl3PT0iLCJtYWMiOiJkZjVhMTc2MDRiMTIxMzc0YWRkN2ExY2ZiNDFiMjhiZjdmODc0Yzg2ZTQ5MThjM2UxMTFkMGFmZjQ1MTQ0ZjIxIn0%3D; expires=Tue, 04-Oct-2022 10:55:15 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkdBUkh1S0piYU5RS21JOUNZMGg2NUE9PSIsInZhbHVlIjoiQm1VRFlrcU9scDVJUUlnMzNFKzBHOFJqbXZWNjQrWGMzWVErdjIwc3o1aHgxRlNVUkpsUmRSUFF1WE0xQUhFcFFlTDNTeFwvUG11SWpYZW52c0dPODVBPT0iLCJtYWMiOiJhM2Q5MjZkOWExYTdmMDJmNmJhYjg0YzEyN2U4OWJmYjM0YzE2OGM0NjBkZTAyYzAwMGU2OTExZmU2ZWMyZGQ3In0%3D; expires=Tue, 04-Oct-2022 10:55:15 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| icons.yampi.me/svg/card-aura.svg | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2icons.yampi.me/svg/card-aura.svg IP104.26.3.88:0
GET /svg/card-aura.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:16 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-111a"
expires: Mon, 03 Oct 2022 13:07:17 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
x-github-request-id: 49B4:374F:A8A74D:DBE871:63348759
via: 1.1 varnish
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664461274.378087,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: d5453bb4bad088c963970620ccbfa80874c0cbec
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nt%2ByP40qe3pLfXtrTt3brrB762Yf7tQh0ii2tQ8ib0d3zgpkmM4v2BymB5GUZNRbh0TbohUFOR1V4QifOZZi%2B4NzAm6KoueQgTBB1oQqOqSy4foh3UJnRcpYSuwi%2BDTx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c5aaeaa84b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.mercadolibre.com/jms/lgz/background/session/armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea?background=armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D | 143.204.55.53 | 200 OK | 0 B |
URL HTTP/2www.mercadolibre.com/jms/lgz/background/session/armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea?background=armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D IP143.204.55.53:0
GET /jms/lgz/background/session/armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea?background=armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Tue, 04 Oct 2022 07:55:18 GMT
server: Tengine
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
set-cookie: _d2id=620d8c35-ec68-40a0-b129-ad388dfd1392-n; Path=/; Domain=.mercadolibre.com; Expires=Wed, 04 Oct 2023 07:55:18 GMT
dsid=a71eae28-c38d-4144-af46-115cd35789b7-1664870118797;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
edsid=8d19f9d3-e734-4a2c-862c-f880c1c331d4-1664870118797;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 9
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 620d8c35-ec68-40a0-b129-ad388dfd1392
x-request-device-id: 620d8c35-ec68-40a0-b129-ad388dfd1392
x-d2id: 620d8c35-ec68-40a0-b129-ad388dfd1392
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lHf2c1qLD1qJb9FK7kKrH3PY6mi7hiqRjVxfLcUnH4BIqAQOVija8Q==
X-Firefox-Spdy: h2
|
|
| www.mercadolibre.com/jms/lgz/background?dps=armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea | 143.204.55.53 | 200 OK | 0 B |
URL HTTP/2www.mercadolibre.com/jms/lgz/background?dps=armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea IP143.204.55.53:0
GET /jms/lgz/background?dps=armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Tue, 04 Oct 2022 07:55:18 GMT
server: Tengine
