r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3525
Expires: Mon, 30 Jan 2023 18:11:33 GMT
Date: Mon, 30 Jan 2023 17:12:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4116
Expires: Mon, 30 Jan 2023 18:21:24 GMT
Date: Mon, 30 Jan 2023 17:12:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 16:43:12 GMT
content-type: application/json
age: 1776
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5935
Expires: Mon, 30 Jan 2023 18:51:43 GMT
Date: Mon, 30 Jan 2023 17:12:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: GELRlQTYdn51eadTrFnaUMJPEktlPri4FnoIoxT0m+lG4fjw2dN0y6iS+KdKaHPRLz9jx97DH8g=
x-amz-request-id: GXKCAHVFN40HS0A9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 16:21:52 GMT
age: 3056
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
seguro.hypersofertas.com/checkout/payment?cart_token=shopify-47f274a19a3fcc951d1b815826fac6bd&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=897f3768a06beaa65cfcf6161d34fc8fc1efbccc&customerToken=50e84120-a0ab-11ed-8f6b-57f1410960b7
170.82.174.30301 Moved Permanently 134 B URL HTTP/1.1 seguro.hypersofertas.com/checkout/payment?cart_token=shopify-47f274a19a3fcc951d1b815826fac6bd&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=897f3768a06beaa65cfcf6161d34fc8fc1efbccc&customerToken=50e84120-a0ab-11ed-8f6b-57f1410960b7
IP 170.82.174.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /checkout/payment?cart_token=shopify-47f274a19a3fcc951d1b815826fac6bd&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=897f3768a06beaa65cfcf6161d34fc8fc1efbccc&customerToken=50e84120-a0ab-11ed-8f6b-57f1410960b7 HTTP/1.1
Host: seguro.hypersofertas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 30 Jan 2023 17:12:48 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.hypersofertas.com:443/checkout/payment?cart_token=shopify-47f274a19a3fcc951d1b815826fac6bd&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=897f3768a06beaa65cfcf6161d34fc8fc1efbccc&customerToken=50e84120-a0ab-11ed-8f6b-57f1410960b7
X-GoCache-CacheStatus: BYPASS
Server: gocache
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 17:12:48 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 16:41:41 GMT
age: 1867
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8a418997ea3f826335a57110ef1c29bb
da8241c4936eca1a919a17bee68927cf5fa39ea1
f4b7afeada622a9fcb84995377ec258b24ea99669b5d5bcacd50c698079de498
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4B7AFEADA622A9FCB84995377EC258B24EA99669B5D5BCACD50C698079DE498"
Last-Modified: Sun, 29 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Mon, 30 Jan 2023 23:11:54 GMT
Date: Mon, 30 Jan 2023 17:12:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17800
Expires: Mon, 30 Jan 2023 22:09:28 GMT
Date: Mon, 30 Jan 2023 17:12:48 GMT
Connection: keep-alive
push.services.mozilla.com/
54.185.76.10101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.185.76.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 40DBPWbf0MxjeXCuYvY8mw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: q+PBGOGgrUBgxvwsnTnyV1mCY/o=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6087ae5275b4789459f6d9a16513bbac
5984aebe1cd7f4c344ddad68d6ffd0817fe9edca
28d75d9dddc438ebded84e2411fa3a5cf483a632915330c420eaa2c384ed1e78
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4323
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Last-Modified: Mon, 30 Jan 2023 16:00:47 GMT
Server: ECS (amb/6B7B)
X-Cache: HIT
Content-Length: 280
www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
142.250.74.132200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
