| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashb9adda4796e3cda8d92753c46964621c 5f1eba1f6085b23dea088a91fe6f8947172f9f62 a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16081
Expires: Wed, 07 Sep 2022 03:26:05 GMT
Date: Tue, 06 Sep 2022 22:58:04 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.115 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.115:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashb593eb39329cfe060d55be5e4a5405e2 78e46c1028e9f94f8569303ad2d90d7df13a059a 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 22:04:31 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iHghH2FQLqUvZLxKXvW8wdESkRoOWZDS30qr5bPyWA8ti6ItgqyWOg==
Age: 3213
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain | 143.204.55.35 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain IP143.204.55.35:0
File typePEM certificate\012- , ASCII text Hash742edb4038f38bc533514982f3d2e861 cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: B-ldI5nyAHAvw0yJ3XqiC_K4qElf4Rp6bgfsLwUsrL_1pdYOfBDlBg==
age: 78167
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 22:58:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| seguro.marazul-tech.com/checkout/payment?cart_token=shopify-dd31e788a3b2289212cad02d855d11d1&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=3ee1fee4e4ca533f2314dc8ac87cc17dffdea4e2&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10 | 170.82.174.30 | 301 Moved Permanently | 134 B |
URL HTTP/1.1seguro.marazul-tech.com/checkout/payment?cart_token=shopify-dd31e788a3b2289212cad02d855d11d1&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=3ee1fee4e4ca533f2314dc8ac87cc17dffdea4e2&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10 IP170.82.174.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /checkout/payment?cart_token=shopify-dd31e788a3b2289212cad02d855d11d1&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=3ee1fee4e4ca533f2314dc8ac87cc17dffdea4e2&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10 HTTP/1.1
Host: seguro.marazul-tech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Sep 2022 22:58:04 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.marazul-tech.com:443/checkout/payment?cart_token=shopify-dd31e788a3b2289212cad02d855d11d1&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=3ee1fee4e4ca533f2314dc8ac87cc17dffdea4e2&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10
X-GoCache-CacheStatus: BYPASS
Server: gocache
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.115 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.115:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 06 Sep 2022 22:38:18 GMT
Expires: Tue, 06 Sep 2022 22:48:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lXylE8xTUVpRUscncV-TvteTY99rODXdp7i0tQz1nBGnoTbOP6t_sA==
Age: 1186
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash63db942db8b6a5cd65c613609548c417 133ad9292df54c4d3fd9565c484fae813d83a8e3 f4dffc73dfba0c502fc09702a15e18a6d3459ddc46197db75c4efc400d0c7f92
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4DFFC73DFBA0C502FC09702A15E18A6D3459DDC46197DB75C4EFC400D0C7F92"
Last-Modified: Mon, 05 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6588
Expires: Wed, 07 Sep 2022 00:47:52 GMT
Date: Tue, 06 Sep 2022 22:58:04 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashe8952752ad4a452a575522a7eb737217 c5554fa2af05d7a7117032b0f99352de08988346 8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3852
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:04 GMT
Last-Modified: Tue, 06 Sep 2022 21:53:52 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 35.164.47.107 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.164.47.107:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: t7YIyQCTWyngPh8NXURx2g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 295JLGBAVN3amXUH1Xhya5mb/pE=
|
|
| awesome-assets.yampi.me/checkout/build/assets/css/app-f44a883bc0.css | 104.26.2.88 | 200 OK | 134 kB |
URL HTTP/2awesome-assets.yampi.me/checkout/build/assets/css/app-f44a883bc0.css IP104.26.2.88:0
File typeUnicode text, UTF-8 text, with very long lines (65534), with no line terminators Size134 kB (133865 bytes) Hashf44a883bc0053f8b6e3f2e277c57ba94 55b0c8ce27397adf2dde00dade512dd51e8a5227 4de73ff14ff621eb8699ce6f8d16011db1396da836d3f3c58b65fbcd7501365e
GET /checkout/build/assets/css/app-f44a883bc0.css HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:05 GMT
content-type: text/css
content-length: 133865
x-amz-id-2: iiKNJustH0CCZ5a6QV3nu9l0w55abVTuIhW6aZmtaWl2lTiesdV7yPUBVUWMwku5f4z6B95amAI=
x-amz-request-id: R7XSAPF5QSPDGPJG
cache-control: public, max-age=315360000, no-transform
last-modified: Tue, 06 Sep 2022 18:09:42 GMT
x-amz-version-id: 5d8O9v6VyeU6klY2wk2zkN3NliDvHubb
etag: "f44a883bc0053f8b6e3f2e277c57ba94"
cf-cache-status: HIT
age: 14251
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qzhu4aQ1hsabT2wW8zrClvls3sUchV9I99PVt05x9MeOz79AiY9ENRiRH97F4EtngQ6kMsZXEBvPB85SctDLo58hn0G50lTFV8LY4adEb7S2LbxLvng4EbDX1IApae%2Fj6CnIAFVBB%2FeD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746aceb30c62b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| awesome-assets.yampi.me/checkout/build/assets/js/app-b18fe37aef.js | 104.26.2.88 | 200 OK | 341 kB |
URL HTTP/2awesome-assets.yampi.me/checkout/build/assets/js/app-b18fe37aef.js IP104.26.2.88:0
File typeASCII text, with very long lines (47247) Size341 kB (341249 bytes) Hashb18fe37aefb2a3b2b34e3155dd33cdb9 0f7b1cf501f3d7fa538c4a2381f52d3da3cec806 4dc8fc64a953005f3a94e8b693820bd52b5bc9bada20d28f9ace29f1ed5fc096
GET /checkout/build/assets/js/app-b18fe37aef.js HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:05 GMT
content-type: application/javascript
content-length: 341249
x-amz-id-2: NxQA/3MieOjqq61TB4QDiNxjgHGR/NbExUGIT+k6Lwtp6vv18SquNXoGuzIk3VgAbjOVd/mSpXE=
x-amz-request-id: R7XH810MAE4BVYWV
cache-control: public, max-age=315360000, no-transform
last-modified: Tue, 06 Sep 2022 18:09:42 GMT
x-amz-version-id: GHWVZaJZfC.KJ94xwKAQLZbdXSqlNrWu
etag: "b18fe37aefb2a3b2b34e3155dd33cdb9"
cf-cache-status: HIT
age: 14251
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=weZtjQxrPSK%2FnaQrQbnQw%2FmO2avJRNJXIlHTXVOhfRbcL2HUKlWx4l%2Br6zZ%2FgApFX%2BZuTgLDELEMA%2Fi2d22Sqh3OwVsVkKo4Y1%2BX%2FP3yqBAoDkzPUMJ6paCf9pinCQlXzg8qOln3ART%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746aceb30c66b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashea5d89f3b91e9e92f6024a05a76d0916 fa5a430f9c241f95ce139f4287d5fd3583c1f4f7 5f88f1d962a8f8ba18d5b077d2a8832554b62960764922f6bc45362480d5cd45
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 340
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:05 GMT
Last-Modified: Tue, 06 Sep 2022 22:52:25 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash21d1b5be072df45253749eeb3290be82 4ac9978797c085289b9fcc2fe9a57b619e1c78c9 9ea779e1ad86a4a7c403b574908e2dc60d079b366ab1cf439b34c73c9a9c64c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashc0498832f97967e1fbaa64eba7c65094 2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7 63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| secure.mlstatic.com/sdk/javascript/v1/mercadopago.js | 23.36.79.33 | 200 OK | 9.1 kB |
URL HTTP/1.1secure.mlstatic.com/sdk/javascript/v1/mercadopago.js IP23.36.79.33:0 ASN#20940 Akamai International B.V.
File typeUnicode text, UTF-8 text, with very long lines (25829), with no line terminators Hash13e3cc8ff400bf1da09ba98065151e4a 05da8917634372f71cd2f851e42129fecfb2f45f 9fb8f6afd1ae3d95fbd299a8a9b63fb83e653410c7a9cd0e42fbb75b4faf1c36
GET /sdk/javascript/v1/mercadopago.js HTTP/1.1
Host: secure.mlstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 9065
Server: Tengine
Vary: Accept-Encoding
Content-Encoding: gzip
ETag: "825262-9065-1647036440000"
Last-Modified: Fri, 11 Mar 2022 22:07:20 GMT
x-envoy-upstream-service-time: 2
x-envoy-decorator-operation: production.openplatform-sdk-javascript.melifrontends.com
X-Request-Id: d2e52704-7958-472c-b559-cac792b41f98
X-Request-Device-Id: d2e52704-7958-472c-b559-cac792b41f98
X-D2id: d2e52704-7958-472c-b559-cac792b41f98
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: no-referrer-when-downgrade
Cache-Access-Control-Allow-Origin: *
Cache-Control: max-age=3600
Date: Tue, 06 Sep 2022 22:58:06 GMT
Connection: keep-alive
|
|
| www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC | 142.250.74.164 | 200 OK | 584 B |
URL HTTP/2www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC IP142.250.74.164:0
File typeASCII text, with very long lines (884), with no line terminators Hashb7a6c59a907d5a389d2689db5a03b1ce 75084c2c8c6fea60d8bbfa6b22cecd4d51c98e31 00a024e5bb473677e5844a1dc71854b4351f003df053dae198624d2985f3fe86
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 06 Sep 2022 22:58:06 GMT
date: Tue, 06 Sep 2022 22:58:06 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashc0498832f97967e1fbaa64eba7c65094 2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7 63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash8fc7316fab55e89a81536e926eab6f83 7fcab743b176312e76999b39a1b2a3b97dbeb10f 8178b9805611209f5c47dce32da555117870a90648e026d08cc691a4103169a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/s/gts1d4/pWyJAO6WNqQ | 142.250.74.3 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/pWyJAO6WNqQ IP142.250.74.3:0
Hash978582b1024e3f6adb0b944d43472479 905710206f9a404676cf948b7691f3b8530efe5a 36e65a7de3629939a567d0b092fbe7724dd204cebac5e47a7a33b15b2e301374
POST /s/gts1d4/pWyJAO6WNqQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| js.upnid.com/v0.js | 130.211.14.112 | 200 OK | 8.9 kB |
IP130.211.14.112:0
File typeUnicode text, UTF-8 text, with very long lines (23050) Hash960c2f02f796ed460b2c3911ee0f498d 862e007ff302286b83d9e5b4b880acdf5894ac1a d5112369b9ae06973e98285df7d92749ddae470430912d01fd70f7c45207592f
GET /v0.js HTTP/1.1
Host: js.upnid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin
content-encoding: gzip
via: 1.1 google
content-length: 8884
date: Tue, 06 Sep 2022 22:30:19 GMT
age: 1667
last-modified: Tue, 19 Jan 2021 20:16:07 GMT
content-type: text/javascript; charset=utf-8
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1d4/pWyJAO6WNqQ | 142.250.74.3 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/pWyJAO6WNqQ IP142.250.74.3:0
Hash978582b1024e3f6adb0b944d43472479 905710206f9a404676cf948b7691f3b8530efe5a 36e65a7de3629939a567d0b092fbe7724dd204cebac5e47a7a33b15b2e301374
POST /s/gts1d4/pWyJAO6WNqQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdec22851777a3030fc2502dac7ba19d9 fd5e9e9204374e5044254312646e33899b27cf48 67de7221edf19e62be0ae66623a8596fe4bad13adbc97703da17d959737ba426
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "67DE7221EDF19E62BE0AE66623A8596FE4BAD13ADBC97703DA17D959737BA426"
Last-Modified: Mon, 05 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19769
Expires: Wed, 07 Sep 2022 04:27:35 GMT
Date: Tue, 06 Sep 2022 22:58:06 GMT
Connection: keep-alive
|
|
| cdn.shopify.com/s/files/1/0469/2253/0970/products/desprogressiva-curlzr-volta-aos-cachos-ultimas-unidades-loja-mar-azul-tech-930843_250x250.jpg | 104.16.255.71 | 200 OK | 19 kB |
URL HTTP/2cdn.shopify.com/s/files/1/0469/2253/0970/products/desprogressiva-curlzr-volta-aos-cachos-ultimas-unidades-loja-mar-azul-tech-930843_250x250.jpg IP104.16.255.71:0
File typeISO Media, AVIF Image\012- data Hash32b5ff714c0a692e4f46c6892bad9a18 d0d39e3a6dcbc5dcc6655853ede9b2ddfce8816e 200da052fb45dbf8ecd50ca55a7b3387db3bebedc735d2b6b59813dddb9d0e65
