| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash73c4166ca864f777db2cc1cd8658a7c2 c56b66b0b7c8516d4d5bfafe0c166711c78f3d25 310c633350812c064e159275b6dbbdba6d6a5991a54ccfcc23459320c6513572
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "310C633350812C064E159275B6DBBDBA6D6A5991A54CCFCC23459320C6513572"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7528
Expires: Sun, 23 Oct 2022 12:55:52 GMT
Date: Sun, 23 Oct 2022 10:50:24 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.27 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbdb8b66c705a7b996496d780f50c00b5 403ae92039fcc933870f51f913f78ccaf9652256 c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 23 Oct 2022 09:52:50 GMT
Expires: Sun, 23 Oct 2022 09:57:29 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4E-j6NNATehCPnBguwC502kOlD-Cn3v0UGRaWp_46mXMgu3tY3S2rw==
Age: 3454
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashae56efd62a0d9249d98573172eb8b28b 5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28 82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7579
Expires: Sun, 23 Oct 2022 12:56:43 GMT
Date: Sun, 23 Oct 2022 10:50:24 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4aNAvXRyMm5r77XYQJskiVXVx7t7kqJWgpydDD8sxqnycZIOhso76enb0hr4UCkVjOZZoIB6Irk=
x-amz-request-id: V4GJ4P3VZCMEMZT5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 23 Oct 2022 10:37:56 GMT
age: 748
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 10:50:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/cart?cart_token=ab884ea0-52aa-11ed-9e7a-023670863dd2-6354f7d1644db&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=71eeef40-52aa-11ed-a883-597aa4818961 | 170.82.174.30 | 301 Moved Permanently | 134 B |
URL HTTP/1.1seguro.caixamisteriosa.net/cart?cart_token=ab884ea0-52aa-11ed-9e7a-023670863dd2-6354f7d1644db&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=71eeef40-52aa-11ed-a883-597aa4818961 IP170.82.174.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /cart?cart_token=ab884ea0-52aa-11ed-9e7a-023670863dd2-6354f7d1644db&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=71eeef40-52aa-11ed-a883-597aa4818961 HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 23 Oct 2022 10:50:24 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.caixamisteriosa.net:443/cart?cart_token=ab884ea0-52aa-11ed-9e7a-023670863dd2-6354f7d1644db&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=71eeef40-52aa-11ed-a883-597aa4818961
X-GoCache-CacheStatus: BYPASS
Server: gocache
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.27 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 23 Oct 2022 10:43:40 GMT
Expires: Sun, 23 Oct 2022 11:21:40 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4cPMQ_zHt8E_zboa_p1cd5w93NepnFbrgRlmNNX_ZQ1qNNUnmxJ1UA==
Age: 404
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash8877477edd5f851967d7a29942cb8908 6ba9eb153d9d037c24967867adca99c66a3d42b8 10cb9f39b77380fd38096661cab6a7ed213970b3fc85d3a3a115839db7a06793
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "10CB9F39B77380FD38096661CAB6A7ED213970B3FC85D3A3A115839DB7A06793"
Last-Modified: Sat, 22 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16187
Expires: Sun, 23 Oct 2022 15:20:11 GMT
Date: Sun, 23 Oct 2022 10:50:24 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash60d5d7cce6c32a6bdaf0d4c92ec93a1a cd29edee660366b41749cfd206bdc08fb421449c fb90c4cc44b32e4ca4a7d1533bbf4a2fd5c482dda5d232f1be2334f3cefbbb0e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5740
Cache-Control: max-age=168719
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:24 GMT
Etag: "6354f613-1d7"
Expires: Tue, 25 Oct 2022 09:42:23 GMT
Last-Modified: Sun, 23 Oct 2022 08:06:43 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 54.189.157.130 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.189.157.130:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MzVmUyWNcmMlIc6kNU8kyw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: J35A1Wp8zqAzTKUvc2quNx9JIdo=
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf1b833a135e4d839859e4994f349bb6c 399b607015c4d9200df20084c7396591007dc995 28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12316
Expires: Sun, 23 Oct 2022 14:15:42 GMT
Date: Sun, 23 Oct 2022 10:50:26 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf1b833a135e4d839859e4994f349bb6c 399b607015c4d9200df20084c7396591007dc995 28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12316
Expires: Sun, 23 Oct 2022 14:15:42 GMT
Date: Sun, 23 Oct 2022 10:50:26 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf1b833a135e4d839859e4994f349bb6c 399b607015c4d9200df20084c7396591007dc995 28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12316
Expires: Sun, 23 Oct 2022 14:15:42 GMT
Date: Sun, 23 Oct 2022 10:50:26 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf1b833a135e4d839859e4994f349bb6c 399b607015c4d9200df20084c7396591007dc995 28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12316
Expires: Sun, 23 Oct 2022 14:15:42 GMT
Date: Sun, 23 Oct 2022 10:50:26 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7a675ac-f55a-4071-867b-fffb2f9fabed.jpeg | 34.120.237.76 | 200 OK | 7.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7a675ac-f55a-4071-867b-fffb2f9fabed.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4df9a6ab2e2874f46f9a26da129ae848 c4c9898711e33fb02374657dd18df8a41c78b4cb e287d1b63e7644767f573e248f28ee610b2625691e5d42006c0595f7281a07d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7a675ac-f55a-4071-867b-fffb2f9fabed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7762