IP 142.250.74.132:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 9209866a4051c1a5a169b9f6ca2d5d69
c1561a92f66c11e4fef89fd3fd359bbda76a304a
f0a5a0f1ce8b494947bf336db830d604be27826ce7961f5118b352d9718ff188
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 30 Jan 2023 17:12:50 GMT
date: Mon, 30 Jan 2023 17:12:50 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleoptimize.com/optimize.js?id=OPT-N6QHJQM
142.250.74.78200 OK 44 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-N6QHJQM
IP 142.250.74.78:0
File type ASCII text, with very long lines (1759)
Hash f52992811eb8c3091559cafa6a45c9e5
f40d613b93b36082d5562e0c54a851451be0d955
a76b25a0840c0bb8b29a2e825f87b3479116ac8b18d6124bda46b19234645fcd
GET /optimize.js?id=OPT-N6QHJQM HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 17:12:50 GMT
expires: Mon, 30 Jan 2023 17:12:50 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44346
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5326b21d631a007711e6fbf06e4b49b3
df0e5920fc75ab927a943d48f608a761ad9994b8
452348a616223ae8df6e8ae2bc529f0b2d78436345200bf2ab641ea456740794
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Server: ECS (amb/6B7B)
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7108
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 17:12:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7108
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 17:12:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7108
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 17:12:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 23:25:02 GMT
age: 64068
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4jPbm4WufkUKm7ljLvpHrJUFhr-JQ_nl3iYfI5S8nTqEszFdUtz9EQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:56:46 GMT
age: 69364
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UNub7Gd4S0ogn5EJhtJVu8q1qML5_4eL2lIPQXiAuXy_q-XiR4s-5w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:21 GMT
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
age: 69449
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: soTFEnYjNcti77h3FpnztwzR7ypv68NbyoI6DxS0NhU412ykFsWAgA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:00:38 GMT
age: 69132
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:08 GMT
age: 69582
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Wx-qjsrMLYpLmE-8QmpR46BeRySbUGL2Rrr6LqhEQ8jaEEj_6Aj0qg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:52:09 GMT
age: 69641
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5326b21d631a007711e6fbf06e4b49b3
df0e5920fc75ab927a943d48f608a761ad9994b8
452348a616223ae8df6e8ae2bc529f0b2d78436345200bf2ab641ea456740794
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=171007
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Etag: "63d7f391-118"
Expires: Wed, 01 Feb 2023 16:42:57 GMT
Last-Modified: Mon, 30 Jan 2023 16:42:57 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5326b21d631a007711e6fbf06e4b49b3
df0e5920fc75ab927a943d48f608a761ad9994b8
452348a616223ae8df6e8ae2bc529f0b2d78436345200bf2ab641ea456740794
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=171007
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Etag: "63d7f391-118"
Expires: Wed, 01 Feb 2023 16:42:57 GMT
Last-Modified: Mon, 30 Jan 2023 16:42:57 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5326b21d631a007711e6fbf06e4b49b3
df0e5920fc75ab927a943d48f608a761ad9994b8
452348a616223ae8df6e8ae2bc529f0b2d78436345200bf2ab641ea456740794
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Last-Modified: Mon, 30 Jan 2023 17:12:50 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