GET /s/files/1/0469/2253/0970/products/desprogressiva-curlzr-volta-aos-cachos-ultimas-unidades-loja-mar-azul-tech-930843_250x250.jpg HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: image/avif
content-length: 19296
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0469/2253/0970/products/desprogressiva-curlzr-volta-aos-cachos-ultimas-unidades-loja-mar-azul-tech-930843_250x250.jpg>; rel="canonical"
server-timing: imagery;dur=582.854, imageryFetch;dur=20.543, imageryProcess;dur=561.392;desc="image"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: bc895068-f1c0-4c92-b672-31e8d6894cd9
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Sat, 03 Sep 2022 12:16:16 GMT
cf-cache-status: HIT
age: 103705
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XV5XLTqHbRwecTkN34maDf5fzvdf5xB8wTvhYh7dZbRJJvfUWVlRNSPZBn4gdlHAKsOHVSmM9A2MlWkT2nKFZ%2FSbg%2BhvBHTisf9JWfrr0F1gtISTGsHsUHwklasPg4Iokw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746aceb66d5db52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| github.bubbstore.com/svg/card-diners.svg | 104.21.29.224 | 200 OK | 1.5 kB |
URL HTTP/2github.bubbstore.com/svg/card-diners.svg IP104.21.29.224:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1368) Hash27213dfa236c0e452a39ab103bf7cb10 c60a5a3e2bf45ec7a51741c7108dac92a251eb2d 1136c84a51ef1284bb0c5afd713812b4b2eafd07ce19a30eb95ffe87ede81fe9
GET /svg/card-diners.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: image/svg+xml
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-99b"
expires: Tue, 06 Sep 2022 22:07:47 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 8B70:8823:1B2160A:1C6B877:63175C58
via: 1.1 varnish
x-served-by: cache-bma1680-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662475353.916176,VS0,VE128
vary: Accept-Encoding
x-fastly-request-id: 1facbb40c05dbe84b2354290d568593a381502aa
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S9D59ew1hchjPMdiD6ZhGREJiaiEYmVWe0TSn1uKrmCxdO9%2Fdy%2BLIxt3w0yCIC6LMikEvRYr8kchwUt1d0R0tuSaqAO6tYzUcnAdAb%2BApzMhT4bTRPehC5%2FIY%2BhK9Lp3UKuOWR%2F3zg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746aceb36ac60b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16831
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Tue, 06 Sep 2022 22:58:06 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdec22851777a3030fc2502dac7ba19d9 fd5e9e9204374e5044254312646e33899b27cf48 67de7221edf19e62be0ae66623a8596fe4bad13adbc97703da17d959737ba426
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "67DE7221EDF19E62BE0AE66623A8596FE4BAD13ADBC97703DA17D959737BA426"
Last-Modified: Mon, 05 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19769
Expires: Wed, 07 Sep 2022 04:27:35 GMT
Date: Tue, 06 Sep 2022 22:58:06 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash62c739a1335c5cf0fd4e783db6cdf14b 4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e9b3424-a7df-4a41-82c2-4baf4813509c.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e9b3424-a7df-4a41-82c2-4baf4813509c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfcf56e65178e3bdb802a8215b48d11f0 6ca14b815e1446172a72f28f58fbbf97272a512b 42a88966c46e9670786e171700f403805f1a278aef0edfee233afb8fd5e41e46
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e9b3424-a7df-4a41-82c2-4baf4813509c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11464
x-amzn-requestid: 5a4d63f8-dd44-4003-bd90-4ebcdf4517e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XdbBcECroAMFrFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63087209-22f3a6a174d32fd11f863106;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 07:11:05 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: RN78TWtmq0okztaJVpUNwYH093j1R18-1HsnQGKYpciJ41WsUhwcMA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:07:41 GMT
age: 3025
etag: "6ca14b815e1446172a72f28f58fbbf97272a512b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16831
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Tue, 06 Sep 2022 22:58:06 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40a1a34b-bd31-4f00-a8cf-f11e2616a5f6.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40a1a34b-bd31-4f00-a8cf-f11e2616a5f6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1c2d4c01e5231b1b06ee38b6f9049993 a6ebf37cf2f7f4b2ba54a566f8dd283cef97f411 a3cba7153f46f6592cd393d246a8c231f6bc73d3a96946b0422274982ff0bc67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40a1a34b-bd31-4f00-a8cf-f11e2616a5f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12412
x-amzn-requestid: 033e4dbf-4618-4164-a456-ec71a90fa40f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7HVYEQJoAMFX7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63145288-7ea85af00ab2b2c0648af9a6;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:23:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: X6b0Q4W_pbs6mR9sCFZjHLOe1jjnqRB7yhkPoO4BwRJliYxjBNgJig==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 05:24:57 GMT
etag: "a6ebf37cf2f7f4b2ba54a566f8dd283cef97f411"
content-type: image/jpeg
age: 63189
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d353f8d-bf6d-4c0f-b163-e9d32c54839f.jpeg | 34.120.237.76 | 200 OK | 8.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d353f8d-bf6d-4c0f-b163-e9d32c54839f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6194a9684f17743754ea625caecf9d46 90fa1c2a82eca9b0a37c665e8f50a4c54520e12f 4d4e16a9aee766d73e4ac96e1f099ec01e8285d69c4a33f99ade5f49378ca73e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d353f8d-bf6d-4c0f-b163-e9d32c54839f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8101
x-amzn-requestid: 9e9aa680-4520-4d58-8a2a-a762694d918d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YCTliEZPoAMFd1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631732f0-40281921111511f14176b16c;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 11:45:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PdxV0Z4QpE-nXkmZloSKRv5Kv-rLJGoUqEUKpAByldgIGpvI3Q4hUQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:20:47 GMT
age: 2239
etag: "90fa1c2a82eca9b0a37c665e8f50a4c54520e12f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg | 34.120.237.76 | 200 OK | 4.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4f29d8aaae2d67c27c58001e7553dea7 5200b601017ce86614783b76fd2a775c1c48d4e9 6b55c4d692cf584e0319b07251d9845749fe8954062dab66e003dd2706451504
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4805
x-amzn-requestid: 6db42fa4-5a04-4368-b5cb-ea8f70d83ead
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XmxSRFp7oAMFb3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c2f41-1df42bd2265554de5f47932e;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 03:15:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KQ1yb69_uETJJlEIcwsR165zqZuiklGuj3Nn-tyta0e_q8BGqs3cXg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:24 GMT
age: 4002
etag: "5200b601017ce86614783b76fd2a775c1c48d4e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-N9ZSJ2M | 142.250.74.72 | 200 OK | 37 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-N9ZSJ2M IP142.250.74.72:0
File typeASCII text, with very long lines (1615) Hash307791e4e33d0c67553b01cbacecd99d 9aa89a161f5b8e96ad9870961e8632bdc4b5187a ccc0a3a2f7b92df87d9ce1af65293018e257daf63432de42cf565d5e0748bb15
GET /gtm.js?id=GTM-N9ZSJ2M HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 22:58:06 GMT
expires: Tue, 06 Sep 2022 22:58:06 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 21:08:49 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37145
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9352b2-4ab5-48d0-9676-61bf3275b779.jpeg | 34.120.237.76 | 200 OK | 7.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9352b2-4ab5-48d0-9676-61bf3275b779.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash489429fc4af7d245f194596e975d1e49 ab455b8abde4309f365d55508794a8cf8c85d8b6 112f3ed8114c9a10d897af2d083a71f10ec68442d5896487f12259ed676ae017
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9352b2-4ab5-48d0-9676-61bf3275b779.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7002
x-amzn-requestid: b77f0e27-7942-4b68-907c-94a4353f83d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7URaFKwoAMF0gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6314673c-78de60734320a48a2930ce0d;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 08:52:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5LG5agu25pdVJQ3KqkCvvSKiMCBpcf_pYIR2FgJ6KoTd0DvF5p5y8g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:20:33 GMT
age: 2253
etag: "ab455b8abde4309f365d55508794a8cf8c85d8b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0 | 104.18.0.53 | 200 OK | 77 kB |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0 IP104.18.0.53:0
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: h3KG8134MvzX6WKf857ZzOoD2wI6lbJ3eq85NpxxGucB200qeO5xXHtxTJaw8TA/kQFD6q76RHc=
x-amz-request-id: V3ZVHYQFQPXFN7M1
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: HIT
age: 3618
expires: Wed, 14 Sep 2022 22:58:06 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
server: cloudflare
cf-ray: 746aceb74f4d0b45-OSL
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F544c97ea-c914-4fdc-82af-945cb0832cde.jpeg | 34.120.237.76 | 200 OK | 3.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F544c97ea-c914-4fdc-82af-945cb0832cde.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashedcd025faafbf7161d4d606f47304c2b a99519726bc82f2cc0541c79f47ddd15c7362669 ed7b147e3ea371ea4b014805d9c2f45407918924bb2ec540ea6f7cd0a8b1b698
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F544c97ea-c914-4fdc-82af-945cb0832cde.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3529
x-amzn-requestid: 6ee305f1-aaaf-49eb-94b5-1176943a1922
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YCjYWFzNoAMFajg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63174c35-7e8ef3554da3194d47726d0d;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 13:33:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: u3PSpvVEoPGJTFmcB643hOaVUAp-iW0X68PxtIaJZvGHc-Bh79gPgQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:50 GMT
age: 27256
etag: "a99519726bc82f2cc0541c79f47ddd15c7362669"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hasheb53024bbd41c1d8f88fa7b9becb704a c87f5ac53cff6e3436c15551f8092f1e0215cb79 f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| seguro.marazul-tech.com/checkout/payment?cart_token=shopify-dd31e788a3b2289212cad02d855d11d1&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=3ee1fee4e4ca533f2314dc8ac87cc17dffdea4e2&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10 | 170.82.173.30 | 200 OK | 63 kB |
URL HTTP/2seguro.marazul-tech.com/checkout/payment?cart_token=shopify-dd31e788a3b2289212cad02d855d11d1&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=3ee1fee4e4ca533f2314dc8ac87cc17dffdea4e2&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10 IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hashcd96a65393a69c9f21b58d2ca9dc7acc 3bf9d47e9786fa1c589b85e8acfa6bcc8a3f2cb2 869afc47de9cefc7cedf8f917ad9ceed6c9275543240cba06c0fc14e79fc9dfa
GET /checkout/payment?cart_token=shopify-dd31e788a3b2289212cad02d855d11d1&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=3ee1fee4e4ca533f2314dc8ac87cc17dffdea4e2&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10 HTTP/1.1