x-amzn-requestid: 5c275a39-95dc-4329-9483-44ca93719be2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aO1dKGS5oAMFR3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f6920-2b700b217832bcd257e0f619;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 03:04:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ShsGMLBfS7cs-LpXBQPQHWvf2ppuoPPIEVMDmaEjrGgoSHbz2z03Mg==
via: 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 06:27:20 GMT
age: 15786
etag: "c4c9898711e33fb02374657dd18df8a41c78b4cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d707e0f-487e-4d60-9095-919220ac939a.jpeg | 34.120.237.76 | 200 OK | 5.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d707e0f-487e-4d60-9095-919220ac939a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0ae6442b63de1e40cf33df80434401ad e9b1889e93d17e11aec51d610b38cbea22937eb3 5caa6653896a6444c22f4b560de7df98be23c1b97d8dbc950095a53fc778ab35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d707e0f-487e-4d60-9095-919220ac939a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5702
x-amzn-requestid: f59514ec-7e53-4f36-a8c2-3db852d24681
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aO4E_F4ooAMF7Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f6d52-45f71e5f22c0e7377e3b5f44;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 03:21:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: o0WpG-GXIQuUE8VYff28tktZMRRNEMlIivD1juJZCcxuc8z1c6uLDA==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 22:09:14 GMT
age: 45672
etag: "e9b1889e93d17e11aec51d610b38cbea22937eb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0856e94c-65e7-489a-95b5-cc37407bf90f.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0856e94c-65e7-489a-95b5-cc37407bf90f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash208445a6f07a7259b8a420c062a81998 50d9f1642c3c47504fb2d4086a40ae8fb9479b50 607a81c5d0210faaa103d09fba1e0b9dde333c5142969272b0b5351a779acfa4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0856e94c-65e7-489a-95b5-cc37407bf90f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12031
x-amzn-requestid: b15d6e4e-4880-4686-80c1-ba49f705631c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aFgJtHZHoAMFsMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634bad71-3ef572702125f3b32ceece12;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 07:06:25 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lH9TBIbvcDBvZlMi2a8yZ2iRcGCwJ7P0QoVvLVAjkCsVExNMi_UlRw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 10:54:02 GMT
age: 86184
etag: "50d9f1642c3c47504fb2d4086a40ae8fb9479b50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf1513b5-a33f-4b0d-b92b-c82ad8141527.jpeg | 34.120.237.76 | 200 OK | 8.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf1513b5-a33f-4b0d-b92b-c82ad8141527.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5cf985ceb648df52d3cf5eb47c7705bc 8b0c5f567e25d9bf54263bb3c60b12db225feb81 9c8551a2d891562e12b9a30966dbd9221a041669db0cbb4395d6fa56791ef0dc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf1513b5-a33f-4b0d-b92b-c82ad8141527.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8631
x-amzn-requestid: 536a4908-2fd7-4544-9159-ec2acc55a2bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: abRJZH2zoAMFYvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6354623b-4d76adc023701d0228f951d1;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 21:35:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -Xf9fXAuwq_a1cPwa_4I-Qs3j9PXzsdsywN6dq3eynclAjSFjwDuLw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 21:42:04 GMT
age: 47302
etag: "8b0c5f567e25d9bf54263bb3c60b12db225feb81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd19113d-c1df-4109-b7c9-1d4ed544d9d8.jpeg | 34.120.237.76 | 200 OK | 8.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd19113d-c1df-4109-b7c9-1d4ed544d9d8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash97e9c05ece38dedeaa752c612029c78d 715f72710799f828e2c06932c33919d8f23844f5 29408c0bd34660a836f59a7abb61c7c2b1f864b31194787ddf4d178314184b96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd19113d-c1df-4109-b7c9-1d4ed544d9d8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8639
x-amzn-requestid: e598ff88-e152-4b9e-af16-aa30dcf452a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aX-m5HlMoAMFvjQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6353115f-7f17a59522afc40e64ac216d;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 21:38:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FR2T_rEAFK6FgRKszDEcSGs25f5C2tooGqrAHPznpyCUiSH49oaKzA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 22:09:52 GMT
age: 45634
etag: "715f72710799f828e2c06932c33919d8f23844f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa75f7b18-e0d1-4cfe-b763-83c991def199.webp | 34.120.237.76 | 200 OK | 4.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa75f7b18-e0d1-4cfe-b763-83c991def199.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashbed49abb7a64c9f0717ac283b30bff8b 0f9e4ab8e7ceff21752ea83a243431fc4c78a4e3 ddb5ed6e7b818593ac9819be0a8d376e26ef3b45b417f00ce1d7dbee47465bec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa75f7b18-e0d1-4cfe-b763-83c991def199.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4746
x-amzn-requestid: fa85cf46-7cea-439e-92d5-db3875ff4479