set-cookie: _d2id=48d62891-ec36-41dd-bf56-74de1c34594c-n; Path=/; Domain=.mercadolibre.com; Expires=Wed, 04 Oct 2023 07:55:18 GMT
access-control-allow-origin: *
x-transaction-name: cross_domain_profiler
content-encoding: gzip
x-envoy-upstream-service-time: 4
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 48d62891-ec36-41dd-bf56-74de1c34594c
x-request-device-id: 48d62891-ec36-41dd-bf56-74de1c34594c
x-d2id: 48d62891-ec36-41dd-bf56-74de1c34594c
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cENoUq0FxhL82SxB3z8k6XzanloDiH6ipE-6H6VuhreOQrn7PRNIxw==
X-Firefox-Spdy: h2
|
|
| seguro.missrosaboutique.com/ | 170.82.173.30 | 302 Found | 0 B |
URL HTTP/2seguro.missrosaboutique.com/ IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET / HTTP/1.1
Host: seguro.missrosaboutique.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Tue, 04 Oct 2022 07:55:14 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.missrosaboutique.com/cart
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6Ilo3S1Q4YUh0ekdDN2FJSWdKV2NUU1E9PSIsInZhbHVlIjoiXC9XQzhjXC93REs2OTc4NWFURTJ0OVEyZm9ad0k5Y1pwaWpDUFhNVXVsTTNlUW1mVTVrcGp2NWwwRjI1clJSdGl1V0VoYzFzZkJtV0ZVQnk0OFRVRnpPZz09IiwibWFjIjoiNGY5MTQ5OGFlNjBiYWYzMTk2NjBiNzA1NzQyZDZlZjZkNmM5NzNjYWNhNzY5NDFlNzcwMjAwMWRiMzM0MjA4NiJ9; expires=Tue, 04-Oct-2022 10:55:14 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InlBcDExQmJKdlwvajh5VWhia09aRTNBPT0iLCJ2YWx1ZSI6IkhWbDh2alhsbkE0NWkzQTBqSmVtMzluZHRuNEN3MmpBTmlGek9GcEJYQXRPeFBkRWFcLytKWU40ampFaWs1YU9naHBLZTV0bHl3Qkw0MWozaEdGaDZVZz09IiwibWFjIjoiNzcyNTY3ZDQxNWEyZDMzOWQ2NzBlN2YxNTE1YmQ0YzYyOTg3YThiYmE4NzBlZmY2NDRlNjkwOWY3ZmFmODE5NCJ9; expires=Tue, 04-Oct-2022 10:55:14 GMT; Max-Age=10800; path=/; httponly
missrosaboutique_cart=eyJpdiI6ImxXdWJVamtReE5HNVhTcHhxZ245MWc9PSIsInZhbHVlIjoiM2xTY3VtQmRZOTFhejdMYlh4NXhTcmw1M21TZENKUnFscnR5ZmxiemRPZjlHR0NrMEhualFkSlordVZSRERtelwvOFNmNXZ5Ym9vcHd3aVlWdWQwRmp3PT0iLCJtYWMiOiI5N2M0ZmNjOTk2OTBhNTkwMWZkMDQxNDA0MTk5ZmZmZmUxMTA1ZWZmMDc4YWNmM2U0YzliYzc2YzRiMjY3OTRkIn0%3D; expires=Sun, 09-Oct-2022 07:55:14 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
|
|
| icons.yampi.me/svg/card-visa.svg | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2icons.yampi.me/svg/card-visa.svg IP104.26.3.88:0
GET /svg/card-visa.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: image/svg+xml
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-1288"
expires: Tue, 04 Oct 2022 00:04:30 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 2158:78B3:779989:A98D45:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1683-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.055223,VS0,VE182
vary: Accept-Encoding
x-fastly-request-id: a6a72833805510b10cdc9527a348d2304550d705
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CwlhrilJAZIDSY39VT%2FvJ2Xpr2zq1I4kcB%2FtndX%2FB4pmH5AOUPzJdeZjXFJ%2FfFYdhf5rtCICMwpOr%2FUBvAkORDkD0MCVegKaI7GsI7Vym2NbVnAdO%2FEyagugD5Oh%2FZQU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c5aaeaa91b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| icons.yampi.me/svg/card-hiper.svg | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2icons.yampi.me/svg/card-hiper.svg IP104.26.3.88:0
GET /svg/card-hiper.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-2392"