Host: seguro.marazul-tech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:05 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IkRhZmVhMXNDY0VZaU9YcmYyY3k2WkE9PSIsInZhbHVlIjoiOVE5bmZFT0NTdXdRSTBTYjdrd2VzWmdkTmpFc3NwdkFRZ1liaG5DTmc4RHF6d0hHTkU4XC93cnJ3T3Ryd1hHQmRCUVFLMzM1QitKVTJRZWl2bWwyWUdRPT0iLCJtYWMiOiI5ZGU1ZWM0Nzc2NGMzNTFhNmRhM2Q2ODBjNDIxODRkZGY5YTUzNzA0YmVlNjhkZDdhZGI0M2Q2N2Y3ZjRiZmNiIn0%3D; expires=Wed, 07-Sep-2022 01:58:05 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImxZZWJoWVZEdHZvQXdoUVVHNFBrdUE9PSIsInZhbHVlIjoiZGJpR0ZkVUJ0ZjBBQnpLNFpVMm50dFFcL2J2K2o2ZnVteTFlT0FiSjVwM0RNR3RNMkJqdjc1S3RQTjgwM0YrelIxYWM2WVFjSDI1cW8rZmsrdEpVOGJRPT0iLCJtYWMiOiIxYmU0ZTY1ZDk4MDg0OWUzNGE1YjQxYzNiNmJmMDQ3NmIwMDRmZDM4MzAwNjAyOTVkNDFiY2EyYzUyNGZhM2VmIn0%3D; expires=Wed, 07-Sep-2022 01:58:05 GMT; Max-Age=10800; path=/; httponly
marazul-tech_cart=eyJpdiI6IkI4dDFZMlU0SWhrVVJZdDlYOVh1K3c9PSIsInZhbHVlIjoiUXVQRHdHTmJHUGNYQnFaWlBGNXRcL0JhVTROblJhSGh6bXZlSGltampMbUhPelwvQUZcL1JqNll5MWxVajhRVXJRYUZYRkFLaXRaN1kxREhESXpKOUxpWUE9PSIsIm1hYyI6IjI5YmVlODAyZmRjNzE2ZWI5NGNmMmU0OTE3NjZiNjZlYWM5ZDQ1NGI0ODEwMTdjMzYxMDg0MmE3MmU2MmEwNmMifQ%3D%3D; expires=Sun, 11-Sep-2022 22:58:05 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| github.bubbstore.com/svg/card-amex.svg | 104.21.29.224 | 200 OK | 3.3 kB |
URL HTTP/2github.bubbstore.com/svg/card-amex.svg IP104.21.29.224:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (856) Hasha816ac9be84009b16a088b71a17e995e 34395ebad90b2c99f39e8520d25202114c4eef68 3af2804495b6b49c8bc60279215f312ca3249bb35946eda72eb9d4b62949d044
GET /svg/card-amex.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-5f3"
expires: Tue, 06 Sep 2022 22:07:47 GMT
cache-control: max-age=691200
x-proxy-cache: HIT
x-github-request-id: AAB8:2160:856806:8B85AA:6306A3B0
via: 1.1 varnish
x-served-by: cache-bma1655-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1661379505.582717,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: 58c96376bd8c1c9cdf37899bd5ed75c51efa8705
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BfzvnCPxNT5GnzQLkwtAU7pFWpbfvpMCUDBDUBTd2Zvq7GMv1fpYR73fhoG8B4cqNuYtAMaUtMCxxnEcbhW6v3HAEDI7vfh%2FX%2F9o3wEMmzIqaXkoaCHXbh5W03JeGC5SFzy3pual6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746aceb36acc0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash841b41a4d02b151759ae52ef4d397d45 a14081bf91a05ada26c7079dbf5fcd75d0cdd3b3 1c43e4e9761165da05952ea1d8adb5d304768935e6dc9e0b4f9f06e9ea141f6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Server: ECS (amb/6B85)
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash62c739a1335c5cf0fd4e783db6cdf14b 4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash841b41a4d02b151759ae52ef4d397d45 a14081bf91a05ada26c7079dbf5fcd75d0cdd3b3 1c43e4e9761165da05952ea1d8adb5d304768935e6dc9e0b4f9f06e9ea141f6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6172
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Last-Modified: Tue, 06 Sep 2022 21:15:14 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash841b41a4d02b151759ae52ef4d397d45 a14081bf91a05ada26c7079dbf5fcd75d0cdd3b3 1c43e4e9761165da05952ea1d8adb5d304768935e6dc9e0b4f9f06e9ea141f6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2287
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Etag: "6316a43d-1d7"
Last-Modified: Tue, 06 Sep 2022 22:19:59 GMT
Server: ECS (amb/6BBD)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash841b41a4d02b151759ae52ef4d397d45 a14081bf91a05ada26c7079dbf5fcd75d0cdd3b3 1c43e4e9761165da05952ea1d8adb5d304768935e6dc9e0b4f9f06e9ea141f6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Server: ECS (amb/6BB9)
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hasheb53024bbd41c1d8f88fa7b9becb704a c87f5ac53cff6e3436c15551f8092f1e0215cb79 f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62faee62d5a91/62faee62d5a97.png | 16.12.2.16 | 200 OK | 7.4 kB |
URL HTTP/1.1s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62faee62d5a91/62faee62d5a97.png IP16.12.2.16:0
File typePNG image data, 677 x 87, 8-bit/color RGBA, non-interlaced\012- data Hasha740eb208fbdb9704f67d03e34bf1e8a b2fe2630d5ebb7bda6f776d1c6856a1c26c4abaf 551c9a260933f329cad81fa6c9cf3533345445083e2df7119f5cc943ba909aa9
GET /king-assets.yampi.me/dooki/62faee62d5a91/62faee62d5a97.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: vhNqgW+/5flkFmd3xFiK4n773KAZ+B5RvwFMMlp9CoIr0UObQUWk0e7uFY758YdgQi5hJg7v3ic=
x-amz-request-id: WFCJ10V8R9WBCHKZ
Date: Tue, 06 Sep 2022 22:58:07 GMT
Last-Modified: Tue, 16 Aug 2022 01:09:55 GMT
ETag: "a740eb208fbdb9704f67d03e34bf1e8a"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 7445
|
|
| api.mercadopago.com/v1/devices/widgets?referer=https%3A//seguro.marazul-tech.com | 107.23.32.171 | 200 OK | 0 B |
URL HTTP/2api.mercadopago.com/v1/devices/widgets?referer=https%3A//seguro.marazul-tech.com IP107.23.32.171:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/devices/widgets?referer=https%3A//seguro.marazul-tech.com HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://seguro.marazul-tech.com/
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: application/json
content-length: 0
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
access-control-allow-origin: https://seguro.marazul-tech.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-request-id: 6d5372e6-2114-4371-83b1-4e8c63fcfce3
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: content-type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| api.mercadopago.com/v1/device_sessions/web_device | 107.23.32.171 | 200 OK | 0 B |
URL HTTP/2api.mercadopago.com/v1/device_sessions/web_device IP107.23.32.171:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/device_sessions/web_device HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://seguro.marazul-tech.com/
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: application/json; charset=utf-8
content-length: 0
access-control-allow-origin: https://seguro.marazul-tech.com
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-allow-headers: content-type
access-control-max-age: 86400
x-request-id: 4a1d1ff7-5782-4414-aa59-0c29f5982758
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-69,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-trace-digest-69: aZa34mkU1XV+C+CL0svqNd33fUGOpQmkgPwEdeGu+UwEOj6m1MQZlRGN2hT0rPSL
x-b3-spanid: b80ca8bef1b0a94a
x-b3-traceid: b80ca8bef1b0a94a
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| seguro.marazul-tech.com/cart/recomm | 170.82.173.30 | 200 OK | 808 B |
URL HTTP/2seguro.marazul-tech.com/cart/recomm IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hasheb470c7422340cef78a5ee8cc2ec3cfb 9432610db89c692b0117a6213d23ec193fd1ba95 232b669de36ca0aa2dc92503555320cba1c25c5dbff125d703863c1d5f761723
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /cart/recomm HTTP/1.1
Host: seguro.marazul-tech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10
Cookie: XSRF-TOKEN=eyJpdiI6IkRhZmVhMXNDY0VZaU9YcmYyY3k2WkE9PSIsInZhbHVlIjoiOVE5bmZFT0NTdXdRSTBTYjdrd2VzWmdkTmpFc3NwdkFRZ1liaG5DTmc4RHF6d0hHTkU4XC93cnJ3T3Ryd1hHQmRCUVFLMzM1QitKVTJRZWl2bWwyWUdRPT0iLCJtYWMiOiI5ZGU1ZWM0Nzc2NGMzNTFhNmRhM2Q2ODBjNDIxODRkZGY5YTUzNzA0YmVlNjhkZDdhZGI0M2Q2N2Y3ZjRiZmNiIn0%3D; bubbstore_checkout=eyJpdiI6ImxZZWJoWVZEdHZvQXdoUVVHNFBrdUE9PSIsInZhbHVlIjoiZGJpR0ZkVUJ0ZjBBQnpLNFpVMm50dFFcL2J2K2o2ZnVteTFlT0FiSjVwM0RNR3RNMkJqdjc1S3RQTjgwM0YrelIxYWM2WVFjSDI1cW8rZmsrdEpVOGJRPT0iLCJtYWMiOiIxYmU0ZTY1ZDk4MDg0OWUzNGE1YjQxYzNiNmJmMDQ3NmIwMDRmZDM4MzAwNjAyOTVkNDFiY2EyYzUyNGZhM2VmIn0%3D; marazul-tech_cart=eyJpdiI6IkI4dDFZMlU0SWhrVVJZdDlYOVh1K3c9PSIsInZhbHVlIjoiUXVQRHdHTmJHUGNYQnFaWlBGNXRcL0JhVTROblJhSGh6bXZlSGltampMbUhPelwvQUZcL1JqNll5MWxVajhRVXJRYUZYRkFLaXRaN1kxREhESXpKOUxpWUE9PSIsIm1hYyI6IjI5YmVlODAyZmRjNzE2ZWI5NGNmMmU0OTE3NjZiNjZlYWM5ZDQ1NGI0ODEwMTdjMzYxMDg0MmE3MmU2MmEwNmMifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IlBVVTlJa3N0RzdjVEU5THR3RkxHalE9PSIsInZhbHVlIjoidVRYZnZqVnllSytyRUdLV21YR1pOYzh6UWNJdzZjXC9Ca0Q1UlZseWltZ1JFVFpLRkxxSTJPRnk4aHJSU2gyTW5YK3Z0djlkOXhDYUVQcER2M3FqNTdRPT0iLCJtYWMiOiIzMzgxNmQ2NDdkMmRiOTdiODI5ZDU1NWQyNTg1NThkYmJjYzVjNThjOWMwZWRjZGExZjlhY2U3YWI2Y2Y2NmIzIn0%3D; expires=Wed, 07-Sep-2022 01:58:06 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IjVmSnRjV2xHYzRzMVJaM2FhdzZLQ3c9PSIsInZhbHVlIjoibVNoNEw0emw3bzdoenlzMGgxdXJ2dFJVa0RVZk90YVwvRjZub2gzQ2FLNUhcL3loOGtKdkhWZ1dzVms2bXE3d2JzemhBdndTXC9pSHo1UzdDNitHbHVlMGc9PSIsIm1hYyI6Ijk5MjJmMDVmNzVlMWRlOGZkZTQ3YWU1YTg1YWM2ZTk2Mzc1ZWQwY2E3NThlZmI0ODEwMjM5MjY3NDBjNzE0OTYifQ%3D%3D; expires=Wed, 07-Sep-2022 01:58:06 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 104.84.152.241 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP104.84.152.241:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 930
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Cookie: _ttp=2EPlQzhEVgveV0ChMZcuPTAH78V
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209062258076DC874CF1028AF6A6A12
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61e38a0d78b3a2a780a7134bf39a63bb315e995c8530cda372f569df6406e357c0661f463bc2802daa2efd3ffab1ae33f25c95adf3bded2f0cecd01b64302ab961aaf390dc6ad44978ec0db3b26a7f4c24e
x-origin-response-time: 20,23.220.107.27
x-akamai-request-id: 8447070b.459281da
expires: Tue, 06 Sep 2022 22:58:07 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Sep 2022 22:58:07 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-cache-remote: TCP_MISS from a23-220-107-27.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=20, inner; dur=13
x-parent-response-time: 120,104.84.152.237
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 104.84.152.241 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP104.84.152.241:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 928
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Cookie: _ttp=2EPlQzhEVgveV0ChMZcuPTAH78V
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022090622580777D56542115C8E6DDB30
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61efdc740fe42084d7dd525549005ce31955302544438ae6b7a2282d9b91a3208f5a1624a2942b4c17f6673ac7b762161b871110e9532e4a6a7b767443fe3cc0ce49ad3a7c0eafb687062251b25be224572
x-origin-response-time: 18,104.112.235.207
x-akamai-request-id: 20558fef.459281e2
expires: Tue, 06 Sep 2022 22:58:07 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Sep 2022 22:58:07 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-cache-remote: TCP_MISS from a104-112-235-207.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=18, inner; dur=14
x-parent-response-time: 121,104.84.152.237
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 104.84.152.241 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP104.84.152.241:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 904
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Cookie: _ttp=2EPlQzhEVgveV0ChMZcuPTAH78V
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220906225807EF8F52A79237B1750143
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61e38a0d78b3a2a780a7134bf39a63bb3150c72560251fa8d52d3b1c0c10923f8cd59733cd991fd8236bccecf7ef0f4e6b407ce83d00174a57a98d6fc3d8bd381aaf9cda93e276611a2828c625eafbc8220
x-origin-response-time: 99,23.59.250.196
x-akamai-request-id: f9bdab8.459281d6
expires: Tue, 06 Sep 2022 22:58:07 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Sep 2022 22:58:07 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-cache-remote: TCP_MISS from a23-59-250-196.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=96, origin; dur=99, inner; dur=89
x-parent-response-time: 194,104.84.152.237
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/events.js?sdkid=C5OA7O5O3VNUQLVLPI4G&lib=ttq | 104.84.152.241 | 200 OK | 38 kB |
URL HTTP/2analytics.tiktok.com/i18n/pixel/events.js?sdkid=C5OA7O5O3VNUQLVLPI4G&lib=ttq IP104.84.152.241:0 ASN#20940 Akamai International B.V.