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aIQpNFk5IAMF16Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634cc7d4-245cdd691d0c415d508421ce;Sampled=0
x-amzn-remapped-date: Mon, 17 Oct 2022 03:11:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9HA91S_J8H29VveOfTAUu_c3fXBOdHzbdpISQ23yhzbEof4gc2_lAw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 21:50:13 GMT
age: 46813
etag: "0f9e4ab8e7ceff21752ea83a243431fc4c78a4e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash55c89f6ced634370af24a55e9618ffcd 573de30de52a8fc3608cdd318164b5186f01ca6e 715d15160a5852c76b0fe7892d718595c2540afb56920a7d0bebf097461612db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 613
Cache-Control: max-age=99157
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:27 GMT
Etag: "6353fa63-117"
Expires: Mon, 24 Oct 2022 14:23:04 GMT
Last-Modified: Sat, 22 Oct 2022 14:12:51 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash859a76cf6869271ea27323554d7340a8 bf89eda4aefad41bd859ab31b102df7919d8da2a 3475ea280cf40975f959636eb60c68698fade9666948824d5a8e2adc766377fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 613
Cache-Control: max-age=146299
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:27 GMT
Etag: "6354b289-116"
Expires: Tue, 25 Oct 2022 03:28:46 GMT
Last-Modified: Sun, 23 Oct 2022 03:18:33 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 278
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/images/caixa-misteriosa-edicao-limitada-62e956810efef-thumb.png | 104.26.2.88 | 200 OK | 84 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/images/caixa-misteriosa-edicao-limitada-62e956810efef-thumb.png IP104.26.2.88:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash5eaff5c20082c766b3e916f10844ef99 05a0f8270e7d9436752eb000d362d28f8e3ae290 b2edbb82aee3b294b39c705a5c2b417191c833752c9342704893b91bc37648a2
GET /assets/stores/caixa-misteriosa9/uploads/images/caixa-misteriosa-edicao-limitada-62e956810efef-thumb.png HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:27 GMT
content-type: image/webp
content-length: 83860
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=117743
content-disposition: inline; filename="caixa-misteriosa-edicao-limitada-62e956810efef-thumb.webp"
etag: "c5a167df4f433c249cb974e00f55de3f"
last-modified: Tue, 02 Aug 2022 16:53:23 GMT
vary: Accept
x-amz-id-2: /oMTYHqcSklesdKPKbBqfhnc/nIAxEehiqdeyi8fEtRbq+PaNZuoZ40tdIKnniLWU380KjU4nsM=
x-amz-request-id: 9EBPWWMV9XFK63VT
x-amz-version-id: wxueA8hLCjwh4ss.lHtzFO4OeJGoc8G3
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hRuiGpi8qyr6JLmTaSBMYuvQM0FqP96dBujCqgBqizQrVKoWV6eKmd6ywo%2FfW%2F%2BRCaXfmVaEdufb3%2Blbui%2FcfziKJa6DKF0ZRgO70rT0PL%2B2ZC43CMmt1JH5FljeH4OUGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75e9e972ed2ab529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg | 104.26.2.88 | 200 OK | 8.6 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg IP104.26.2.88:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3\012- data Hash53f8716e4000def629db36d31f645cb1 db8c371fc52e7ab263634119821620d9f03c814f 2efb36089e2b052421b3c15c6c159fae1924bc1a1c2209ccd82f4d0ccc13f1c2
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e9636950b51.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:27 GMT
content-type: image/jpeg
content-length: 8648
cf-bgj: imgq:100,h2pri
cf-polished: origSize=9336, status=webp_bigger
etag: "8220257871413a2a14ab3d6b964f6abf"
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-id-2: 9BEGGAOO+B86AzP/jdJYfYW3gW6HDOBQhoYuK3o7sBLovtVBxar+XO8k9yBr/iNISNKlU7dtku4=
x-amz-request-id: 8S43FZKMHQDJCJD6
x-amz-version-id: HfrtBnZFXQLQQPWMe2SSfAQyOFUNAZMA
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5412
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G%2FUdwwZ5xgIwEtSxjcUBGby9G8uoKjyLVNysrNSrngxvEAEdIDbf6HgvfZKFPZXm%2FbBkiqTJNUGQEgi6p4l9NX0v1aXKqHdaXXJKexhVvK1LW9twDhxZgDecEeMasDw5XA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75e9e972fd32b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg | 104.26.2.88 | 200 OK | 9.5 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg IP104.26.2.88:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3\012- data Hash958180500c499802b8c9d1c832f7945c d1884b093666b9e6813b79471311a75c2304005a 1466c5bac4447ac52bc4780d617c80e4872b53df4a63c86a42ac0e1e93cc572e
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e9635ebe532.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:27 GMT
content-type: image/jpeg
content-length: 9510
cf-bgj: imgq:100,h2pri
cf-polished: origSize=10320, status=webp_bigger
etag: "04572c76d141851db42a1a6e13d38b71"
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-id-2: 4e+NszsEQLnKYEtP5LfUaAUHPKbl9iowFFh6sIWjUwZPQFR7vuZWuxpdPzcSmCBqjJdqtnZm2fs=
x-amz-request-id: 8S434WDWQB8A5KA0
x-amz-version-id: AatCE1mkRL6z1GEYqQay5AQrkz_0GlQk
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5412
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KPD3rr3dJ6pVcGLCthdVItDuDXdodv1f%2FPyqaEpBvE%2FlwRlhNhGI5oagqC6xiLOtjXmTWdmVVAG0uocJkB5STrm%2FAzb4IcVZ605TvMywK1PbyjlUB%2BcI3%2BjUB2IqHhX%2F9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75e9e972fd35b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg | 104.26.2.88 | 200 OK | 8.2 kB |
URL HTTP/2images.yampi.me/assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg IP104.26.2.88:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3\012- data Hash9074436dac9f6d61bccb042c185adff3 b9d1247ca03baccc0203747de619c3579ac299fe b0a54814b8b0f5abf1f1c43941cfdc945fb105f0ad91962af3df15b2a98d1b24