expires: Mon, 03 Oct 2022 19:32:18 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 3900:70E3:7684AF:A8BDE3:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663088051.774291,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 664db6e5293d478d130a0457b0af91c864fdebc9
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PuQVaQT4U7pAVtJFHFfA7jh1kQlwbcilOTLtwefhPfdVsp7Xag3vYAEI8%2FYpLLsmLPT36SYT8P1revvQSn5A6MrFa2fnB6urO8QuNzj15OO8xZ6ExNVjUuXGWwWj%2Fi0d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c5aaeaa92b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.mercadolivre.com/jms/mlb/lgz/background/session/armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea?background=armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea&message=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 | 143.204.55.53 | 200 OK | 0 B |
URL HTTP/2www.mercadolivre.com/jms/mlb/lgz/background/session/armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea?background=armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea&message=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 IP143.204.55.53:0
GET /jms/mlb/lgz/background/session/armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea?background=armor.d684b90558794f4cd29c934583626864efe8213ce1c1ef473e7bd81a5655ab74d7e7884c6838bc70153707fd4f5f14c272b6eefc59e594f2d375f487f3d487820d409e80400c6bb5aad8a498ee72c9000c082132266445e55699dc412bbaa93e.ee5a1d946200989791ec62e6449c56ea&message=eyJhZF9ibG9jayI6ZmFsc2UsImNhbnZhcyI6IjdiZTAwMmIyODcyMDYzYTM0ZTQzZjM0YmYxYjNkMzc0IiwiY29ubmVjdGlvbiI6bnVsbCwiY29va2llX2VuYWJsZWQiOnRydWUsImRldmljZV9tZW1vcnkiOjAsImRvX25vdF90cmFjayI6InVuc3BlY2lmaWVkIiwiZXRhZyI6IjRlODAwZTBkLWI5MmItNDY1MS1hOWQzLTliNmU3YWU0NDkwOC0xNjY0ODcwMTE3MjgzIiwiZm9udHMiOnsib3MiOjI5MTQsIm90aGVyX29zIjoiW1wie1xcXCJQYWxhdGlubyBMaW5vdHlwZVxcXCIgOjJ9XCIsXCJ7XFxcIlVSVyBHb3RoaWMgTFxcXCIgOjB9XCIsXCJ7XFxcIlVSVyBCb29rbWFuIExcXFwiIDowfVwiLFwie1xcXCJVUlcgUGFsbGFkaW8gTFxcXCIgOjB9XCIsXCJ7XFxcIk5pbWJ1cyBTYW5zIExcXFwiIDowfVwiLFwie1xcXCJCb29rbWFuIE9sZHN0eWxlXFxcIiA6NX1cIixcIntcXFwiSGVsdmV0aWNhXFxcIiA6M31cIixcIntcXFwiQ291cmllclxcXCIgOjN9XCIsXCJ7XFxcIkJpdHN0cmVhbSBWZXJhIFNhbnNcXFwiIDozfVwiLFwie1xcXCJCaXRzdHJlYW0gVmVyYSBTYW5zIE1vbm9cXFwiIDozfVwiLFwie1xcXCJCaXRzdHJlYW0gVmVyYSBTZXJpZlxcXCIgOjN9XCIsXCJ7XFxcIk5ldyBDZW50dXJ5IFNjaG9vbGJvb2tcXFwiIDozfVwiLFwie1xcXCJOaW1idXMgTW9ub1xcXCIgOjB9XCIsXCJ7XFxcIkNlbnR1cnkgU2Nob29sYm9vayBMXFxcIiA6MH1cIixcIntcXFwiVVJXIENoYW5jZXJ5IExcXFwiIDowfVwiLFwie1xcXCJEZWphVnUgU2FucyBNb25vXFxcIiA6MH1cIixcIntcXFwiRGVqYVZ1IFNhbnNcXFwiIDowfVwiLFwie1xcXCJEZWphVnUgU2VyaWZcXFwiIDowfVwiXSIsIm5vdF9vcyI6MjkxNH0sImhhcmR3YXJlX2NvbmN1cnJlbmN5IjoxNiwiaGlzdG9yeSI6MSwiaW5jb2duaXRvIjpmYWxzZSwianNfdHlwZSI6ImpzX2hhc2giLCJsYW5nIjoiZW4tVVMiLCJsYW5ndWFnZXMiOlsiZW4tVVMiLCJlbiJdLCJsaXRlcmFsX2NvbG9ycyI6MTc5NjQwNDIyMCwibG9jYWxfc3RvcmFnZSI6dHJ1ZSwibG9naW5fZGV0ZWN0aW9uIjp7Imdvb2dsZSI6ZmFsc2V9LCJtYXRoX251bWJlciI6MTEwMjMuMzg3NDA2MTUwOTQsIm9wZW5fZGF0YWJhc2UiOmZhbHNlLCJwaXhlbF9yYXRpbyI6MSwicGxhdGZvcm0iOiJMaW51eCB4ODZfNjQiLCJ3ZWJnbCI6bnVsbCwicGx1Z2lucyI6e30sInJlc29sdXRpb24iOiIxMDI0eDEyODB4MjQiLCJzY3JlZW4iOnsib3JpZW50YXRpb24iOjAsInR5cGUiOiJsYW5kc2NhcGUtcHJpbWFyeSIsImF2YWlsX2hlaWdodCI6MTAwMiwiYXZhaWxfbGVmdCI6MCwiYXZhaWxfdG9