File typeUnicode text, UTF-8 text, with very long lines (65464) Hash2dab7b62937301463abee6601d9662d2 30dd33dd0771037c5688d38b3a9cd0c2deb7a105 0c2bfb6bdc09c3df59078e7b5205afbcdf56d66991a52f7eafa198d967a29755
GET /i18n/pixel/events.js?sdkid=C5OA7O5O3VNUQLVLPI4G&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202209062258078719A7B667D416668530
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61e38a0d78b3a2a780a7134bf39a63bb315e995c8530cda372f569df6406e357c06e949959d17e0c247350aff0f2d4ff069a0ea0e3701f99ce2b757aa5e0251d86413619d0ce05e4da8ffe6229c55ad6882
content-encoding: gzip
x-origin-response-time: 9,23.220.107.27
x-akamai-request-id: 8446fe62.45927fde
expires: Tue, 06 Sep 2022 22:58:07 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Sep 2022 22:58:07 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-220-107-27.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=110, origin; dur=9, inner; dur=4
x-parent-response-time: 116,104.84.152.237
X-Firefox-Spdy: h2
|
|
| www.mercadolibre.com/jms/lgz/background/etid | 143.204.55.42 | 200 OK | 0 B |
URL HTTP/2www.mercadolibre.com/jms/lgz/background/etid IP143.204.55.42:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jms/lgz/background/etid HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 0
date: Tue, 06 Sep 2022 22:58:07 GMT
server: Tengine
set-cookie: _d2id=af2e0380-764f-401c-b642-a38642558373-n; Path=/; Domain=.mercadolibre.com; Expires=Wed, 06 Sep 2023 22:58:07 GMT
access-control-allow-origin: *
access-control-expose-headers: Etag
etag: 0952147d-2105-4d67-9c39-c0ef7219a9fb-1662505087579
cache-control: private, must-revalidate, proxy-revalidate
x-envoy-upstream-service-time: 3
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: af2e0380-764f-401c-b642-a38642558373
x-request-device-id: af2e0380-764f-401c-b642-a38642558373
x-d2id: af2e0380-764f-401c-b642-a38642558373
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fma0a8628_gVg46sYTtNv6no68YzVrwxThQoqWt2i9_zveimI41JhA==
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js | 142.250.74.163 | 200 OK | 158 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js IP142.250.74.163:0
File typeHTML document, ASCII text, with very long lines (579) Size158 kB (158056 bytes) Hashd63a69f898e1d00cfc7c871744ded8c4 e166540eccb571c95c8c1135c2168cf5df306991 ed7892ca1498d6dfc0ff8b354ab8c409eed81b1fa77b427467815d0c7f45021c
GET /recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 21:31:14 GMT
expires: Sat, 02 Sep 2023 21:31:14 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 02 Sep 2022 18:40:58 GMT
content-type: text/javascript
age: 350813
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash51793b7aca12e07c707f923e821c3231 8aecbe01ed606227ff1d7c5684f4ca82e5016bf9 a3a7bcdc8076b46d7c77ae9a4b22a064de07b296c9e18070aaed7ad9c8fdef8b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hash56f5d7f608e25d64207135f045f988cb 901eb59372ae330ae85e1384da93479b21ae1082 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 06 Sep 2022 22:41:12 GMT
expires: Wed, 07 Sep 2022 00:41:12 GMT
cache-control: public, max-age=7200
age: 1015
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| connect.facebook.net/en_US/fbevents.js | 31.13.72.12 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP31.13.72.12:0
File typeASCII text, with very long lines (64348) Hash8e7e24fb3539746aa8b869558f589615 d8086d86bbd5cfacc3b6a5ef14aa917830e137dd 7304497ee417a664bdea67d7307ca36a36013556b927c3ea5bca6c04b66236ef
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: rMbVXJut9ZLjcGaqndjnARhq1lD69vAhY8baoO6o2xbsxTuAKRVpTXTc5zk1i/KUb6aBYbdNPx4SbAbRfJQJmw==
content-length: 26737
x-fb-trip-id: 1904183273
date: Tue, 06 Sep 2022 22:58:07 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash0b218225171cae57237cd71ae6f3347b 821f6cda5bf110fad5777736e92a27db636d488c 1372a445d0f8e9b0b2b3abb6762ca5ec3867bb42928aa2f7ed84a47f660f3c59
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4824
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:07 GMT
Last-Modified: Tue, 06 Sep 2022 21:37:43 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
|
|
| seguro.marazul-tech.com/cart/payment | 170.82.173.30 | 200 OK | 16 kB |
URL HTTP/2seguro.marazul-tech.com/cart/payment IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hashc3c8cec0ec6972c20b406e21b3a6e83f 9265a4d2f04cd66a260655474894dfc1d54727ec a050f7cd2ce6483b645eb5898d03010e820ad3bf07b1a1ea240f4abc053191dd
Analyzer | Verdict | Alert | fortinet | Phishing | |
PUT /cart/payment HTTP/1.1
Host: seguro.marazul-tech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 85
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10
Cookie: XSRF-TOKEN=eyJpdiI6IkRhZmVhMXNDY0VZaU9YcmYyY3k2WkE9PSIsInZhbHVlIjoiOVE5bmZFT0NTdXdRSTBTYjdrd2VzWmdkTmpFc3NwdkFRZ1liaG5DTmc4RHF6d0hHTkU4XC93cnJ3T3Ryd1hHQmRCUVFLMzM1QitKVTJRZWl2bWwyWUdRPT0iLCJtYWMiOiI5ZGU1ZWM0Nzc2NGMzNTFhNmRhM2Q2ODBjNDIxODRkZGY5YTUzNzA0YmVlNjhkZDdhZGI0M2Q2N2Y3ZjRiZmNiIn0%3D; bubbstore_checkout=eyJpdiI6ImxZZWJoWVZEdHZvQXdoUVVHNFBrdUE9PSIsInZhbHVlIjoiZGJpR0ZkVUJ0ZjBBQnpLNFpVMm50dFFcL2J2K2o2ZnVteTFlT0FiSjVwM0RNR3RNMkJqdjc1S3RQTjgwM0YrelIxYWM2WVFjSDI1cW8rZmsrdEpVOGJRPT0iLCJtYWMiOiIxYmU0ZTY1ZDk4MDg0OWUzNGE1YjQxYzNiNmJmMDQ3NmIwMDRmZDM4MzAwNjAyOTVkNDFiY2EyYzUyNGZhM2VmIn0%3D; marazul-tech_cart=eyJpdiI6IkI4dDFZMlU0SWhrVVJZdDlYOVh1K3c9PSIsInZhbHVlIjoiUXVQRHdHTmJHUGNYQnFaWlBGNXRcL0JhVTROblJhSGh6bXZlSGltampMbUhPelwvQUZcL1JqNll5MWxVajhRVXJRYUZYRkFLaXRaN1kxREhESXpKOUxpWUE9PSIsIm1hYyI6IjI5YmVlODAyZmRjNzE2ZWI5NGNmMmU0OTE3NjZiNjZlYWM5ZDQ1NGI0ODEwMTdjMzYxMDg0MmE3MmU2MmEwNmMifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:07 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IjVYbVk5M0t1RkNPdFNBY3hzak5GWkE9PSIsInZhbHVlIjoia0dLRHhKXC9VY21lSlZcLzZMeGw5TmNpYlQ0RVRWZ3liN0l3eTlsdDZRempaMmRFK1dKcTd2STVxZjFCNjRjcWJVVWhZQ1dETmlNajFNSVRsUHhYTXFUUT09IiwibWFjIjoiMDcyNDg5NTBjMDgyODgyMjE2YTVjZDdlOTI3MWU4ZDVhMzUyNjVlMTViODhiMzMyNzIyMjg2NzkwNjUxNGJkMCJ9; expires=Wed, 07-Sep-2022 01:58:07 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlI1eGQzdVJEZUluQmJRZFRSWWdMbVE9PSIsInZhbHVlIjoiaDMwWjNkcm9iRlVobVNOczNTdzlkU1RzaTc4MFA1N1k0QVA2ZTJYUXVOd2ZiVkdqck11aGVBVEVDd05GMW5qM05VMlE2OE9WQ3huYjdrYXFmalFqR1E9PSIsIm1hYyI6ImE4YjUyY2E0MjczNDMzY2UzMzY4MTZmZTFlMjM3YmMzYWU1MThkYWZmZWY2OTdiOTU3NGNkMTgwNzcyNWJhYjQifQ%3D%3D; expires=Wed, 07-Sep-2022 01:58:07 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/61200f04b9c5f/61200f04b9c64.png | 16.12.2.16 | 200 OK | 7.6 kB |
URL HTTP/1.1s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/61200f04b9c5f/61200f04b9c64.png IP16.12.2.16:0
File typePNG image data, 272 x 272, 8-bit/color RGBA, non-interlaced\012- data Hash78e60acf5aba1d62b42cd34ffc212c10 0c50523cff991a160be8a59f1cde129defe4309d c30cf70847312573a625791046e9ba429d8b2441350500044aa3e2da67318394
GET /king-assets.yampi.me/dooki/61200f04b9c5f/61200f04b9c64.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: fO1UStvjyM7VTm077CFGMeiVtJ2YV8/HCzeBX19egiq8EydkOxSn4gwPKG1aFd433iQTPBy1lwI=
x-amz-request-id: 7HNA6V740YR4CVZ7
Date: Tue, 06 Sep 2022 22:58:08 GMT
Last-Modified: Fri, 20 Aug 2021 20:22:29 GMT
ETag: "78e60acf5aba1d62b42cd34ffc212c10"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 7647
|
|
| seguro.marazul-tech.com/cart/orderbump/79645/view | 170.82.173.30 | 200 OK | 791 B |
URL HTTP/2seguro.marazul-tech.com/cart/orderbump/79645/view IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File typeJSON data\012- , ASCII text, with very long lines (778) Hash09d9918cedb5a9c29acfebbcb7a2e83b f74019c59b5b00f1a1fc4680e39107834f46347a 215320e974a44a83e1eaebf35af0264e6b2fc10675b883b924645270fb5581d1
Analyzer | Verdict | Alert | fortinet | Phishing | |
POST /cart/orderbump/79645/view HTTP/1.1
Host: seguro.marazul-tech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10
Cookie: XSRF-TOKEN=eyJpdiI6IkpnMEpSMmxwdDNlbmtOS1wvM0JKVDRBPT0iLCJ2YWx1ZSI6IlwvMW5TRkJGWjIwQ0wzZUNGdnNvZnhuVFlJRVwvT2xYTk40QkE0MkU3dFo2dkZtMHB6RndKdEROTEZVR0VPbzNWUHdaa0F4VDJ0TndKelVXXC9xbk1GQXJRPT0iLCJtYWMiOiI3MmMxZjQwNjMwNDU5ZmYxNTAyOWY1NjlhODVjNjZhNTcyMWI5NzQyMmZkOGI4OWM3NDZmM2ZhMmY4Y2IyNWNhIn0%3D; bubbstore_checkout=eyJpdiI6IkJ3ZjJPUmRuY3E0SHU0dGZCUCtWNlE9PSIsInZhbHVlIjoiM3V6ZXVvVnhvcXE5WjllakJpRGRcL2FMZHNzb01BT0MwOEpFWVJRaHpcL3hpcWY2Q0hxNklcLzdQNFoybVNtKzhtdXZcL2MrMXdLRHpzZm8wRSt6eFVCUVZ3PT0iLCJtYWMiOiJjOGQyNTBkNGI1YzY1MWEzNGQzMzNkOWZkNDdmMjYwOTQyMTljNGM5YmFiOWIxNGE5NGUxNWMxMGIzMDIwYjJmIn0%3D; marazul-tech_cart=eyJpdiI6IkI4dDFZMlU0SWhrVVJZdDlYOVh1K3c9PSIsInZhbHVlIjoiUXVQRHdHTmJHUGNYQnFaWlBGNXRcL0JhVTROblJhSGh6bXZlSGltampMbUhPelwvQUZcL1JqNll5MWxVajhRVXJRYUZYRkFLaXRaN1kxREhESXpKOUxpWUE9PSIsIm1hYyI6IjI5YmVlODAyZmRjNzE2ZWI5NGNmMmU0OTE3NjZiNjZlYWM5ZDQ1NGI0ODEwMTdjMzYxMDg0MmE3MmU2MmEwNmMifQ%3D%3D; recommendationLoaded=true; _tt_enable_cookie=1; _ttp=07c75032-17bf-419c-a157-bfeef6728865; __ana_uid=1-kzhulbdm-l7qslmui; __ana_utm={"utm_source":"SMS","utm_campaign":"Carrinho Abandonado 1"}; _ga=GA1.2.683907312.1662505082; _gid=GA1.2.1241555415.1662505082; _gat=1; _ga=GA1.3.683907312.1662505082; _gid=GA1.3.1241555415.1662505082; _gat_bubbTracker=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:08 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IllVSkZQUm1JTTdnQTQwMDhESmJsTGc9PSIsInZhbHVlIjoiakFzeVRcL0NEQ1VwXC9hWlwvZ0w4NUVOQ1JrciswY2NJNkpyc1Z5NzBtWjlCUDhCTm5veVJxV0Z6aXFCZHBLamVReGN6anRic21Jckk4WlUyVEhnU3V5dXc9PSIsIm1hYyI6ImZjZGExOTllOTg4YTc0YjgxNTZlYTU3NTk0YWI4OGMwMGUyYTA5MWQ0OTY2MzA2YjdjNTZkNzI2YzVmYzhhMGIifQ%3D%3D; expires=Wed, 07-Sep-2022 01:58:08 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkxXVjY1eUM5TFNLaElmK3Q3ZytrOUE9PSIsInZhbHVlIjoib01FVzdpeWRwREpUOURHTFl5ZVg0ME91bU8rcCtNY0FBOXk4RjZvSTFMRzBmS2tPRTNqdkUyOUFuMEdaZU9KSXpXU2Ryak4yblwvK09NQWdmMkdNXC9IZz09IiwibWFjIjoiMTc0YzFmZmNlZjhiMDY2YWFkNThhMTJjY2M5N2FmZTU0ZmQwNmJkYjI5NzBkMWY5OWVjOWFhMTQwNzk4YWYxNSJ9; expires=Wed, 07-Sep-2022 01:58:08 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| api.mercadopago.com/v1/devices/widgets?referer=https%3A//seguro.marazul-tech.com | 107.23.32.171 | 200 OK | 12 kB |
URL HTTP/2api.mercadopago.com/v1/devices/widgets?referer=https%3A//seguro.marazul-tech.com IP107.23.32.171:0
Hash703aa2a5a7890e959c450175af2bda19 17c9c386641b864f8bffb100188b37f3f4743f54 437b1008b5d7dd6c4aa1b30ba71bb2e72fc9f4e010bf7033bb3606597d428473
POST /v1/devices/widgets?referer=https%3A//seguro.marazul-tech.com HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 45
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: application/json