GET /assets/stores/caixa-misteriosa9/uploads/testimonies/62e96354775ca.jpeg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:27 GMT
content-type: image/jpeg
content-length: 8208
cf-bgj: imgq:100,h2pri
cf-polished: origSize=8822, status=webp_bigger
etag: "64d0d3cf4cf12b175c2bfde2b119fd73"
last-modified: Tue, 02 Aug 2022 17:48:39 GMT
x-amz-id-2: kpYdRAWThlOvzdGFOaofox1Xw/BYGm7zIz2kOBJzG9yrcmu2SnTuXQkfDl0tMd+Cduek85ciemc=
x-amz-request-id: 8S484Z5WGKS5CG4Y
x-amz-version-id: xeytj2tGe9ZE1VBrjh._yFfBsbQCZQQP
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5412
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BX6B17M2cGRnDRRPNXQ80iO%2BsEGCcQiPPb0kO16eE7%2Bx%2BYtI845hnZuRH7IIXI7Ucr70zBHur0%2FB0DtbXfo3ohmrVyUQ5YGEqm%2B9R8EFk7GRqHASooY56%2BLXakSKI1fKEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75e9e9730d4fb529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashea20460028066b7fba2f10b51d883192 a73b8263a4477aceeda349c7beff7050de9df38b f933a7ff2c6ec9189ba29fdf09da9125ac59d9c03b4a14e14e9f1b5fa5322b1c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 471 B |
IP142.250.74.35:0
Hashaaa80dd51eaef47c83770b112b9e286c bfd081a3ad2267e522a20b45695cd8a0860b4ad3 049ff9ce34cf51144dd1c80c0155d98ef0fa3c50234431de3c3c691624f840bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ | 142.250.74.35 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/T24lFG9LNcQ IP142.250.74.35:0
Hashf2b9400b624b9638e0fe687848f5488f 110f60a0b5d0c59fe2548837cd33fa1824137ae5 fc2f4633ddeae05c5f5d0a48fcb68c87311514105083188665eb80df317b2dc3
POST /s/gts1d4/T24lFG9LNcQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC | 142.250.74.164 | 200 OK | 585 B |
URL HTTP/2www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC IP142.250.74.164:0
File typeASCII text, with very long lines (884), with no line terminators Hash1c688e8b7ed088521762f89cbd72e218 1583739e93dd4910cac00db5bfa2ad3a2c8856f7 12d5e7dbe1cc3027cb2663e42a4cd5654433c5bf1d4e370dfefb19475ec67f5c
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 23 Oct 2022 10:50:27 GMT
date: Sun, 23 Oct 2022 10:50:27 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash859a76cf6869271ea27323554d7340a8 bf89eda4aefad41bd859ab31b102df7919d8da2a 3475ea280cf40975f959636eb60c68698fade9666948824d5a8e2adc766377fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 613
Cache-Control: max-age=146299
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:27 GMT
Etag: "6354b289-116"
Expires: Tue, 25 Oct 2022 03:28:46 GMT
Last-Modified: Sun, 23 Oct 2022 03:18:33 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 278
|
|
| js.upnid.com/v0.js | 130.211.14.112 | 200 OK | 8.3 kB |
IP130.211.14.112:0
File typeUnicode text, UTF-8 text, with very long lines (23050) Hash49fa980f95bb3bbff8b7a2857a727d5d 9e931943f03079522318820948018d78610eaca4 4e295d58275798f67bf7b9c48b8cae16238c9a3dabca082238e7bab8eaa34943
GET /v0.js HTTP/1.1
Host: js.upnid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin
content-encoding: br
via: 1.1 google
content-length: 8310
date: Sun, 23 Oct 2022 10:40:14 GMT
age: 613
last-modified: Tue, 19 Jan 2021 20:16:07 GMT
content-type: text/javascript; charset=utf-8
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash859a76cf6869271ea27323554d7340a8 bf89eda4aefad41bd859ab31b102df7919d8da2a 3475ea280cf40975f959636eb60c68698fade9666948824d5a8e2adc766377fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 613
Cache-Control: max-age=146299
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:27 GMT
Etag: "6354b289-116"
Expires: Tue, 25 Oct 2022 03:28:46 GMT
Last-Modified: Sun, 23 Oct 2022 03:18:33 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashea20460028066b7fba2f10b51d883192 a73b8263a4477aceeda349c7beff7050de9df38b f933a7ff2c6ec9189ba29fdf09da9125ac59d9c03b4a14e14e9f1b5fa5322b1c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash924935dfe678e1cafb56906ef15defec 063dc4e38a869415d29ff059c0e173966c0c96dd 12045f462e3aa1fa3d2c97f1c3c67951dedc6410db5ce75c1907de5beff81bf4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737 | 104.26.2.88 | 200 OK | 87 kB |
URL HTTP/2awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737 IP104.26.2.88:0
File typeASCII text, with very long lines (65536), with no line terminators Hash1d70e005a2a7ec0c54dccd8a053970b6 c9347b1c0567fb30a4805a5dd12da701fa2f1889 adc67ba9c31992a10781322b56a310b274c8ebb9648623ee0cb179f2b609513e
GET /checkout/build/mix/assets/js/app.js?id=d8423ccfea4fbb2f406cea92b04a8737 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:27 GMT
content-type: application/javascript
x-amz-id-2: t+pRi2mpVP/HsO6DPUQ+MwgdDbnyFwdhufrM6mVKoFcR90+4pnZEZq1LTqPIV+vqrgSsO53OeDg=
x-amz-request-id: 8PNW7DEJ2HZN8VAP
last-modified: Mon, 17 Oct 2022 16:57:49 GMT
x-amz-version-id: XNhG7PkF_3JzSvKaF.22AtqXuyl0wmHr
etag: W/"29013ef444dc3b59ed77c986db2a8f06"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5413
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2MXIgY450SFv6i5NC4t%2B2WS%2BHXU7CBMjAtmkyOBceO8BkvhBG2ZxRgGxMM9v0W9B6ZJrgrddUGRSiFrhdclRmW4fm8CcA%2FYsUXVz84teq1arTHgF%2BwMo70GLC11vypmoxfJbRvuRD1Tf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75e9e9731d5bb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0 | 104.18.1.53 | 200 OK | 77 kB |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0 IP104.18.1.53:0
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:27 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: xIw7xyrWh7tMbAn3EEHH4MwVIvngCdMJZzqEwyRpxw93epYCebm75FVAa7Fs9PX4Xh3seDuVm+Y=