fonts.dooki.com.br/fa/4.7.0/fa.css
104.18.1.53200 OK 7.4 kB URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.css
IP 104.18.1.53:0
Hash ab19f1cd30b7422efc7768cf509de6fd
ec46134ee1eaba56ac736041d5f83a079cdc13d7
9c54950ea673c08cf15454ed2e873674e824608189bb4826799c03b96ca56789
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: REVALIDATED
expires: Tue, 07 Feb 2023 17:12:50 GMT
cache-control: public, max-age=691200
set-cookie: __cf_bm=IOaPNlxUwROyq.CkkvTM0sbBjeY_uCuz1qQrkTVfKiE-1675098770-0-AdBRWSZgPgZco1VWXyHiZt3xXeqyDpy0PmGbUn9NiFnVKf/idYjLVYGWhNQYqhF/XzWRXA381RHfDqR7C1pqhJw=; path=/; expires=Mon, 30-Jan-23 17:42:50 GMT; domain=.dooki.com.br; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 791bd5b0ce8eb4ed-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 419515f9ae0cf2ae08ab911e0a2edf92
2e022c370c39d22eed0686dfa9ef4d19af18741d
7f0126e196c79c53cadbedc3b7d2dee2f07ad2b67f6b17e4a721a443100a7493
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 17:12:50 GMT
Last-Modified: Mon, 30 Jan 2023 15:32:09 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pzV0_yaa2VUEJcLiaCKfEzH6d-Fn01VDvnUB_lPx-oCzJMmRn0jQng==
Age: 6041
cdn.shopify.com/s/files/1/0642/4818/5091/products/sale_250x250.png
23.227.60.200200 OK 9.6 kB URL HTTP/2 cdn.shopify.com/s/files/1/0642/4818/5091/products/sale_250x250.png
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 07cd9b18b070ecffed95272bb4da371f
178441dec1ee518685695466f8757109429c74a6
40e3675ff68392680556915a3c8ff37578bf2ccd719dfbab78ed75923677b874
GET /s/files/1/0642/4818/5091/products/sale_250x250.png HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: image/avif
content-length: 9607
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0642/4818/5091/products/sale_250x250.png>; rel="canonical"
source-length: 876315
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: e5bbd8b0-46ee-4908-8737-854b6ec7407b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Sat, 28 Jan 2023 06:20:46 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K3gJIaENCahe4XTTs6IvpIeVXteWYYF%2Bl61YWgkDxZDzOcK%2FtkT5jyCrZvnbiQjslOMX5JzZYXsh1Kty8pvvZRQokJbeh6WJ5jVkLFVvLGHQyp%2FaEr%2FRubdX%2FnlDdNI%2FyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=816.492, imageryFetch;dur=57.566, imageryProcess;dur=757.675;desc="image", cfRequestDuration;dur=162.999868
server: cloudflare
cf-ray: 791bd5b45fb0fabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e63f9bf9231f8d40b42fca03277e3f0
e3b9ddc60256fccb8176fe7444cf58668256193f
6916e3db8ad0513a65d345178f6110835313756dc4a6e5bf64069b9d83a1de37
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6916E3DB8AD0513A65D345178F6110835313756DC4A6E5BF64069B9D83A1DE37"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2357
Expires: Mon, 30 Jan 2023 17:52:07 GMT
Date: Mon, 30 Jan 2023 17:12:50 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
github.bubbstore.com/svg/card-visa.svg
172.67.149.218200 OK 36 kB URL HTTP/2 github.bubbstore.com/svg/card-visa.svg
IP 172.67.149.218:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1343)
Hash fd30d57a924e5ea027aafa4920daa08d
c625073059f055f77774c8e710763cff0ceaa103
c8994a86154a559d99c328f9674dc13dc3c644255997a6b3b840018b8f697d90
GET /svg/card-visa.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-1288"
expires: Mon, 30 Jan 2023 14:40:41 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: DB9E:CF3F:E3AFF5:EC260A:63C930C9
via: 1.1 varnish