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: public_get_session_widget
access-control-allow-origin: https://seguro.marazul-tech.com
access-control-allow-credentials: true
set-cookie: profile=1662505086921;Path=/;Max-Age=220752000;HttpOnly;SameSite=none;Secure
content-encoding: gzip
x-content-type-options: nosniff
x-request-id: d90912ef-466d-4e41-8c79-12beb02526d4
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: Content-Type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash10585eccdd73117e0bc71ecaf1cd02cb 7bda7ff7308cac8c8824a5a558097a15a2325f5e 6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash10585eccdd73117e0bc71ecaf1cd02cb 7bda7ff7308cac8c8824a5a558097a15a2325f5e 6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-223946953-1&cid=683907312.1662505082&jid=1760614729&gjid=446183222&_gid=1241555415.1662505082&_u=IEBAAEASAAAAAC~&z=1464447079 | 142.251.1.155 | 200 OK | 4 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-223946953-1&cid=683907312.1662505082&jid=1760614729&gjid=446183222&_gid=1241555415.1662505082&_u=IEBAAEASAAAAAC~&z=1464447079 IP142.251.1.155:0
File typeASCII text, with no line terminators Hash48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-223946953-1&cid=683907312.1662505082&jid=1760614729&gjid=446183222&_gid=1241555415.1662505082&_u=IEBAAEASAAAAAC~&z=1464447079 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.marazul-tech.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 06 Sep 2022 22:58:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-45745009-5&cid=683907312.1662505082&jid=555734269&gjid=1325333042&_gid=1241555415.1662505082&_u=IEHAAEATAAAAAC~&z=720182608 | 142.251.1.155 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-45745009-5&cid=683907312.1662505082&jid=555734269&gjid=1325333042&_gid=1241555415.1662505082&_u=IEHAAEATAAAAAC~&z=720182608 IP142.251.1.155:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-45745009-5&cid=683907312.1662505082&jid=555734269&gjid=1325333042&_gid=1241555415.1662505082&_u=IEHAAEATAAAAAC~&z=720182608 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.marazul-tech.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 06 Sep 2022 22:58:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash10585eccdd73117e0bc71ecaf1cd02cb 7bda7ff7308cac8c8824a5a558097a15a2325f5e 6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf53ebd30fa3351f320ca2c8764734ff1 9205e35b1cef1602414af2350ba6205f4129234c d486cc21bbc47eac5718644e1b280d12a5a4bc92ec97a0e88f184bf6422cb6f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-223946953-1&cid=683907312.1662505082&jid=1760614729&_u=IEBAAEASAAAAAC~&z=1308596214 | 142.250.74.3 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-223946953-1&cid=683907312.1662505082&jid=1760614729&_u=IEBAAEASAAAAAC~&z=1308596214 IP142.250.74.3:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-223946953-1&cid=683907312.1662505082&jid=1760614729&_u=IEBAAEASAAAAAC~&z=1308596214 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 22:58:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf53ebd30fa3351f320ca2c8764734ff1 9205e35b1cef1602414af2350ba6205f4129234c d486cc21bbc47eac5718644e1b280d12a5a4bc92ec97a0e88f184bf6422cb6f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 22:58:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.facebook.com/tr/?id=2509278342537416&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084290&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET | 31.13.72.36 | 200 OK | 44 B |
URL HTTP/2www.facebook.com/tr/?id=2509278342537416&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084290&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET IP31.13.72.36:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashb798f4ce7359fd815df4bdf76503b295 f8cc6addf1707ad236ad9970b0a48f9733d07da5 10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=2509278342537416&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084290&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Tue, 06 Sep 2022 22:58:10 GMT
expires: Tue, 06 Sep 2022 22:58:10 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=390733156029393&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084286&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET | 31.13.72.36 | 200 OK | 44 B |
URL HTTP/2www.facebook.com/tr/?id=390733156029393&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084286&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET IP31.13.72.36:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashb798f4ce7359fd815df4bdf76503b295 f8cc6addf1707ad236ad9970b0a48f9733d07da5 10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=390733156029393&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084286&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Tue, 06 Sep 2022 22:58:10 GMT
expires: Tue, 06 Sep 2022 22:58:10 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=4844011979027226&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084284&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET | 31.13.72.36 | 200 OK | 344 kB |
URL HTTP/2www.facebook.com/tr/?id=4844011979027226&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084284&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET IP31.13.72.36:0
File typegzip compressed data, from Unix\012- data Size344 kB (343595 bytes) Hash1a5584fac35948fd75522a3568061865 b6259577fad0d023ce17c5ded0a853ff3e579e3b c5826a7a317e292aecfd62cad55fdf849d9259c0ce1ab1e95d05e6896bdbfb1e
GET /tr/?id=4844011979027226&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084284&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Tue, 06 Sep 2022 22:58:10 GMT
expires: Tue, 06 Sep 2022 22:58:10 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=4879508188843032&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084288&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET | 31.13.72.36 | 200 OK | 86 kB |
URL HTTP/2www.facebook.com/tr/?id=4879508188843032&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084288&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET IP31.13.72.36:0
File typegzip compressed data, from Unix\012- data Hash99230f9ee58217dcbf78c8588091ae7e 3b6a3d8d846b11a3719dde913917e2630a335f37 dcc6012e6244a315298e55397953d57bcca4f2e087df26441b2dab8821d1f91e
GET /tr/?id=4879508188843032&ev=PageView&dl=https%3A%2F%2Fseguro.marazul-tech.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D173591c0-2dc8-11ed-8597-496e9ad2cca6%26promocode%3DDESCONTO10&rl=&if=false&ts=1662505084288&cd[content_ids]=%5B%227728646979820%22%5D&cd[content_type]=product_group&cd[value]=125.91&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=29&fbp=fb.1.1662505084283.145031210&it=1662505082179&coo=false&eid=PageView_ingvhj0qf&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Tue, 06 Sep 2022 22:58:10 GMT
expires: Tue, 06 Sep 2022 22:58:10 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seguro.marazul-tech.com/cart/payment | 170.82.173.30 | 200 OK | 16 kB |
URL HTTP/2seguro.marazul-tech.com/cart/payment IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash7e069ce4ef61da509f4f5bb2cdd8d2cd 260c34039f1254a2fec1cb572b29f00fbe5d646f f254f3d46f1c009002a69400b20eec9c1b380c8af3a46c7f5a38d72cce325a4c
Analyzer | Verdict | Alert | fortinet | Phishing | |
PUT /cart/payment HTTP/1.1
Host: seguro.marazul-tech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 85
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10
Cookie: XSRF-TOKEN=eyJpdiI6IkpnMEpSMmxwdDNlbmtOS1wvM0JKVDRBPT0iLCJ2YWx1ZSI6IlwvMW5TRkJGWjIwQ0wzZUNGdnNvZnhuVFlJRVwvT2xYTk40QkE0MkU3dFo2dkZtMHB6RndKdEROTEZVR0VPbzNWUHdaa0F4VDJ0TndKelVXXC9xbk1GQXJRPT0iLCJtYWMiOiI3MmMxZjQwNjMwNDU5ZmYxNTAyOWY1NjlhODVjNjZhNTcyMWI5NzQyMmZkOGI4OWM3NDZmM2ZhMmY4Y2IyNWNhIn0%3D; bubbstore_checkout=eyJpdiI6IkJ3ZjJPUmRuY3E0SHU0dGZCUCtWNlE9PSIsInZhbHVlIjoiM3V6ZXVvVnhvcXE5WjllakJpRGRcL2FMZHNzb01BT0MwOEpFWVJRaHpcL3hpcWY2Q0hxNklcLzdQNFoybVNtKzhtdXZcL2MrMXdLRHpzZm8wRSt6eFVCUVZ3PT0iLCJtYWMiOiJjOGQyNTBkNGI1YzY1MWEzNGQzMzNkOWZkNDdmMjYwOTQyMTljNGM5YmFiOWIxNGE5NGUxNWMxMGIzMDIwYjJmIn0%3D; marazul-tech_cart=eyJpdiI6IkI4dDFZMlU0SWhrVVJZdDlYOVh1K3c9PSIsInZhbHVlIjoiUXVQRHdHTmJHUGNYQnFaWlBGNXRcL0JhVTROblJhSGh6bXZlSGltampMbUhPelwvQUZcL1JqNll5MWxVajhRVXJRYUZYRkFLaXRaN1kxREhESXpKOUxpWUE9PSIsIm1hYyI6IjI5YmVlODAyZmRjNzE2ZWI5NGNmMmU0OTE3NjZiNjZlYWM5ZDQ1NGI0ODEwMTdjMzYxMDg0MmE3MmU2MmEwNmMifQ%3D%3D; recommendationLoaded=true; _tt_enable_cookie=1; _ttp=07c75032-17bf-419c-a157-bfeef6728865; __ana_uid=1-kzhulbdm-l7qslmui; __ana_utm={"utm_source":"SMS","utm_campaign":"Carrinho Abandonado 1"}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:08 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6InIwbU42UnAyUFwvN3cxKzhhZXNacVwvdz09IiwidmFsdWUiOiJjWVZ6XC91U1ZuTDdBU3JIb0JlWU5iZ0dOQkpCNDZ4ejR1cCtVbk5McEpMN3dwV1ZiZ3J3SzY4UTdFZkNPTEdpQTVCMkU0bDRtMFg3OXpEOVhvd2xRTFE9PSIsIm1hYyI6ImU0ZjZmOWM5Zjc1ZDc1M2M4NGQzMjk3MDdhOWIyMDNhMjVmMmQyYjQ0ZTg0YzdiYWQyN2ZhMzU4NGQ0YmRiNjkifQ%3D%3D; expires=Wed, 07-Sep-2022 01:58:08 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImYzTG5WeHlzdUNVa1wvU1ErWG5YUyt3PT0iLCJ2YWx1ZSI6Ik5nUW9nU2ZZTW90SkRTamoxVTN0SzFKbTZ1S3lyQUJDSTZcLzdJa3NIUDNYc1RWUUJCazJyQUNPY0gwaFlQQ0tEN0hPUDFcL0Q4M2JTd0JQM3pzY1hrcGc9PSIsIm1hYyI6ImYzZWU2NDQzM2M4MmUxMGVjOGFkZTBhYTgzZGE3Yzg5YzcxZDIzMWI3OTU1MGJkYTIyMWJlOTNhNGRlZjg5MGIifQ%3D%3D; expires=Wed, 07-Sep-2022 01:58:08 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| api.mercadopago.com/v1/device_sessions/anonymous_device_session | 107.23.32.171 | 200 OK | 0 B |
URL HTTP/2api.mercadopago.com/v1/device_sessions/anonymous_device_session IP107.23.32.171:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/device_sessions/anonymous_device_session HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://seguro.marazul-tech.com/
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:10 GMT
content-type: application/json; charset=utf-8
content-length: 0
access-control-allow-origin: https://seguro.marazul-tech.com
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-allow-headers: content-type
access-control-max-age: 86400
x-request-id: b203f113-58e6-48b5-8d57-6d6be7e42789
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-08,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: 2b5cbf65ef2e1840
x-b3-traceid: 2b5cbf65ef2e1840
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-trace-digest-08: yQk63F9cPeyiTB4Qf3pEIzPLRUHpCITam+kmRcKLZ2bqPmz1q0CbwYVSybHkV75A