x-amz-request-id: 0QAV3XV18SQBTZWG
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: HIT
age: 5412
expires: Mon, 31 Oct 2022 10:50:27 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
server: cloudflare
cf-ray: 75e9e9741b440b61-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash9f84a11cd39c014fffc187f2a8b0d8df 1875e117dec3fc707db902e87df9ec691b2cc763 bf0c0ac413147f09128a7af625499402eea897c3efad12828347efaba9b9d3a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 | 216.58.207.195 | 200 OK | 34 kB |
URL HTTP/2fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data Hash848cd2ecd011428969dc6b90431bc482 6b1a7b562a56bd54510e0f6f95e26babca331a1b 981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:08:19 GMT
expires: Tue, 17 Oct 2023 21:08:19 GMT
cache-control: public, max-age=31536000
age: 481328
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash9f84a11cd39c014fffc187f2a8b0d8df 1875e117dec3fc707db902e87df9ec691b2cc763 bf0c0ac413147f09128a7af625499402eea897c3efad12828347efaba9b9d3a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.156 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.156:0
Hashc2940e7c0f5e0b177e220550d3cea1c3 96187ee927ce8d102cdf5b5404fd25df7b7e1b4f 1cd02bc9f0ccbc334455ec4dbefd88740be45dd0274d35d88fc42eac5254c95a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=155186
Date: Sun, 23 Oct 2022 10:50:28 GMT
Etag: "6354c7b9-1d7"
Expires: Tue, 25 Oct 2022 05:56:54 GMT
Last-Modified: Sun, 23 Oct 2022 04:48:57 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KCzicvX1_W357HI8gzkFvs0pj_inCoEgJjYvy7cMO7qk3m-2tUHXiA==
Age: 4077
|
|
| seguro.caixamisteriosa.net/cart/recomm | 170.82.174.30 | 200 OK | 1.4 kB |
URL HTTP/2seguro.caixamisteriosa.net/cart/recomm IP170.82.174.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hashe8449289bd4d6360fae92ab21c597882 118d030cdea4a56636646114a82a94e80710e2fb b537fe864cd80b485a6d29036a1707c1794988d3ae2ad8d37291fd5391379990
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /cart/recomm HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjdmMDFjZTI4YTI0YzA5ZDAiLCJ0ciI6ImYyNDE5N2I4NGJlNzhjOGMzN2Y5NzRhOGU3NDk5MTc5IiwidGkiOjE2NjY1MjIyNDQwMjl9fQ==
traceparent: 00-f24197b84be78c8c37f974a8e7499179-7f01ce28a24c09d0-01
tracestate: 2935249@nr=0-1-2935249-1134170823-7f01ce28a24c09d0----1666522244029
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6InhERGpLV28rOTJ4OG5WVURCdjhcL0JRPT0iLCJ2YWx1ZSI6InhQdkc0VEtHM28wXC9ZWU5UVnM1M28xb3pOcE9Ub2NrSlhXYkdLWEdIUjZSQ3pxMUg4eWdEZm5nU1RLZjVVMVAyQVg5Z1NCT3pibWcxUUpJc2U1U1JyQT09IiwibWFjIjoiMTkxZWNhMWJmOTk2MjYwNzhlNDMwMmQyMWVkNjFmNjI3ZjI4YzAxNWYxNmM3MTM3NTUwZWRhZTdlYTYxNjAxZiJ9; bubbstore_checkout=eyJpdiI6IlhWV1AwTWVHVmFJaXp0d3ByNjJvakE9PSIsInZhbHVlIjoicVB2ZmwybUdyRDhYRXpDOWZMUWVLcUREWGJGRUxGQU5qMFBxSzhSVUlRR1RiK1hCWlNqSDIrRjdoQ1NBMERBc2pBY01PN3FzSzEyemlrSnVuc1BcL0dRPT0iLCJtYWMiOiI4ODVmZDI5OTZhOThlNjRkZWQ3YmU5OTc3YzMxMjYwMTc1ZWM1N2Y2YzhjY2Y2YjQ3NWEyMjFmYzM3ZDdjODFjIn0%3D; caixa-misteriosa9_cart=eyJpdiI6IkZCZ1VuSWpLNE4rZDAyNDZsbm43Q1E9PSIsInZhbHVlIjoiK1A3cDB3ajZmM3F3SDZlRnZ0d1QzeVd5eWVcL3BMSVRkdlc3blAwMkVVbFBNT3MxMmZnUEpNRnZyN3hBTm1HNjlJSU5YOEFXbXhTYzZFQno4VGlsRHNRPT0iLCJtYWMiOiI5YTdiZWQ4OTJhM2EyYjczMDMwNWQ4ZDk5MzQyZWNjY2FhMWI5ZGEzZTJlYWMzM2QzY2Y3M2ViNGYzYzBmZWQyIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:28 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IlRiWGw1eEl5NUJzUXlCRDJ1MmJLVUE9PSIsInZhbHVlIjoiTjZFT0NXWW5VdEM4T3kyRHRyRW5sd3dDSjVBUFFUOExLVVBvNzRpNUFmUmNlbWd4UjVEZDNzMnRmZG00YmFNeTcrQSszRGNiRDZ0b00yMFdLYkt3REE9PSIsIm1hYyI6ImY2MmNlODFkYzBiYTRmMzg0NTg4NDU2YTFlMDE0MWFjNGM5Mjk4NDFiYjJhZDI1NzRjNWEyMDJjNjRmMzE2N2EifQ%3D%3D; expires=Sun, 23-Oct-2022 13:50:28 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IndvWCttSkZsT3ZnTlhCYzhWSGxxaGc9PSIsInZhbHVlIjoiY2JnWFwvVzlOOUY3TkNjZDBzbDNkWnVvRVVUTHQrdGJkWFdLcG01VE8zVEc5Y1FNaUpvNlgyOFhFOHJuQm1zNlZDY3d5YWYyNEw4TzV1N3o0XC90SitoQT09IiwibWFjIjoiNDllODMxZGJhMDYzY2IxMGQzM2M2YmVlOTEyZWI3MDk4MGE1YTRmYmQ0N2U5Y2U2NmRkYzhlZjg2NGIyZjQ3YSJ9; expires=Sun, 23-Oct-2022 13:50:28 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashaaa41c3017784be7bfe3937bb4975afb 9c2314e6f23bb7d42c71b334b32abf87ab59e314 1e715af11344f63c3a22960250d1f8d6bcbd0f262adc34a5fab2652840406a17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5566
Cache-Control: max-age=140481
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:28 GMT
Etag: "63548877-1d7"
Expires: Tue, 25 Oct 2022 01:51:49 GMT
Last-Modified: Sun, 23 Oct 2022 00:19:03 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash05ee461624e2ec37f65e859afe6543ba b99dcb558535d3d35d140e730aeeb41587622b30 576b3bf619d0a152889cc44165a229ad0100ccc319cf4d9044b2f26d4b676658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| connect.facebook.net/en_US/fbevents.js | 31.13.72.12 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP31.13.72.12:0
File typeASCII text, with very long lines (64348) Hash71875f848896ee82a106224e048bd060 277a624e507dff2cd9cff104aa0c5618ca76e105 a22635e404a419027fc88eee705d254910d05d481953733d5e1fda4bc6ab3c5b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: xU+bZKukTvTw16A8d7SJ30vgzPuE+N8lywCttH8eg5eV/lD5d2d822CKhkTllpDGNSPyPVxeF9yDzn76AWYeZQ==
content-length: 27027
x-fb-trip-id: 1904183273
date: Sun, 23 Oct 2022 10:50:28 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 23 Oct 2022 10:41:09 GMT
expires: Sun, 23 Oct 2022 12:41:09 GMT
cache-control: public, max-age=7200