x-served-by: cache-bma1681-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674129609.085268,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: f718f8968a6d102e06af5658dd63adf7f854d93d
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JhFPGsGXrY59KjjcgSBmyFiKvZswaZMNtYAE%2B%2FnURVdihj2YS8dCxiq0p1Yv4veqoiXSITIH5VT0XW3%2FwET1mVyq4Kk2xUpWF1PNiQPE%2F6G6YmeI5zBztcAc4a1YW1zQv36KDhThJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791bd5b25a26b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7ee7a9b8881c57a17a517c94924e9d2f
bfc4c3c50491b6e0cd63e75cae1b2d2296cc54a4
971956f4191d288a416fe990662d0d6dc4fd5acc8e8d1bfeadaaf518ba8ddfd0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:50 GMT
Etag: "63d68038-116"
Server: ECS (amb/6BA7)
Content-Length: 279
cdn.yampi.io/ana/ana.min.js?t=1675123200000
104.18.15.227200 OK 3.1 kB URL HTTP/2 cdn.yampi.io/ana/ana.min.js?t=1675123200000
IP 104.18.15.227:0
Hash ff471eb4b6cc82a0f377944ec070c213
282fc0277a7ffca62156e38a0617c9c40c7054f7
1650e06d4c13396f9f2b3e8149cbc7226b8f9eecf03f6005f5a9bf37d11ba5f1
GET /ana/ana.min.js?t=1675123200000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: application/javascript
x-amz-id-2: PE1bqu1URzb6C4zK1y9MKhfk8n4jHIjESGEHtdkX+BDuS2xRciezG8ojef16rTuaw1Ry3N/904Q=
x-amz-request-id: 90M4GMY3EM94WP1H
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
age: 6064
expires: Tue, 30 Jan 2024 17:12:50 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 791bd5b60a30b4f4-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
142.250.74.106200 OK 31 kB URL HTTP/2 fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
IP 142.250.74.106:0
Hash 7538432c4a4ec2a42550cdd9e3915c5a
b23509462e45ad738a7505e84e5d8e2abc90e1da
b0f55f0ce2f373a0911777e2589a24fa74538efe6f57210b8cef9373169e2338
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 17:12:50 GMT
date: Mon, 30 Jan 2023 17:12:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
104.18.1.53200 OK 77 kB URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
IP 104.18.1.53:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.hypersofertas.com
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:51 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: lEJ/6Gwm312DHMRfaKf9xE+A7rwosvr8BRC+YkHOuOBVkS+pgMTBV4JpBhT5aWg0UEicMfMxHO8=
x-amz-request-id: 6QBRFVCS6C06D8KY
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: MISS
expires: Tue, 07 Feb 2023 17:12:51 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=9e0Rlr8gTtJq2T6LgYerVbKUTE4WhSg9ptnsRWCy_is-1675098771-0-Aek45I7YPG5N8qApTK6lnrG2tniw2HZ+gEVc3UTISvUzbLsqfG+qprB0r8/fYK2S8FwvvErKGfRcmDfGz0WccYk=; path=/; expires=Mon, 30-Jan-23 17:42:51 GMT; domain=.dooki.com.br; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 791bd5b50e831c06-OSL
X-Firefox-Spdy: h2
cdn.yampi.me/jquery/jquery.js
172.67.72.14200 OK 35 kB URL HTTP/2 cdn.yampi.me/jquery/jquery.js
IP 172.67.72.14:0
File type ASCII text, with very long lines (32060)
Hash c4d51eb7a8e043863a34c3703da53a75
8d2dcdc101a554fb9dd771b84974acbfec05a47f
7f9f88b8460d57b33963edf6e306db455020fb0ffcb81dbb3e551da3d050940f
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: application/javascript
x-amz-id-2: cvnt6Bg7zbti5Bm8Lp0rAGY7y345bRB4T32MulxMxGJI1GHuapNQjUTBRTBFSQUT3nXc9o650NA=
x-amz-request-id: TP7GXVJKXZ65D2ZZ
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M6RRdGdQOgGhC3KT4JMQ9BuoklDT4Y28JOqEyVl1GkBjHgq8mTve4QzJGnD5u3nvw4W%2FAKNtF8oN9GazjDIQ9he%2B9LKhB2X0j29YtGJu26C0JrO0dmCoOexX6n4gtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791bd5b198580b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4029
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:51 GMT