wIjowLCJhdmFpbF93aWR0aCI6MTI4MH0sInNlc3Npb25fc3RvcmFnZSI6dHJ1ZSwidGltZSI6eyJjYW52YXMiOjQyLCJ3ZWJnbCI6MiwidXNlcmZvbnRzIjoxMDYsImJyb3dzZXJwbHVnaW5zIjowLCJwbHVnaW5zIjoxLCJpbnN0YWxsZWRmb250cyI6NzUsImhhc2giOjI1OCwidG90YWwiOjI1OH0sInRpbWVfYmFzZWRfZnAiOm51bGwsInRpbWVfem9uZV9uYW1lIjoiVVRDIiwidGltZV96b25lX29mZnNldCI6MCwidG91Y2hfcG9pbnRzIjowLCJ1c2VyX2FnZW50IjoiTW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjAiLCJ2ZW5kb3IiOiIiLCJ3aW5kb3dfc2l6ZSI6eyJpbm5lciI6IjkzOXgxMjgwIiwib3V0ZXIiOiIxMDI0eDEyODAifSwid2ViZHJpdmVyIjpmYWxzZSwiaW5zdGFsbGVkX2ZvbnRzIjpbIlBhbGF0aW5vIiwiVGltZXMiXSwiaW5zdGFsbGVkX3BsdWdpbnMiOltdLCJsaWdodF92ZXJzaW9uIjpmYWxzZSwicmVmZXJlciI6bnVsbCwid2ViY2FtIjpmYWxzZSwiaGFzX3Nlc3Npb25faWQiOnRydWV9 HTTP/1.1
Host: www.mercadolivre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Tue, 04 Oct 2022 07:55:18 GMT
server: Tengine
set-cookie: _d2id=bfd82af9-5c33-412f-b0ae-5ecc0c32313f-n; Path=/; Domain=.mercadolivre.com; Expires=Wed, 04 Oct 2023 07:55:18 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
content-encoding: gzip
x-envoy-upstream-service-time: 2
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: bfd82af9-5c33-412f-b0ae-5ecc0c32313f
x-request-device-id: bfd82af9-5c33-412f-b0ae-5ecc0c32313f
x-d2id: bfd82af9-5c33-412f-b0ae-5ecc0c32313f
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Sz2kIyHEEgtFrP0B3kPSKWZwq0dexE6q3LbIvQYarE3BVCqtfuEDzw==
X-Firefox-Spdy: h2
|
|
| icons.yampi.me/svg/card-billet.svg | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2icons.yampi.me/svg/card-billet.svg IP104.26.3.88:0
GET /svg/card-billet.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-537"
expires: Mon, 03 Oct 2022 15:53:55 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 704C:739C:7638A9:A828EA:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.041790,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: b29a2ef028a2a3de333273d123f51c2969f04977
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hzcOaZDF4ht03I9LDilw3osWzn3KOnnJCKUw3mDmK%2BG9RgA%2BJIVt6dIICR6zDlMp1TaCQ%2FJH8JaXBdS%2BsI4nAIG%2BQ9Y%2FJNi5Ja7e%2FEcJSimenxx3CcWNs4j6698Z7x45"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c5aaeaa88b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| icons.yampi.me/svg/card-diners.svg | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2icons.yampi.me/svg/card-diners.svg IP104.26.3.88:0
GET /svg/card-diners.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-99b"
expires: Mon, 03 Oct 2022 13:07:17 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 0805:3666:720576:A3F3F5:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.024806,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: 3173e43038aaed1f5c4d9cd688593e370db124d3
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rmOkXBYPi45vdihaCakHB1TpyM8kFgWoGj1z6pxsnwkeiB1ZTnds9ZEbcAM68V4ha2NF75ux3DQavdAV73zReQVTe7xJ9HI6QJ2KmufdUqAcJ%2FxaEwq%2B7yfJ2iPBJFyh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c5aaeaa86b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| icons.yampi.me/svg/card-pix.svg | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2icons.yampi.me/svg/card-pix.svg IP104.26.3.88:0
GET /svg/card-pix.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-a56"