age: 559
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js | 142.250.74.163 | 200 OK | 402 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js IP142.250.74.163:0
File typeASCII text, with very long lines (608) Size402 kB (401632 bytes) Hashaf538c6d81d575aac0416963bea7b208 22a080678c77639132902a5ef3ead0b4d06b3120 396c964c85a9b2e9a380bb18b1f6d51960f2bc7f7d4fd2bcf4754fc0ac443cd0
GET /recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 401632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Oct 2022 09:35:32 GMT
expires: Sun, 22 Oct 2023 09:35:32 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Oct 2022 20:02:07 GMT
content-type: text/javascript
age: 90896
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/e/t | 170.82.174.30 | 200 OK | 491 B |
URL HTTP/2seguro.caixamisteriosa.net/e/t IP170.82.174.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash279e7d6619ae56e0a17d8c938c2050b7 92bf489f172b42bed7c45624433a0f833b82f330 498471b371d2a3473eaf1b7187c1e9e01df91edc25ec9e38dcd975c8f4ab00da
Analyzer | Verdict | Alert | fortinet | Phishing | |
POST /e/t HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjFiMjcxMWIwMTUxNWE1ZmQiLCJ0ciI6ImQ1MjBkYWZjYTc0ZjYwYjM3Njk3Nzc1YTUyNDgwODUxIiwidGkiOjE2NjY1MjIyNDQwMzd9fQ==
traceparent: 00-d520dafca74f60b37697775a52480851-1b2711b01515a5fd-01
tracestate: 2935249@nr=0-1-2935249-1134170823-1b2711b01515a5fd----1666522244037
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 376
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6InhERGpLV28rOTJ4OG5WVURCdjhcL0JRPT0iLCJ2YWx1ZSI6InhQdkc0VEtHM28wXC9ZWU5UVnM1M28xb3pOcE9Ub2NrSlhXYkdLWEdIUjZSQ3pxMUg4eWdEZm5nU1RLZjVVMVAyQVg5Z1NCT3pibWcxUUpJc2U1U1JyQT09IiwibWFjIjoiMTkxZWNhMWJmOTk2MjYwNzhlNDMwMmQyMWVkNjFmNjI3ZjI4YzAxNWYxNmM3MTM3NTUwZWRhZTdlYTYxNjAxZiJ9; bubbstore_checkout=eyJpdiI6IlhWV1AwTWVHVmFJaXp0d3ByNjJvakE9PSIsInZhbHVlIjoicVB2ZmwybUdyRDhYRXpDOWZMUWVLcUREWGJGRUxGQU5qMFBxSzhSVUlRR1RiK1hCWlNqSDIrRjdoQ1NBMERBc2pBY01PN3FzSzEyemlrSnVuc1BcL0dRPT0iLCJtYWMiOiI4ODVmZDI5OTZhOThlNjRkZWQ3YmU5OTc3YzMxMjYwMTc1ZWM1N2Y2YzhjY2Y2YjQ3NWEyMjFmYzM3ZDdjODFjIn0%3D; caixa-misteriosa9_cart=eyJpdiI6IkZCZ1VuSWpLNE4rZDAyNDZsbm43Q1E9PSIsInZhbHVlIjoiK1A3cDB3ajZmM3F3SDZlRnZ0d1QzeVd5eWVcL3BMSVRkdlc3blAwMkVVbFBNT3MxMmZnUEpNRnZyN3hBTm1HNjlJSU5YOEFXbXhTYzZFQno4VGlsRHNRPT0iLCJtYWMiOiI5YTdiZWQ4OTJhM2EyYjczMDMwNWQ4ZDk5MzQyZWNjY2FhMWI5ZGEzZTJlYWMzM2QzY2Y3M2ViNGYzYzBmZWQyIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:28 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IitsM3ZMY2dTeGJmM0VXTEx0NU9xWXc9PSIsInZhbHVlIjoiSHcweFFBZFJLZXFwbzlDQUN3V3NIVlk4WVhTclJuQ1VVS3BycHhcLzFGQ1VQb01zVWFwRUd4N3hcLzBcL21XK0tEeFRYSnB0OXFMMnQ1Q29UcHJQMndrb1E9PSIsIm1hYyI6ImU1NGU5NWJjMTZmMDk2OWU3MzZiNGI4MzU4MWNkMGM0N2VhZjIwYzM5ZjBmNDY2ZDRkYjA5YzIyYmI4OTJkZDkifQ%3D%3D; expires=Sun, 23-Oct-2022 13:50:28 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlR6WEtMbGJpM0JUVzFHdTdtcXkxdXc9PSIsInZhbHVlIjoicm8zclhXRlNCWnJDRTVtb05zK0tneFJwdFUxTDVyXC8rV2pzOExLNEtZeExrTUhCRzh4b0s2WE9FUHRcL011akUrMjJMUEhoMXJEcm5naVwvQzVucndyNkE9PSIsIm1hYyI6IjdiZTEwZDRmNjcwYTRjODAxYTZjOThjZTZiNWM4ZjFiNWFkMjZiZDA4MWU2Y2UyMmVlNzA3OTJjNjg2NDVhNDcifQ%3D%3D; expires=Sun, 23-Oct-2022 13:50:28 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApWDAEEHh5UFUMCVQRXVgMBBFAGDAEDUgJbFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/j/collect?v=1&_v=j98&a=1075363889&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Caixa%20Misteriosa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=596751077&gjid=192770079&cid=468880802.1666522245&tid=UA-45745009-5&_gid=644318419.1666522245&_r=1&_slc=1&z=1730416210 | 142.250.74.174 | 200 OK | 4 B |
URL HTTP/2www.google-analytics.com/j/collect?v=1&_v=j98&a=1075363889&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Caixa%20Misteriosa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=596751077&gjid=192770079&cid=468880802.1666522245&tid=UA-45745009-5&_gid=644318419.1666522245&_r=1&_slc=1&z=1730416210 IP142.250.74.174:0
File typeASCII text, with no line terminators Hash9e92e190700c1af4539b40c2171320a9 209bcdb79e6067b51091ce8586d4b977f25b67d8 aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j98&a=1075363889&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.caixamisteriosa.net%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Caixa%20Misteriosa&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=596751077&gjid=192770079&cid=468880802.1666522245&tid=UA-45745009-5&_gid=644318419.1666522245&_r=1&_slc=1&z=1730416210 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://seguro.caixamisteriosa.net
date: Sun, 23 Oct 2022 10:50:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash05ee461624e2ec37f65e859afe6543ba b99dcb558535d3d35d140e730aeeb41587622b30 576b3bf619d0a152889cc44165a229ad0100ccc319cf4d9044b2f26d4b676658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashe082919080a1a229ac3eec9b7b857933 a5847abc620bd00e87afda17746b0a590e0c9464 ca7fa279357206e9e419d5b80281cc14bc5666b20ef262560dea86d31132c729
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=468880802.1666522245&jid=596751077&gjid=192770079&_gid=644318419.1666522245&_u=IEDAAAASAAAAAC~&z=2056954731 | 173.194.222.154 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=468880802.1666522245&jid=596751077&gjid=192770079&_gid=644318419.1666522245&_u=IEDAAAASAAAAAC~&z=2056954731 IP173.194.222.154:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-45745009-5&cid=468880802.1666522245&jid=596751077&gjid=192770079&_gid=644318419.1666522245&_u=IEDAAAASAAAAAC~&z=2056954731 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.caixamisteriosa.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 23 Oct 2022 10:50:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashe082919080a1a229ac3eec9b7b857933 a5847abc620bd00e87afda17746b0a590e0c9464 ca7fa279357206e9e419d5b80281cc14bc5666b20ef262560dea86d31132c729