Last-Modified: Mon, 30 Jan 2023 16:05:43 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 15:46:59 GMT
expires: Mon, 30 Jan 2023 17:46:59 GMT
cache-control: public, max-age=7200
age: 5152
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.hypersofertas.com
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 197
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: jO4e4rLm6SAIVvB3c79Nj8gNNiaKLibOjHGaO5tp/jV+Eubdt8WO2eFW+IaqfCf7sGDwdI2Z6hoX72WFolPQhw==
priority: u=3,i
content-length: 27815
x-fb-trip-id: 1679558926
date: Mon, 30 Jan 2023 17:12:51 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4029
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:51 GMT
Last-Modified: Mon, 30 Jan 2023 16:05:43 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
54.230.111.75200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
IP 54.230.111.75:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 8665e233ef6caaf010ca89793f27b6f8
5c593fa5f33e55b3081308b43e6e801b56c047f7
435a3ca7c1c49cbfac193647d056e46217e5c3f9c65c354974ad7acdfb8925ac
GET /box-2722367854ce9702c28ea74c51e2a23f.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "8665e233ef6caaf010ca89793f27b6f8"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -5AYcG2VyR65--h-eb2at0JoTNrTucHcFQNO-xvliRoS1kXzoLnKzA==
age: 4005
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/63ce05ea9aef8/63ce05ea9aefa.png
16.12.1.32200 OK 24 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/63ce05ea9aef8/63ce05ea9aefa.png
IP 16.12.1.32:0
File type PNG image data, 243 x 271, 8-bit/color RGBA, non-interlaced\012- data
Hash a36710a110e30dd07d22140bcf2a2cec
75e59ac685eb46deb16918b60dd269b50361b244
d385ba0b1005c8694604d022e996f637e827eeae9cb4688c601d38df369c36d6
GET /king-assets.yampi.me/dooki/63ce05ea9aef8/63ce05ea9aefa.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: C2rPI1dPx6L2QlXrYCzZ6PiYMBlnJMZp4dr0tSJP5fcUOqV2/7HLrNvNhWW8otZTZJVQavn9vKY=
x-amz-request-id: 6QBZ8Z2YQQN08ZXX
Date: Mon, 30 Jan 2023 17:12:52 GMT
Last-Modified: Mon, 23 Jan 2023 03:58:35 GMT
ETag: "a36710a110e30dd07d22140bcf2a2cec"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 24358
cdn.taboola.com/libtrc/unip/1481309/tfa.js
151.101.65.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1481309/tfa.js
IP 151.101.65.44:0
File type ASCII text, with very long lines (59672)
Hash 1ae0a562f62bbe9d6618d32e9830aa36
65241b37e907b44e8c80af492fcf243fddc66fa5
0809930f680ca929e92a702dff95c3b54943d73f2afee1758f319bf90e8e4001
GET /libtrc/unip/1481309/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PZzuoUdxr3jtt3LFsUKC7FkYz+ixonyWpTrWWPLcxhfUuG9lGwJh3yCz6e0QFuWF30C0sE+nVGA=
x-amz-request-id: HYXCCNA2WS2NTPN3
x-amz-replication-status: COMPLETED
last-modified: Sun, 29 Jan 2023 11:10:30 GMT
etag: "203132eea25b9251182cf64eb2db9dd6"
x-amz-version-id: Ecib1sQFfK2zG4LUHwtahXTYxF6Il2KT
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 17:12:51 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675098772.620080,VS0,VE191
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 17
content-length: 18352
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=225946503.1675098785&jid=1519604152&gjid=201807130&_gid=576999748.1675098785&_u=IEDAAAASAAAAAC~&z=1288502792
209.85.233.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=225946503.1675098785&jid=1519604152&gjid=201807130&_gid=576999748.1675098785&_u=IEDAAAASAAAAAC~&z=1288502792
IP 209.85.233.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=225946503.1675098785&jid=1519604152&gjid=201807130&_gid=576999748.1675098785&_u=IEDAAAASAAAAAC~&z=1288502792 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.hypersofertas.com