expires: Mon, 03 Oct 2022 15:29:14 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: D8D4:5ABE:77069E:9FE713:6320B554
via: 1.1 varnish
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097932.845241,VS0,VE109
vary: Accept-Encoding
x-fastly-request-id: ce75b40802cb9a31d490012c9ba03c2b82439614
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xp6lFXD7So70xoOI8gCM1yZVTRlJhe8rw5XJcLIzoJNYjrJIdMjyZeud3r1tNoj5qVu8X9XyDVuJtou%2FiTgF7xOiqIpYZPTIu%2BG3eDUSYPZjLzBBBPe7G1v4lu4uXgGc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c5aaeaa87b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| icons.yampi.me/svg/card-hipercard.svg | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2icons.yampi.me/svg/card-hipercard.svg IP104.26.3.88:0
GET /svg/card-hipercard.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: image/svg+xml
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-54bc"
expires: Tue, 04 Oct 2022 02:26:35 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 0803:9569:794A80:AB3FD5:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1683-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.028515,VS0,VE110
vary: Accept-Encoding
x-fastly-request-id: 10a3f8f19c6194786338f97c7eb183abb383e91f
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qp5OSqSMTNQ4qyjdliCiq%2B83lDOAI%2FPa84lcFLBKOHrHnibdmug6CxIxhy7dqZKsaZVVU%2BaZqGYWmUM5JX18bhmODYQ8tIh%2F5gKXA90QwjMLkqIwqqTNsHIri7mFV%2Fgq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c5aaeaa83b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| icons.yampi.me/svg/card-discover.svg | 104.26.3.88 | 200 OK | 0 B |
URL HTTP/2icons.yampi.me/svg/card-discover.svg IP104.26.3.88:0
GET /svg/card-discover.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 07:55:15 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-f89"
expires: Tue, 04 Oct 2022 03:32:16 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 31EE:5763:DCEFB4:E47F30:6320BAA0
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.067513,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: fd79095f655c2a734a7e320fca9bb582f1e29d1d
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BUulPZq4Y%2FhTMlYDRSjyqMItHVFkVKhGO1cT6yOjcSl9TJITg5OQ2JbKvTddE9L5E4NpDu1oZwgeuXJzg0jY9j3GQxf2%2FXdaiZAxX4i5UKLpqn56WdIx324hM4k%2BfrKY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c5aaeaa81b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.mercadopago.com/v2/security.js | 143.204.55.57 | 200 OK | 0 B |
URL HTTP/2www.mercadopago.com/v2/security.js IP143.204.55.57:0
GET /v2/security.js HTTP/1.1
Host: www.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.missrosaboutique.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 04 Oct 2022 07:55:16 GMT
set-cookie: _d2id=23d27acd-4aa9-49c1-a491-74eed23368c4-n; Path=/; Domain=.mercadopago.com; Expires=Wed, 04 Oct 2023 07:55:16 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: get_off_widget
content-encoding: gzip
x-request-id: 23d27acd-4aa9-49c1-a491-74eed23368c4
x-request-device-id: 23d27acd-4aa9-49c1-a491-74eed23368c4
x-d2id: 23d27acd-4aa9-49c1-a491-74eed23368c4
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X0gUUtmqjFP_753g65o5rIbTZkiEkZ4icEGTFbh84sJT7cxDeR3mvg==
X-Firefox-Spdy: h2
|
|