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 10:50:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png | 52.95.164.22 | 200 OK | 191 kB |
URL HTTP/1.1s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png IP52.95.164.22:0
File typePNG image data, 1628 x 1083, 8-bit/color RGBA, non-interlaced\012- data Size191 kB (190952 bytes) Hash42653495a27a747f3deff05ead6ab0f1 7f774f610fb12f312daeb5d49c5cc88af7dd1dc1 3ce6c07440b880752a44c423832b8a6691d7b22898871e08b38f0abe62b92fc4
GET /king-assets.yampi.me/dooki/62e95d312bc5a/62e95d312bc60.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: bbx4gp1Np8FlSn/hJffIosy8egg++pwfizm4uni6/T7WrR5s84qVfwHZJPpzsoDMwyr49Vuy0mI=
x-amz-request-id: VRBH2CSVRKV4AAND
Date: Sun, 23 Oct 2022 10:50:29 GMT
Last-Modified: Tue, 02 Aug 2022 17:21:54 GMT
ETag: "42653495a27a747f3deff05ead6ab0f1"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 190952
|
|
| seguro.caixamisteriosa.net/cart?cart_token=ab884ea0-52aa-11ed-9e7a-023670863dd2-6354f7d1644db&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=71eeef40-52aa-11ed-a883-597aa4818961 | 170.82.174.30 | 302 Found | 0 B |
URL HTTP/2seguro.caixamisteriosa.net/cart?cart_token=ab884ea0-52aa-11ed-9e7a-023670863dd2-6354f7d1644db&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=71eeef40-52aa-11ed-a883-597aa4818961 IP170.82.174.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /cart?cart_token=ab884ea0-52aa-11ed-9e7a-023670863dd2-6354f7d1644db&utm_source=google&utm_campaign=SMS%20Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=71eeef40-52aa-11ed-a883-597aa4818961 HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 23 Oct 2022 10:50:25 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.caixamisteriosa.net/checkout/payment?cart_token=ab884ea0-52aa-11ed-9e7a-023670863dd2-6354f7d1644db&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=71eeef40-52aa-11ed-a883-597aa4818961
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6ImdcL0hnNjRoNjNcL2Z4RkRyaHJVdHVwUT09IiwidmFsdWUiOiIrWWdHcUQxT2xWZk5DdTBhMjFLazlMNXhLZ3YzTHl4SXpHWFFtcWRra0oyeDV1Q1wvNDcybDgwYjN1QllSXC9JTGJqV3NQQ2w5RVlwdlwvSDVMVlFVYk9Ndz09IiwibWFjIjoiMGVkMTcwYzY3M2NkYTc5YzMyYzQ4MjQ0ODcwMjIzYjQzYTg3NjZiM2E1Y2IyODQzMWZmYjcxM2NmMjc0ZWIzNSJ9; expires=Sun, 23-Oct-2022 13:50:25 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlVtcEk4azl4d2pBRkxIcTQ3cWQ4bWc9PSIsInZhbHVlIjoiZ0piOGRDTmt3MHY3cEJiQ2tNN0xXSzJTRE5NSEZnUGUxN2ZpV2ZBK0loMktyVEtzNlpBYTZ2ekxDSGt5QUhYZm9WeVZqTkFha1RRNVVYbGRvTXRnR0E9PSIsIm1hYyI6IjkwYjM2MDg4MmE1ZTdkZTQzMzU5MmRlNWM4ZDYzMzZmZmQxNTA0OTY4NmQwNDFkNTViMmI0OGEzNTJjYTNlZGYifQ%3D%3D; expires=Sun, 23-Oct-2022 13:50:25 GMT; Max-Age=10800; path=/; httponly
caixa-misteriosa9_cart=eyJpdiI6IkZCZ1VuSWpLNE4rZDAyNDZsbm43Q1E9PSIsInZhbHVlIjoiK1A3cDB3ajZmM3F3SDZlRnZ0d1QzeVd5eWVcL3BMSVRkdlc3blAwMkVVbFBNT3MxMmZnUEpNRnZyN3hBTm1HNjlJSU5YOEFXbXhTYzZFQno4VGlsRHNRPT0iLCJtYWMiOiI5YTdiZWQ4OTJhM2EyYjczMDMwNWQ4ZDk5MzQyZWNjY2FhMWI5ZGEzZTJlYWMzM2QzY2Y3M2ViNGYzYzBmZWQyIn0%3D; expires=Fri, 28-Oct-2022 10:50:25 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/checkout/payment?cart_token=ab884ea0-52aa-11ed-9e7a-023670863dd2-6354f7d1644db&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=71eeef40-52aa-11ed-a883-597aa4818961 | 170.82.174.30 | 302 Found | 0 B |
URL HTTP/2seguro.caixamisteriosa.net/checkout/payment?cart_token=ab884ea0-52aa-11ed-9e7a-023670863dd2-6354f7d1644db&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=71eeef40-52aa-11ed-a883-597aa4818961 IP170.82.174.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /checkout/payment?cart_token=ab884ea0-52aa-11ed-9e7a-023670863dd2-6354f7d1644db&utm_source=google&utm_campaign=SMS+Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14c89e1a1a92eb05e5677a66dbd966c536060fae&customerToken=71eeef40-52aa-11ed-a883-597aa4818961 HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImdcL0hnNjRoNjNcL2Z4RkRyaHJVdHVwUT09IiwidmFsdWUiOiIrWWdHcUQxT2xWZk5DdTBhMjFLazlMNXhLZ3YzTHl4SXpHWFFtcWRra0oyeDV1Q1wvNDcybDgwYjN1QllSXC9JTGJqV3NQQ2w5RVlwdlwvSDVMVlFVYk9Ndz09IiwibWFjIjoiMGVkMTcwYzY3M2NkYTc5YzMyYzQ4MjQ0ODcwMjIzYjQzYTg3NjZiM2E1Y2IyODQzMWZmYjcxM2NmMjc0ZWIzNSJ9; bubbstore_checkout=eyJpdiI6IlVtcEk4azl4d2pBRkxIcTQ3cWQ4bWc9PSIsInZhbHVlIjoiZ0piOGRDTmt3MHY3cEJiQ2tNN0xXSzJTRE5NSEZnUGUxN2ZpV2ZBK0loMktyVEtzNlpBYTZ2ekxDSGt5QUhYZm9WeVZqTkFha1RRNVVYbGRvTXRnR0E9PSIsIm1hYyI6IjkwYjM2MDg4MmE1ZTdkZTQzMzU5MmRlNWM4ZDYzMzZmZmQxNTA0OTY4NmQwNDFkNTViMmI0OGEzNTJjYTNlZGYifQ%3D%3D; caixa-misteriosa9_cart=eyJpdiI6IkZCZ1VuSWpLNE4rZDAyNDZsbm43Q1E9PSIsInZhbHVlIjoiK1A3cDB3ajZmM3F3SDZlRnZ0d1QzeVd5eWVcL3BMSVRkdlc3blAwMkVVbFBNT3MxMmZnUEpNRnZyN3hBTm1HNjlJSU5YOEFXbXhTYzZFQno4VGlsRHNRPT0iLCJtYWMiOiI5YTdiZWQ4OTJhM2EyYjczMDMwNWQ4ZDk5MzQyZWNjY2FhMWI5ZGEzZTJlYWMzM2QzY2Y3M2ViNGYzYzBmZWQyIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
date: Sun, 23 Oct 2022 10:50:26 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.caixamisteriosa.net/checkout/address