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| api.mercadopago.com/v1/device_sessions/anonymous_device_session | 107.23.32.171 | 200 OK | 337 B |
URL HTTP/2api.mercadopago.com/v1/device_sessions/anonymous_device_session IP107.23.32.171:0
File typeJSON data\012- , ASCII text, with very long lines (337), with no line terminators Hashaf87bcc7420a6c23ed0a39829f5db690 8947fc3d91c28c1a44f9dedc5a608bc9552f55d2 de915a2d74deb4bb2df45744f67e673d5524c72eb8acb8f3e78341cf02e5453e
POST /v1/device_sessions/anonymous_device_session HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 98
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:10 GMT
content-type: application/json; charset=utf-8
content-length: 337
access-control-allow-origin: https://seguro.marazul-tech.com
x-request-id: 9f272ef9-1444-4bce-a075-eb864f3f02e0
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-08,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: 1638bf64e618672e
x-b3-traceid: 1638bf64e618672e
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-trace-digest-08: jJbGFVRSfpgkLnPviVNG5kC5hde9iHSuByEbw5gJiDbm2kSbYyzEK+UkigtS3ky1
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: Content-Type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| www.mercadolibre.com/jms/lgz/background/session/armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiJhYmVlM2M1MS03YmRiLTQwZDUtODVlNi02ZmYyZjE0NDM5MDAtMTY2MjUwNTA5MTA0NiIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiY2MwYTg1MmItZGVlMC00MWY3LWFlYmUtOThiYmZmOTNjZTMzLTE2NjI1MDUwOTEwNDYifQ%3D%3D%22%7D&callback=dp_jsonp.process | 143.204.55.42 | 200 OK | 0 B |
URL HTTP/2www.mercadolibre.com/jms/lgz/background/session/armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiJhYmVlM2M1MS03YmRiLTQwZDUtODVlNi02ZmYyZjE0NDM5MDAtMTY2MjUwNTA5MTA0NiIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiY2MwYTg1MmItZGVlMC00MWY3LWFlYmUtOThiYmZmOTNjZTMzLTE2NjI1MDUwOTEwNDYifQ%3D%3D%22%7D&callback=dp_jsonp.process IP143.204.55.42:0
GET /jms/lgz/background/session/armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae/cross_domain/jsonp?_method=PUT&_body=%7B%22msg%22%3A%22eyJqc3V1aWQiOiJhYmVlM2M1MS03YmRiLTQwZDUtODVlNi02ZmYyZjE0NDM5MDAtMTY2MjUwNTA5MTA0NiIsInN1cHBvcnRfaWRiIjp0cnVlLCJpZGJ1dWlkIjoiY2MwYTg1MmItZGVlMC00MWY3LWFlYmUtOThiYmZmOTNjZTMzLTE2NjI1MDUwOTEwNDYifQ%3D%3D%22%7D&callback=dp_jsonp.process HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mercadolibre.com/jms/lgz/background?dps=armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae
Connection: keep-alive
Cookie: dsid=d418ecec-f49e-42e3-9a59-22806e555bb4-1662505091045; edsid=264e95f4-d136-487b-a4e1-b53e207447c2-1662505091045
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
date: Tue, 06 Sep 2022 22:58:12 GMT
server: Tengine
set-cookie: _d2id=fdf6ad5a-bdbc-4841-a27d-cf3c6e353e6c-n; Path=/; Domain=.mercadolibre.com; Expires=Wed, 06 Sep 2023 22:58:12 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_cross_domain_profiling
content-encoding: gzip
x-envoy-upstream-service-time: 2
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: fdf6ad5a-bdbc-4841-a27d-cf3c6e353e6c
x-request-device-id: fdf6ad5a-bdbc-4841-a27d-cf3c6e353e6c
x-d2id: fdf6ad5a-bdbc-4841-a27d-cf3c6e353e6c
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qbNgKaiudTbmd_kwbhcLS2O3gifPWs7BcPUXNpX03jGNuI1RsyJ-WQ==
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap IP142.250.74.10:0
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 22:58:06 GMT
date: Tue, 06 Sep 2022 22:58:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| github.bubbstore.com/svg/card-mastercard.svg | 104.21.29.224 | 200 OK | 0 B |
URL HTTP/2github.bubbstore.com/svg/card-mastercard.svg IP104.21.29.224:0
GET /svg/card-mastercard.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-5b3"
expires: Tue, 06 Sep 2022 22:07:47 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 5FD2:0204:3F19C9:43B328:6306A3B0
via: 1.1 varnish
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1661379505.585928,VS0,VE172
vary: Accept-Encoding
x-fastly-request-id: d081bf9aa19b153f514ef3b177eb673dd6f0b687
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YQJZN8RW%2Fes2GPPLR%2BXTRYWnkoV8jgEyUdXa%2FTAfi%2By6gzIvdjLuME8WlKYUorfweNkkbtT1bDiM0AuBF261olgDjQVy649zOd2yJ3J%2Fmwn8hX2rE09sbi6L%2BbSOVpzTrJVRIh8IBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746aceb36ac80b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| github.bubbstore.com/svg/card-hipercard.svg | 104.21.29.224 | 200 OK | 0 B |
URL HTTP/2github.bubbstore.com/svg/card-hipercard.svg IP104.21.29.224:0
GET /svg/card-hipercard.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-54bc"
expires: Tue, 06 Sep 2022 22:07:47 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: D79C:C438:19BD234:1AFB49D:63175C58
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662475353.920092,VS0,VE123
vary: Accept-Encoding
x-fastly-request-id: f0b2a6ca2f786381a5e8b0e3e05418e8754cbef0
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PWD5qH5kfSXu%2FJkfGdJkCVKk1yOwE1V%2FRo1RoQv3CJEXF7YuOVcpwcCTLHwFQaGiA7TLeNtEwJfzMJZcxDLvz%2BYXQC8padhMm9LvgKD7Oihd0lSk4vb%2BsSNqlkFD5dZ7SLu6CKZ2AQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746aceb38ad80b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.yampi.io/ana/ana.min.js?t=1662508800000 | 104.18.14.227 | 200 OK | 0 B |
URL HTTP/2cdn.yampi.io/ana/ana.min.js?t=1662508800000 IP104.18.14.227:0
GET /ana/ana.min.js?t=1662508800000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:07 GMT
content-type: application/javascript
x-amz-id-2: uu1Cit7W4/zJw0yIYCNsZf6hiqR54ydtWcjbBp+2TnIb8mnesOqzCrJsTWeyDhossY9Bjbaq3yk=
x-amz-request-id: 8DGNYJEQZHB3SZ5W
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
expires: Wed, 06 Sep 2023 22:58:07 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 746aceb7ab1db50b-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.dooki.com.br/fa/4.7.0/fa.css | 104.18.0.53 | 200 OK | 0 B |
URL HTTP/2fonts.dooki.com.br/fa/4.7.0/fa.css IP104.18.0.53:0
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 3619
expires: Wed, 14 Sep 2022 22:58:06 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 746aceb38ec8b4eb-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.mercadolibre.com/jms/lgz/background?dps=armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae | 143.204.55.42 | 200 OK | 0 B |
URL HTTP/2www.mercadolibre.com/jms/lgz/background?dps=armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae IP143.204.55.42:0
GET /jms/lgz/background?dps=armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Tue, 06 Sep 2022 22:58:11 GMT
server: Tengine
set-cookie: _d2id=c62a18bf-726a-4bae-b36e-dff89d2a2be6-n; Path=/; Domain=.mercadolibre.com; Expires=Wed, 06 Sep 2023 22:58:11 GMT
access-control-allow-origin: *
x-transaction-name: cross_domain_profiler
content-encoding: gzip
x-envoy-upstream-service-time: 13
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: c62a18bf-726a-4bae-b36e-dff89d2a2be6
x-request-device-id: c62a18bf-726a-4bae-b36e-dff89d2a2be6
x-d2id: c62a18bf-726a-4bae-b36e-dff89d2a2be6
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 47rMG17_g4PPXjEEmoeiBvA5vHatdv8mhmwfBw9EJqOuTR0NhecMzA==
X-Firefox-Spdy: h2
|
|
| github.bubbstore.com/svg/card-visa.svg | 104.21.29.224 | 200 OK | 0 B |
URL HTTP/2github.bubbstore.com/svg/card-visa.svg IP104.21.29.224:0
GET /svg/card-visa.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-1288"
expires: Tue, 06 Sep 2022 22:07:47 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 84D6:76B5:648E7D:692BA6:62EA7A7B
via: 1.1 varnish
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1659533947.116294,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: de52283287c6ca651e1d2a45cea6f5f85f686675
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xMRgwXl7J2ALIHUjzziTij%2FQRxlGgKOs3Ozx1Ti00TFrHspKB8VdLy5anmmpzCHDdhGqzFtDL1qMR%2BXeK5Y6FqGuAB9nE877G%2Fs%2FqEXlaGChdePuUs9QLyU0%2BcmWlbYEp7gxq6MaRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746aceb36acd0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seguro.marazul-tech.com/e/t | 170.82.173.30 | 200 OK | 0 B |
URL HTTP/2seguro.marazul-tech.com/e/t IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer | Verdict | Alert | fortinet | Phishing | |
POST /e/t HTTP/1.1
Host: seguro.marazul-tech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 369
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10
Cookie: XSRF-TOKEN=eyJpdiI6IkpnMEpSMmxwdDNlbmtOS1wvM0JKVDRBPT0iLCJ2YWx1ZSI6IlwvMW5TRkJGWjIwQ0wzZUNGdnNvZnhuVFlJRVwvT2xYTk40QkE0MkU3dFo2dkZtMHB6RndKdEROTEZVR0VPbzNWUHdaa0F4VDJ0TndKelVXXC9xbk1GQXJRPT0iLCJtYWMiOiI3MmMxZjQwNjMwNDU5ZmYxNTAyOWY1NjlhODVjNjZhNTcyMWI5NzQyMmZkOGI4OWM3NDZmM2ZhMmY4Y2IyNWNhIn0%3D; bubbstore_checkout=eyJpdiI6IkJ3ZjJPUmRuY3E0SHU0dGZCUCtWNlE9PSIsInZhbHVlIjoiM3V6ZXVvVnhvcXE5WjllakJpRGRcL2FMZHNzb01BT0MwOEpFWVJRaHpcL3hpcWY2Q0hxNklcLzdQNFoybVNtKzhtdXZcL2MrMXdLRHpzZm8wRSt6eFVCUVZ3PT0iLCJtYWMiOiJjOGQyNTBkNGI1YzY1MWEzNGQzMzNkOWZkNDdmMjYwOTQyMTljNGM5YmFiOWIxNGE5NGUxNWMxMGIzMDIwYjJmIn0%3D; marazul-tech_cart=eyJpdiI6IkI4dDFZMlU0SWhrVVJZdDlYOVh1K3c9PSIsInZhbHVlIjoiUXVQRHdHTmJHUGNYQnFaWlBGNXRcL0JhVTROblJhSGh6bXZlSGltampMbUhPelwvQUZcL1JqNll5MWxVajhRVXJRYUZYRkFLaXRaN1kxREhESXpKOUxpWUE9PSIsIm1hYyI6IjI5YmVlODAyZmRjNzE2ZWI5NGNmMmU0OTE3NjZiNjZlYWM5ZDQ1NGI0ODEwMTdjMzYxMDg0MmE3MmU2MmEwNmMifQ%3D%3D; recommendationLoaded=true; _tt_enable_cookie=1; _ttp=07c75032-17bf-419c-a157-bfeef6728865; __ana_uid=1-kzhulbdm-l7qslmui; __ana_utm={"utm_source":"SMS","utm_campaign":"Carrinho Abandonado 1"}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:08 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjhaaDNBUlFtOEhiQVZ4blpNNHh5Qmc9PSIsInZhbHVlIjoiT3ByVm4ySTRSRk1RRnZPTU9ac0FZQzJJcVZBVlk2NGFiUDhkMDFlb25wbnBYRHJiRDQ5QmIxSytIZWZoUlNwaDNHQ1RZTlR5Q3lLWXpSeWhPRzRqS3c9PSIsIm1hYyI6Ijc4MWZlYjFhMDlmYTY3ZTJmZTA0YTc4ZjhiMzNiYzQ0NTUwMTI3NWE0YjJlZTE2NzE2MGQwZGZjZTY1OTUzMjUifQ%3D%3D; expires=Wed, 07-Sep-2022 01:58:08 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6Im54ODBhVjdZQVhpenlFd3RTKzQ1OVE9PSIsInZhbHVlIjoicU5hM0lYb2VsYmlXTzgwVTBHYlBMVnRseHpXakNEYWl3UkFtUmJJaGhHd294NGJETUhVa1R4MXpmR2RuYkNiaU1lOHFiQlArUTJYTVJnblpmanVFNGc9PSIsIm1hYyI6IjQ5NjE4YjRkNzRkYjhlOTM3NTY3MGQxM2ZjNDcyOTZhNDRlNjM5ODZkZGYwYTQxZjFkODhjMzdhZDI3MTU1NTcifQ%3D%3D; expires=Wed, 07-Sep-2022 01:58:08 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/identify.js | 104.84.152.241 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/i18n/pixel/identify.js IP104.84.152.241:0 ASN#20940 Akamai International B.V.
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202209062258074ED3CB194DA867714390
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61e38a0d78b3a2a780a7134bf39a63bb3154d2a63b146885b8c9a5967046e62b1f1830e3274154c9938f9fd381f5e81c20ca5aa17d2ff469e81420daf4a6df133b4a977fe7f3dbb93c69ddd3b7556688d4c
content-encoding: gzip
x-origin-response-time: 6,23.201.31.213
x-akamai-request-id: cfc7ffe.459280f6
expires: Tue, 06 Sep 2022 22:58:07 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Sep 2022 22:58:07 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-201-31-213.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=6, inner; dur=2
x-parent-response-time: 108,104.84.152.237
X-Firefox-Spdy: h2
|
|
| www.mercadolivre.com/jms/mlb/lgz/background/session/armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3?background=armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3&message=eyJhZF9ibG9jayI6ZmFsc2UsImNhbnZhcyI6IjdiZTAwMmIyODcyMDYzYTM0ZTQzZjM0YmYxYjNkMzc0IiwiY29ubmVjdGlvbiI6bnVsbCwiY29va2llX2VuYWJsZWQiOnRydWUsImRldmljZV9tZW1vcnkiOjAsImRvX25vdF90cmFjayI6InVuc3BlY2lmaWVkIiwiZXRhZyI6IjA5NTIxNDdkLTIxMDUtNGQ2Ny05YzM5LWMwZWY3MjE5YTlmYi0xNjYyNTA1MDg3NTc5IiwiZm9udHMiOnsib3MiOjI5MTQsIm90aGVyX29zIjoiW1wie1xcXCJQYWxhdGlubyBMaW5vdHlwZVxcXCIgOjJ9XCIsXCJ7XFxcIlVSVyBHb3RoaWMgTFxcXCIgOjB9XCIsXCJ7XFxcIlVSVyBCb29rbWFuIExcXFwiIDowfVwiLFwie1xcXCJVUlcgUGFsbGFkaW8gTFxcXCIgOjB9XCIsXCJ7XFxcIk5pbWJ1cyBTYW5zIExcXFwiIDowfVwiLFwie1xcXCJCb29rbWFuIE9sZHN0eWxlXFxcIiA6NX1cIixcIntcXFwiSGVsdmV0aWNhXFxcIiA6M31cIixcIntcXFwiQ291cmllclxcXCIgOjN9XCIsXCJ7XFxcIkJpdHN0cmVhbSBWZXJhIFNhbnNcXFwiIDozfVwiLFwie1xcXCJCaXRzdHJlYW0gVmVyYSBTYW5zIE1vbm9cXFwiIDozfVwiLFwie1xcXCJCaXRzdHJlYW0gVmVyYSBTZXJpZlxcXCIgOjN9XCIsXCJ7XFxcIk5ldyBDZW50dXJ5IFNjaG9vbGJvb2tcXFwiIDozfVwiLFwie1xcXCJOaW1idXMgTW9ub1xcXCIgOjB9XCIsXCJ7XFxcIkNlbnR1cnkgU2Nob29sYm9vayBMXFxcIiA6MH1cIixcIntcXFwiVVJXIENoYW5jZXJ5IExcXFwiIDowfVwiLFwie1xcXCJEZWphVnUgU2FucyBNb25vXFxcIiA6MH1cIixcIntcXFwiRGVqYVZ1IFNhbnNcXFwiIDowfVwiLFwie1xcXCJEZWphVnUgU2VyaWZcXFwiIDowfVwiXSIsIm5vdF9vcyI6MjkxNH0sImhhcmR3YXJlX2NvbmN1cnJlbmN5IjoxNiwiaGlzdG9yeSI6MSwiaW5jb2duaXRvIjpmYWxzZSwianNfdHlwZSI6ImpzX2hhc2giLCJsYW5nIjoiZW4tVVMiLCJsYW5ndWFnZXMiOlsiZW4tVVMiLCJlbiJdLCJsaXRlcmFsX2NvbG9ycyI6MTc5NjQwNDIyMCwibG9jYWxfc3RvcmFnZSI6dHJ1ZSwibG9naW5fZGV0ZWN0aW9uIjp7Imdvb2dsZSI6ZmFsc2V9LCJtYXRoX251bWJlciI6MTEwMjMuMzg3NDA2MTUwOTQsIm9wZW5fZGF0YWJhc2UiOmZhbHNlLCJwaXhlbF9yYXRpbyI6MSwicGxhdGZvcm0iOiJMaW51eCB4ODZfNjQiLCJ3ZWJnbCI6bnVsbCwicGx1Z2lucyI6e30sInJlc29sdXRpb24iOiIxMDI0eDEyODB4MjQiLCJzY3JlZW4iOnsib3JpZW50YXRpb24iOjAsInR5cGUiOiJsYW5kc2NhcGUtcHJpbWFyeSIsImF2YWlsX2hlaWdodCI6MTAwMiwiYXZhaWxfbGVmdCI6MCwiYXZhaWxfdG9wIjowLCJhdmFpbF93aWR0aCI6MTI4MH0sInNlc3Npb25fc3RvcmFnZSI6dHJ1ZSwidGltZSI6eyJjYW52YXMiOjMwLCJ3ZWJnbCI6MiwidXNlcmZvbnRzIjo3MywiYnJvd3NlcnBsdWdpbnMiOjAsInBsdWdpbnMiOjAsImluc3RhbGxlZGZvbnRzIjo1NCwiaGFzaCI6MTkwLCJ0b3RhbCI6MTkwfSwidGltZV9iYXNlZF9mcCI6bnVsbCwidGltZV96b25lX25hbWUiOiJVVEMiLCJ0aW1lX3pvbmVfb2Zmc2V0IjowLCJ0b3VjaF9wb2ludHMiOjAsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsInZlbmRvciI6IiIsIndpbmRvd19zaXplIjp7ImlubmVyIjoiOTM5eDEyODAiLCJvdXRlciI6IjEwMjR4MTI4MCJ9LCJ3ZWJkcml2ZXIiOmZhbHNlLCJpbnN0YWxsZWRfZm9udHMiOlsiUGFsYXRpbm8iLCJUaW1lcyJdLCJpbnN0YWxsZWRfcGx1Z2lucyI6W10sImxpZ2h0X3ZlcnNpb24iOmZhbHNlLCJyZWZlcmVyIjpudWxsLCJ3ZWJjYW0iOmZhbHNlLCJoYXNfc2Vzc2lvbl9pZCI6dHJ1ZX0%3D | 143.204.55.53 | 200 OK | 0 B |
URL HTTP/2www.mercadolivre.com/jms/mlb/lgz/background/session/armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3?background=armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3&message=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%3D IP143.204.55.53:0
GET /jms/mlb/lgz/background/session/armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3?background=armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3&message=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%3D HTTP/1.1
Host: www.mercadolivre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Tue, 06 Sep 2022 22:58:11 GMT
server: Tengine
set-cookie: _d2id=01f8a9fd-1806-4b5f-89af-e49c659b833a-n; Path=/; Domain=.mercadolivre.com; Expires=Wed, 06 Sep 2023 22:58:11 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
content-encoding: gzip
x-envoy-upstream-service-time: 3
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 01f8a9fd-1806-4b5f-89af-e49c659b833a
x-request-device-id: 01f8a9fd-1806-4b5f-89af-e49c659b833a
x-d2id: 01f8a9fd-1806-4b5f-89af-e49c659b833a
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9bSxPLlIvPhkwOuIDIe7VThJwZLTtgRMEj_OdN-IdmJwLXSUE0POBA==
X-Firefox-Spdy: h2
|
|
| www.mercadolivre.com/jms/mlb/lgz/background/session/armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae?background=armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae&message=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%3D | 143.204.55.53 | 200 OK | 0 B |
URL HTTP/2www.mercadolivre.com/jms/mlb/lgz/background/session/armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae?background=armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae&message=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%3D IP143.204.55.53:0
GET /jms/mlb/lgz/background/session/armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae?background=armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae&message=eyJhZF9ibG9jayI6ZmFsc2UsImNhbnZhcyI6IjdiZTAwMmIyODcyMDYzYTM0ZTQzZjM0YmYxYjNkMzc0IiwiY29ubmVjdGlvbiI6bnVsbCwiY29va2llX2VuYWJsZWQiOnRydWUsImRldmljZV9tZW1vcnkiOjAsImRvX25vdF90cmFjayI6InVuc3BlY2lmaWVkIiwiZXRhZyI6IjA5NTIxNDdkLTIxMDUtNGQ2Ny05YzM5LWMwZWY3MjE5YTlmYi0xNjYyNTA1MDg3NTc5IiwiZm9udHMiOnsib3MiOjI5MTQsIm90aGVyX29zIjoiW1wie1xcXCJQYWxhdGlubyBMaW5vdHlwZVxcXCIgOjJ9XCIsXCJ7XFxcIlVSVyBHb3RoaWMgTFxcXCIgOjB9XCIsXCJ7XFxcIlVSVyBCb29rbWFuIExcXFwiIDowfVwiLFwie1xcXCJVUlcgUGFsbGFkaW8gTFxcXCIgOjB9XCIsXCJ7XFxcIk5pbWJ1cyBTYW5zIExcXFwiIDowfVwiLFwie1xcXCJCb29rbWFuIE9sZHN0eWxlXFxcIiA6NX1cIixcIntcXFwiSGVsdmV0aWNhXFxcIiA6M31cIixcIntcXFwiQ291cmllclxcXCIgOjN9XCIsXCJ7XFxcIkJpdHN0cmVhbSBWZXJhIFNhbnNcXFwiIDozfVwiLFwie1xcXCJCaXRzdHJlYW0gVmVyYSBTYW5zIE1vbm9cXFwiIDozfVwiLFwie1xcXCJCaXRzdHJlYW0gVmVyYSBTZXJpZlxcXCIgOjN9XCIsXCJ7XFxcIk5ldyBDZW50dXJ5IFNjaG9vbGJvb2tcXFwiIDozfVwiLFwie1xcXCJOaW1idXMgTW9ub1xcXCIgOjB9XCIsXCJ7XFxcIkNlbnR1cnkgU2Nob29sYm9vayBMXFxcIiA6MH1cIixcIntcXFwiVVJXIENoYW5jZXJ5IExcXFwiIDowfVwiLFwie1xcXCJEZWphVnUgU2FucyBNb25vXFxcIiA6MH1cIixcIntcXFwiRGVqYVZ1IFNhbnNcXFwiIDowfVwiLFwie1xcXCJEZWphVnUgU2VyaWZcXFwiIDowfVwiXSIsIm5vdF9vcyI6MjkxNH0sImhhcmR3YXJlX2NvbmN1cnJlbmN5IjoxNiwiaGlzdG9yeSI6MSwiaW5jb2duaXRvIjpmYWxzZSwianNfdHlwZSI6ImpzX2hhc2giLCJsYW5nIjoiZW4tVVMiLCJsYW5ndWFnZXMiOlsiZW4tVVMiLCJlbiJdLCJsaXRlcmFsX2NvbG9ycyI6MTc5NjQwNDIyMCwibG9jYWxfc3RvcmFnZSI6dHJ1ZSwibG9naW5fZGV0ZWN0aW9uIjp7Imdvb2dsZSI6ZmFsc2V9LCJtYXRoX251bWJlciI6MTEwMjMuMzg3NDA2MTUwOTQsIm9wZW5fZGF0YWJhc2UiOmZhbHNlLCJwaXhlbF9yYXRpbyI6MSwicGxhdGZvcm0iOiJMaW51eCB4ODZfNjQiLCJ3ZWJnbCI6bnVsbCwicGx1Z2lucyI6e30sInJlc29sdXRpb24iOiIxMDI0eDEyODB4MjQiLCJzY3JlZW4iOnsib3JpZW50YXRpb24iOjAsInR5cGUiOiJsYW5kc2NhcGUtcHJpbWFyeSIsImF2YWlsX2hlaWdodCI6MTAwMiwiYXZhaWxfbGVmdCI6MCwiYXZhaWxfdG9wIjowLCJhdmFpbF93aWR0aCI6MTI4MH0sInNlc3Npb25fc3RvcmFnZSI6dHJ1ZSwidGltZSI6eyJjYW52YXMiOjMwLCJ3ZWJnbCI6MiwidXNlcmZvbnRzIjo3MywiYnJvd3NlcnBsdWdpbnMiOjAsInBsdWdpbnMiOjAsImluc3RhbGxlZGZvbnRzIjo1NCwiaGFzaCI6MTkwLCJ0b3RhbCI6MTkwfSwidGltZV9iYXNlZF9mcCI6bnVsbCwidGltZV96b25lX25hbWUiOiJVVEMiLCJ0aW1lX3pvbmVfb2Zmc2V0IjowLCJ0b3VjaF9wb2ludHMiOjAsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsInZlbmRvciI6IiIsIndpbmRvd19zaXplIjp7ImlubmVyIjoiOTM5eDEyODAiLCJvdXRlciI6IjEwMjR4MTI4MCJ9LCJ3ZWJkcml2ZXIiOmZhbHNlLCJpbnN0YWxsZWRfZm9udHMiOlsiUGFsYXRpbm8iLCJUaW1lcyJdLCJpbnN0YWxsZWRfcGx1Z2lucyI6W10sImxpZ2h0X3ZlcnNpb24iOmZhbHNlLCJyZWZlcmVyIjpudWxsLCJ3ZWJjYW0iOmZhbHNlLCJoYXNfc2Vzc2lvbl9pZCI6dHJ1ZX0%3D HTTP/1.1
Host: www.mercadolivre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Tue, 06 Sep 2022 22:58:11 GMT
server: Tengine
set-cookie: _d2id=370cdf45-96fd-4351-b9d1-05b0f870576c-n; Path=/; Domain=.mercadolivre.com; Expires=Wed, 06 Sep 2023 22:58:11 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
content-encoding: gzip
x-envoy-upstream-service-time: 3
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 370cdf45-96fd-4351-b9d1-05b0f870576c
x-request-device-id: 370cdf45-96fd-4351-b9d1-05b0f870576c
x-d2id: 370cdf45-96fd-4351-b9d1-05b0f870576c
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wT4_EFBYhDCeLuEnwvXjAmM3yBJzWtwJkRsXMukyR3i0TWh55jG5lg==
X-Firefox-Spdy: h2
|
|
| www.mercadolibre.com/jms/lgz/background/session/armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae?background=armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D | 143.204.55.42 | 200 OK | 0 B |
URL HTTP/2www.mercadolibre.com/jms/lgz/background/session/armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae?background=armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D IP143.204.55.42:0
GET /jms/lgz/background/session/armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae?background=armor.6687e9f50304d65d1ca604df4b2887ce4d5f9b02d7026d4713736b9a7e2becf89c11e52ab5e081d6980d2449cf3c9b36a5b7e47fcbc75a0dba019381548c4188caac76c0f08233b7489a6f6b97ed5ef4cc5d3c558e13c9a0412cab768058ce33.e7d6f2ad6a0a74edeb7659fe8fda39ae&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Tue, 06 Sep 2022 22:58:11 GMT
server: Tengine
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
set-cookie: _d2id=6f8e1f58-9cb8-40fc-93d4-9fcbe8b3494f-n; Path=/; Domain=.mercadolibre.com; Expires=Wed, 06 Sep 2023 22:58:11 GMT
dsid=d418ecec-f49e-42e3-9a59-22806e555bb4-1662505091045;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
edsid=264e95f4-d136-487b-a4e1-b53e207447c2-1662505091045;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 10
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 6f8e1f58-9cb8-40fc-93d4-9fcbe8b3494f
x-request-device-id: 6f8e1f58-9cb8-40fc-93d4-9fcbe8b3494f
x-d2id: 6f8e1f58-9cb8-40fc-93d4-9fcbe8b3494f
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BhE26OUSimO_Fh69G1A2uZBI9Kn64uvVP3viRmANSHZmTabD7oS0Uw==
X-Firefox-Spdy: h2
|
|
| github.bubbstore.com/svg/card-aura.svg | 104.21.29.224 | 200 OK | 0 B |
URL HTTP/2github.bubbstore.com/svg/card-aura.svg IP104.21.29.224:0