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjJWM3dqdUNFcGRyeVowb3dWWVZycnc9PSIsInZhbHVlIjoiV2FTeG1YTFQ0eWVUNU9sVlJsZ3hJSFwvTUlrM2IwQjJBekIzRUlURHBTSXFOMW8ya2hzU0FzMFdsYmNKWnZTbjlSeENSWk4zOUg4bnBLZEtcL2FwY2tKdz09IiwibWFjIjoiZWFhMzQ2ZTkyZmZlNDgxZmE5ZWJiOGZmZWQ3NDQwYmI3ZDQ1M2Q0ZTNlNzQxN2Y2MzE3YWEzNTc5OTMwODczZSJ9; expires=Sun, 23-Oct-2022 13:50:26 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InFXS1JzcEFYRkd3eU5hMkdqU09TS2c9PSIsInZhbHVlIjoiall4ZW44d01vT2V1bXRBT0ZvTXp0MTAzUDh3SzN5bGJPYkJkK1V6RDJrMVBuWElBNGZMZDY4XC9yQWlaM2Nsc3dkcm8yek1DK1lwWmpnYkM0YnRaaHhnPT0iLCJtYWMiOiI4NDY1OTYxNWI2NDM0OWI3ZjA3OGJlYTZjNWQ0NWZhM2NlYTlmMzg1ZjUzMzYxMWYxOGY3NGRjYmM2ODEzMWM2In0%3D; expires=Sun, 23-Oct-2022 13:50:26 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
|
|
| awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690 | 104.26.2.88 | 200 OK | 0 B |
URL HTTP/2awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690 IP104.26.2.88:0
GET /checkout/build/mix/assets/css/app.css?id=d31e71e22fa577d1f19d2488ebd24690 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:27 GMT
content-type: text/css
x-amz-id-2: TFeFBTQKDxErsapH4IB7ougpeXwNtLz4KXLfWfoIopR0plLYMlCs3pIr+cvNYFac1pvCyb/CvhY=
x-amz-request-id: ZR1HAN8RMGGE4KE2
last-modified: Tue, 11 Oct 2022 12:54:40 GMT
x-amz-version-id: hAW8LRqvA2JD0cqLKO7P1m_k08cGos6U
etag: W/"d31e71e22fa577d1f19d2488ebd24690"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5413
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RLAWvMmvQ%2BDwXso5Gn4lXcr8lmGXbTR6JfjrDhF3NUGtV7T%2FsDdTDUjZ%2BmyT80xdQrjYk%2FmEk3DfX2xJonjd4%2FsmpkQviQHHYSDC4I7EcON7rmmB9NMf1XudiSbD4BI9yXnYnTfL9zu%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75e9e972ed18b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.yampi.me/jquery/jquery.js | 104.26.2.88 | 200 OK | 0 B |
URL HTTP/2cdn.yampi.me/jquery/jquery.js IP104.26.2.88:0
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:27 GMT
content-type: application/javascript
x-amz-id-2: QsmtL8/nVojRDvW+BmEU501Lw4WV+5t5F8LfBudh5F+R0IvsUm6Z0OFwq4bu2oMNhxhgi4mZaYc=
x-amz-request-id: VXXM8XE9A56HSH68
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5413
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=53ohoXghMSq9OxBGfjrs%2FlyFb6a1leaCsPK8wqZLai7XC0iJl7IFMd%2FlAraSl4ep4aIbn%2BNpgd5HP7LTsBtTKMyn8mGh%2BqmMgkB7BYVWHqB%2Bw%2BYTAkWA87VRjEyj%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75e9e9731d61b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap IP142.250.74.10:0
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 23 Oct 2022 10:50:27 GMT
date: Sun, 23 Oct 2022 10:50:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| seguro.caixamisteriosa.net/e/t | 170.82.174.30 | 200 OK | 0 B |
URL HTTP/2seguro.caixamisteriosa.net/e/t IP170.82.174.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer | Verdict | Alert | fortinet | Phishing | |
POST /e/t HTTP/1.1
Host: seguro.caixamisteriosa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjJkZDllMmZlZDJiZWY0ZTYiLCJ0ciI6ImI2ZTU4NjI0OGVkZmVjMmQzMjQ4ZTFhNDFlNzBjZTMzIiwidGkiOjE2NjY1MjIyNDQwNDF9fQ==
traceparent: 00-b6e586248edfec2d3248e1a41e70ce33-2dd9e2fed2bef4e6-01
tracestate: 2935249@nr=0-1-2935249-1134170823-2dd9e2fed2bef4e6----1666522244041
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 368
Origin: https://seguro.caixamisteriosa.net
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6InhERGpLV28rOTJ4OG5WVURCdjhcL0JRPT0iLCJ2YWx1ZSI6InhQdkc0VEtHM28wXC9ZWU5UVnM1M28xb3pOcE9Ub2NrSlhXYkdLWEdIUjZSQ3pxMUg4eWdEZm5nU1RLZjVVMVAyQVg5Z1NCT3pibWcxUUpJc2U1U1JyQT09IiwibWFjIjoiMTkxZWNhMWJmOTk2MjYwNzhlNDMwMmQyMWVkNjFmNjI3ZjI4YzAxNWYxNmM3MTM3NTUwZWRhZTdlYTYxNjAxZiJ9; bubbstore_checkout=eyJpdiI6IlhWV1AwTWVHVmFJaXp0d3ByNjJvakE9PSIsInZhbHVlIjoicVB2ZmwybUdyRDhYRXpDOWZMUWVLcUREWGJGRUxGQU5qMFBxSzhSVUlRR1RiK1hCWlNqSDIrRjdoQ1NBMERBc2pBY01PN3FzSzEyemlrSnVuc1BcL0dRPT0iLCJtYWMiOiI4ODVmZDI5OTZhOThlNjRkZWQ3YmU5OTc3YzMxMjYwMTc1ZWM1N2Y2YzhjY2Y2YjQ3NWEyMjFmYzM3ZDdjODFjIn0%3D; caixa-misteriosa9_cart=eyJpdiI6IkZCZ1VuSWpLNE4rZDAyNDZsbm43Q1E9PSIsInZhbHVlIjoiK1A3cDB3ajZmM3F3SDZlRnZ0d1QzeVd5eWVcL3BMSVRkdlc3blAwMkVVbFBNT3MxMmZnUEpNRnZyN3hBTm1HNjlJSU5YOEFXbXhTYzZFQno4VGlsRHNRPT0iLCJtYWMiOiI5YTdiZWQ4OTJhM2EyYjczMDMwNWQ4ZDk5MzQyZWNjY2FhMWI5ZGEzZTJlYWMzM2QzY2Y3M2ViNGYzYzBmZWQyIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:28 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjBvU3BMR0d1Q2xsemw5T1wvVU1MSTVBPT0iLCJ2YWx1ZSI6IlBTOEtsWmI3d1UrRVlZS1gwUWp6T1UzQklsK1pzZUFITE1KcmdFSDBQT05kdis1ZHZNZHc3TjRER2J1Z1o0Q0k5WDFvNE1ZZVZlNXFDa3BaYXJZdUp3PT0iLCJtYWMiOiI1YzEwNTA3MGYwNDgxZDhmM2Q3MmU4YTBmYjZiZmUwNzY1OTZhZjRiZDgyMWI3NWMxMjMzZDViNWRjOWQzZDgzIn0%3D; expires=Sun, 23-Oct-2022 13:50:28 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InBJMEJNdWVVRU5WQUpmWnl4K3pHd3c9PSIsInZhbHVlIjoiUldsZUc3TDc0enp1UjVMcGR5VjVWSGQ2MkJxSVwvXC9VNXJTWHprRmlZZFR1RW9aZzNoZW5QOXBSc1lMUEZBNkhQNGNcL3BpcHdQR0JGMUxkYUFCK0h3Qmc9PSIsIm1hYyI6ImI0ZGU5MDY4NDlkMzFkY2YzZGQ1NWYxN2M3ZjEzZjM5MGI0OGUxMDFjZmNlOGEzMzZmYjhhMDk2YWY0M2JlM2YifQ%3D%3D; expires=Sun, 23-Oct-2022 13:50:28 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApVCgANHh5UFUNQUQMBVlcEUAICWgVUVFVWFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.css | 104.18.1.53 | 200 OK | 0 B |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.css IP104.18.1.53:0
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.caixamisteriosa.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 10:50:27 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 5413
expires: Mon, 31 Oct 2022 10:50:27 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 75e9e972ce391c06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|