GET /svg/card-aura.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-111a"
expires: Tue, 06 Sep 2022 22:07:47 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: B3E4:210E:2AE947:2E39F2:62EA7A7B
via: 1.1 varnish
x-served-by: cache-bma1623-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1659533947.115851,VS0,VE106
vary: Accept-Encoding
x-fastly-request-id: 42916230cf12b0bda932a4d252d9e38dd0770242
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rTMHk0ddd0JFcJd9VGXdLpjsJXjjChbe8I7y8xfd3bnfyT3gRQwckTx1bCzvMn49rP34fi%2FFQOqzgOCKUGf2HNSpMCo8l0wxyFCc83EUz5PuwUIyoHE5WkvfTSiZx3baCcLC5iYZdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746aceb36ac40b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| seguro.marazul-tech.com/e/t | 170.82.173.30 | 200 OK | 0 B |
URL HTTP/2seguro.marazul-tech.com/e/t IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer | Verdict | Alert | fortinet | Phishing | |
POST /e/t HTTP/1.1
Host: seguro.marazul-tech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 365
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10
Cookie: XSRF-TOKEN=eyJpdiI6IkRhZmVhMXNDY0VZaU9YcmYyY3k2WkE9PSIsInZhbHVlIjoiOVE5bmZFT0NTdXdRSTBTYjdrd2VzWmdkTmpFc3NwdkFRZ1liaG5DTmc4RHF6d0hHTkU4XC93cnJ3T3Ryd1hHQmRCUVFLMzM1QitKVTJRZWl2bWwyWUdRPT0iLCJtYWMiOiI5ZGU1ZWM0Nzc2NGMzNTFhNmRhM2Q2ODBjNDIxODRkZGY5YTUzNzA0YmVlNjhkZDdhZGI0M2Q2N2Y3ZjRiZmNiIn0%3D; bubbstore_checkout=eyJpdiI6ImxZZWJoWVZEdHZvQXdoUVVHNFBrdUE9PSIsInZhbHVlIjoiZGJpR0ZkVUJ0ZjBBQnpLNFpVMm50dFFcL2J2K2o2ZnVteTFlT0FiSjVwM0RNR3RNMkJqdjc1S3RQTjgwM0YrelIxYWM2WVFjSDI1cW8rZmsrdEpVOGJRPT0iLCJtYWMiOiIxYmU0ZTY1ZDk4MDg0OWUzNGE1YjQxYzNiNmJmMDQ3NmIwMDRmZDM4MzAwNjAyOTVkNDFiY2EyYzUyNGZhM2VmIn0%3D; marazul-tech_cart=eyJpdiI6IkI4dDFZMlU0SWhrVVJZdDlYOVh1K3c9PSIsInZhbHVlIjoiUXVQRHdHTmJHUGNYQnFaWlBGNXRcL0JhVTROblJhSGh6bXZlSGltampMbUhPelwvQUZcL1JqNll5MWxVajhRVXJRYUZYRkFLaXRaN1kxREhESXpKOUxpWUE9PSIsIm1hYyI6IjI5YmVlODAyZmRjNzE2ZWI5NGNmMmU0OTE3NjZiNjZlYWM5ZDQ1NGI0ODEwMTdjMzYxMDg0MmE3MmU2MmEwNmMifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:07 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IkpnMEpSMmxwdDNlbmtOS1wvM0JKVDRBPT0iLCJ2YWx1ZSI6IlwvMW5TRkJGWjIwQ0wzZUNGdnNvZnhuVFlJRVwvT2xYTk40QkE0MkU3dFo2dkZtMHB6RndKdEROTEZVR0VPbzNWUHdaa0F4VDJ0TndKelVXXC9xbk1GQXJRPT0iLCJtYWMiOiI3MmMxZjQwNjMwNDU5ZmYxNTAyOWY1NjlhODVjNjZhNTcyMWI5NzQyMmZkOGI4OWM3NDZmM2ZhMmY4Y2IyNWNhIn0%3D; expires=Wed, 07-Sep-2022 01:58:07 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkJ3ZjJPUmRuY3E0SHU0dGZCUCtWNlE9PSIsInZhbHVlIjoiM3V6ZXVvVnhvcXE5WjllakJpRGRcL2FMZHNzb01BT0MwOEpFWVJRaHpcL3hpcWY2Q0hxNklcLzdQNFoybVNtKzhtdXZcL2MrMXdLRHpzZm8wRSt6eFVCUVZ3PT0iLCJtYWMiOiJjOGQyNTBkNGI1YzY1MWEzNGQzMzNkOWZkNDdmMjYwOTQyMTljNGM5YmFiOWIxNGE5NGUxNWMxMGIzMDIwYjJmIn0%3D; expires=Wed, 07-Sep-2022 01:58:07 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| github.bubbstore.com/svg/card-discover.svg | 104.21.29.224 | 200 OK | 0 B |
URL HTTP/2github.bubbstore.com/svg/card-discover.svg IP104.21.29.224:0
GET /svg/card-discover.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-f89"
expires: Tue, 06 Sep 2022 22:07:47 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 1014:0A90:4B789E:D04ADA:629E764A
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1654556035.983946,VS0,VE101
vary: Accept-Encoding
x-fastly-request-id: d0464c181bd44a3b4ddea5e69abcb252f448f82a
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R%2BgV0CJvIimnsBGXBs5URSGQsh98HqGxk06lJUQ1b%2BwFTLbSLr%2F2FrwWsSqHIiriUGweJ8ITJhVAvewUYgkLd%2FupfVz4%2B6sbXUrpV6A5F5Dycrppttq%2BsIuPMhqZqBSKZA3BxVdsug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746aceb36ac30b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| api.mercadopago.com/v1/device_sessions/web_device | 107.23.32.171 | 200 OK | 0 B |
URL HTTP/2api.mercadopago.com/v1/device_sessions/web_device IP107.23.32.171:0
POST /v1/device_sessions/web_device HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 48
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:07 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://seguro.marazul-tech.com
x-request-id: 525d08bc-8815-4f23-91ba-f02091e745ea
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-50,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: dadbd7173c658ff0
x-b3-traceid: dadbd7173c658ff0
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-trace-digest-50: TcRBKXbD0Tag2b7Q8eTTEfo+IOFfZHigYF/RssCp2DNsxAeqiVFDblEJr+x0mvbT
access-control-allow-credentials: true
vary: Accept-Encoding, Accept,Accept-Encoding
cache-control: max-age=0
set-cookie: profile=1662505086936;Path=/;Max-Age=220752000;HttpOnly;SameSite=none;Secure
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: Content-Type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.mercadolibre.com/jms/lgz/background/session/armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3?background=armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D | 143.204.55.42 | 200 OK | 0 B |
URL HTTP/2www.mercadolibre.com/jms/lgz/background/session/armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3?background=armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D IP143.204.55.42:0
GET /jms/lgz/background/session/armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3?background=armor.0e39fe8b727dc3c5bfcf9efc508f1e20658597a995188920dd3b72c12a871ca3da7859ec70acdc590bd1f2b232f33ac66bfefd4db49105d118a5543c3e2260559068cec086a9430da9e651915317f512b382d56bfaa0024e54747f8fe7273cc9.1f5f0caf48e90f283f4791a5cf022ae3&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Tue, 06 Sep 2022 22:58:11 GMT
server: Tengine
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
set-cookie: _d2id=582a3903-c09a-4c29-a9b4-de7385796c76-n; Path=/; Domain=.mercadolibre.com; Expires=Wed, 06 Sep 2023 22:58:11 GMT
dsid=fb28e813-fbad-4a9a-9d90-1644b2258de5-1662505091038;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
edsid=a57eba75-83d3-4f92-87f8-51dcc0109ae5-1662505091038;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 9
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 582a3903-c09a-4c29-a9b4-de7385796c76
x-request-device-id: 582a3903-c09a-4c29-a9b4-de7385796c76
x-d2id: 582a3903-c09a-4c29-a9b4-de7385796c76
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4XPSLEoSP8fP6bU3mO49aKOGgQmk2NVTU5JWXyAIsvgkAy79oP3Qkg==
X-Firefox-Spdy: h2
|
|
| cdn.yampi.me/jquery/jquery.js | 104.26.2.88 | 200 OK | 0 B |
URL HTTP/2cdn.yampi.me/jquery/jquery.js IP104.26.2.88:0
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:05 GMT
content-type: application/javascript
x-amz-id-2: wJhbb+wve3IBCLN+i98oA8RKqKMqW1e3wuPAOF1J7Nwcjv20jg3exY+yLyWVWh3jCubgrVSOXOY=
x-amz-request-id: BV3779XFHJY1PMHT
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3618
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XrwZXqhbM5LVMukLAZGBhyCXfc41tUrr1pct54KJJx6uAD2y04lzk8rk9%2BtAnk0FKllyvOFT2SFP2THVeZUR2PQ4IqAJWxRRZehkJLh9mtfn0OG7BDyWZpYLJwDR7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746aceb30c68b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.mercadopago.com/v2/security.js | 143.204.55.57 | 200 OK | 0 B |
URL HTTP/2www.mercadopago.com/v2/security.js IP143.204.55.57:0
GET /v2/security.js HTTP/1.1
Host: www.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 06 Sep 2022 22:58:06 GMT
set-cookie: _d2id=4bd2352a-5181-4c6a-aab5-340d7853860b-n; Path=/; Domain=.mercadopago.com; Expires=Wed, 06 Sep 2023 22:58:06 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: get_off_widget
content-encoding: gzip
x-request-id: 4bd2352a-5181-4c6a-aab5-340d7853860b
x-request-device-id: 4bd2352a-5181-4c6a-aab5-340d7853860b
x-d2id: 4bd2352a-5181-4c6a-aab5-340d7853860b
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Y8rsftJfLZpMe6gnf8YPirATeUDf8jFkXjmrsdnx-JzaYhlLOKWQfA==
X-Firefox-Spdy: h2
|
|
| seguro.marazul-tech.com/cart/promocode/store | 170.82.173.30 | 200 OK | 0 B |
URL HTTP/2seguro.marazul-tech.com/cart/promocode/store IP170.82.173.30:0 ASN#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer | Verdict | Alert | fortinet | Phishing | |
POST /cart/promocode/store HTTP/1.1
Host: seguro.marazul-tech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 63
Origin: https://seguro.marazul-tech.com
Connection: keep-alive
Referer: https://seguro.marazul-tech.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=173591c0-2dc8-11ed-8597-496e9ad2cca6&promocode=DESCONTO10
Cookie: XSRF-TOKEN=eyJpdiI6IkRhZmVhMXNDY0VZaU9YcmYyY3k2WkE9PSIsInZhbHVlIjoiOVE5bmZFT0NTdXdRSTBTYjdrd2VzWmdkTmpFc3NwdkFRZ1liaG5DTmc4RHF6d0hHTkU4XC93cnJ3T3Ryd1hHQmRCUVFLMzM1QitKVTJRZWl2bWwyWUdRPT0iLCJtYWMiOiI5ZGU1ZWM0Nzc2NGMzNTFhNmRhM2Q2ODBjNDIxODRkZGY5YTUzNzA0YmVlNjhkZDdhZGI0M2Q2N2Y3ZjRiZmNiIn0%3D; bubbstore_checkout=eyJpdiI6ImxZZWJoWVZEdHZvQXdoUVVHNFBrdUE9PSIsInZhbHVlIjoiZGJpR0ZkVUJ0ZjBBQnpLNFpVMm50dFFcL2J2K2o2ZnVteTFlT0FiSjVwM0RNR3RNMkJqdjc1S3RQTjgwM0YrelIxYWM2WVFjSDI1cW8rZmsrdEpVOGJRPT0iLCJtYWMiOiIxYmU0ZTY1ZDk4MDg0OWUzNGE1YjQxYzNiNmJmMDQ3NmIwMDRmZDM4MzAwNjAyOTVkNDFiY2EyYzUyNGZhM2VmIn0%3D; marazul-tech_cart=eyJpdiI6IkI4dDFZMlU0SWhrVVJZdDlYOVh1K3c9PSIsInZhbHVlIjoiUXVQRHdHTmJHUGNYQnFaWlBGNXRcL0JhVTROblJhSGh6bXZlSGltampMbUhPelwvQUZcL1JqNll5MWxVajhRVXJRYUZYRkFLaXRaN1kxREhESXpKOUxpWUE9PSIsIm1hYyI6IjI5YmVlODAyZmRjNzE2ZWI5NGNmMmU0OTE3NjZiNjZlYWM5ZDQ1NGI0ODEwMTdjMzYxMDg0MmE3MmU2MmEwNmMifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 22:58:06 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6ImhybmtZSXNiaHBTSTNsUDRKalhhc3c9PSIsInZhbHVlIjoicnBHQ3MxU0FGcE1mWHIzczVQUmZjMUcydUVxdm56NnVHcVJwTmVmWUtLTEp6bkJqa3JmQnYxZWhWK1dvKzlaOVpXOUNsZjVSV3FyY1hMMVh5UnR4XC9RPT0iLCJtYWMiOiI0YzA5MzJlNDNhYjVmODQxMmIzMmRhMjc1NTQ1YWEyMGE2MDkxYTdlMTA0YWM2YzQ5MjdhYzMwMDY5ZDc4MDA1In0%3D; expires=Wed, 07-Sep-2022 01:58:06 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IjJaNFg4WnZYWGtUK0hXWXZNejlIaHc9PSIsInZhbHVlIjoia3dObUUwUUU5UG4wVDhoS2J6bmFRRld1dERib3d1dnRJMjVkbTB2WCswVllyMmEzbDFZMlBUS0pUWVwvczdKeWliRUtuNmtzOUQyQlBJMUJucTZoc3hBPT0iLCJtYWMiOiI2YTRiNmQ2ZmM4YjgzNGZjNTIyZjUwNjBjMDNhMjQ0YzdkYWE1MTc5YmFjYTgwMzZhYTcxNGRjNzY2YTEyMTI1In0%3D; expires=Wed, 07-Sep-2022 01:58:06 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|