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.hypersofertas.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 30 Jan 2023 17:12:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
script.hotjar.com/modules.4b160a4831adaf5337e6.js
54.230.111.93200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.4b160a4831adaf5337e6.js
IP 54.230.111.93:0
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 3315b6999637291711ab85ba678211fa
d1bba723aa49e6276dfdb0f1313a9bf0b64be153
b3bd4f702044ae91c9227ce2d5c8411d3fec3abb82c9c1b7a9b69d2011c520e5
GET /modules.4b160a4831adaf5337e6.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68316
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "3315b6999637291711ab85ba678211fa"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TIHAsAZ4gFnH1v3JwzAE6rxwWH8AX1o17tfHgJ4ND9OHU8b7U6kNWg==
age: 4005
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js-agent.newrelic.com/859.95d4308d-1222.js
151.101.2.137200 OK 3.0 kB URL HTTP/2 js-agent.newrelic.com/859.95d4308d-1222.js
IP 151.101.2.137:0
File type ASCII text, with very long lines (6657), with no line terminators
Hash 364ac85aef21ab784eeec8f55116dff7
82089547d57defc88e114832b7eb9919a8876e31
255295be519de9a2d1040b1c547c25756b63310e2d7234bcf252ed41d5278c0b
GET /859.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PAOkWJ6WiOdnSUVZHZQv79Edy7uPwU81uM9fUJQx6T8UpQupKV3O9whnAR+3HGoYTBPmehtRe7k=
x-amz-request-id: WFN4FJZ1XN6DZ8EG
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "b087387593417c0b63259918da3584e3"
x-amz-version-id: GtNmis6Y3zB4SbtciuRtabFzp3T7wBIy
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 17:12:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1655-BMA
x-cache: HIT
x-cache-hits: 4890
x-timer: S1675098772.045358,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2975
X-Firefox-Spdy: h2
seguro.hypersofertas.com/cart/recomm
170.82.173.30200 OK 3.5 kB URL HTTP/2 seguro.hypersofertas.com/cart/recomm
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type JSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8131), with no line terminators
Hash a29f064fda103322c3f2e97a7b20e4c3
271a0bb01cb691c2577c1d71f2f2d530550aa574
48c2cffc9764b2e3910c7a07652a4d6e53c5029b4d2771e27b21f59695b34442
Analyzer Verdict Alert fortinet Phishing
GET /cart/recomm HTTP/1.1
Host: seguro.hypersofertas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImFkZTlkNzc3NzQ5YjRiNDMiLCJ0ciI6IjVmOGVlOGYzYjczYjM0OGI1ZjVlMGFmMTdiZTFjZWQwIiwidGkiOjE2NzUwOTg3ODM3MjJ9fQ==
traceparent: 00-5f8ee8f3b73b348b5f5e0af17be1ced0-ade9d777749b4b43-01
tracestate: 2935249@nr=0-1-2935249-1134170823-ade9d777749b4b43----1675098783722
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=50e84120-a0ab-11ed-8f6b-57f1410960b7
Cookie: XSRF-TOKEN=eyJpdiI6ImFRZ0wxS1RNdDZyN1R0SkRaOGdhV1E9PSIsInZhbHVlIjoibVJCeGpBTXU5XC9jWmY0NFBXbzE3dVN2WnFZR1Z6UFFFRmV0VENGemZcL1BhbEs0R3VuNlcwa3hrZ1dGd2FSNzVuY1Jrd3BvaDlQZ2RJdXh5bmVnMFBOZz09IiwibWFjIjoiYzk3YTliYjFmZTlmZGZjZmI5MDBiMWVlMTM3YjhjNzMzMzdiYzEwYWQ5MjA5Y2VhNGRiYWJlNWY3Yjc1ZmExZiJ9; bubbstore_checkout=eyJpdiI6ImdyOHorM2ZRQmVrRWlOWTIxOHlCbFE9PSIsInZhbHVlIjoiOXA4aXFMczVRdml6bkpCQmtTQ3E5OGhqQWJCc2FVUGROVVV5bHpaQTV0QnpQQnk3R0JLc2VBaGI2NStjQzd5c0hMNGRFU3FuUENmUWxZNHFodEYySkE9PSIsIm1hYyI6IjkwZDM3NDA3YzIyMDViNTNlYTAxMTc3ZWMxYTNjNzczMjZkNjI5OGZjYzA5MjBjZWIxZWY1ODY0NzIxNjZhODQifQ%3D%3D; hypers-ofertas_cart=eyJpdiI6IlVncDROQnQ2MjhkM2Rhd042UExzMnc9PSIsInZhbHVlIjoid3grSnJxaUVHMmZjb2U4bVljUWRXZmg3ckJmdXRXXC9ReW1FRE1ydkcrWk5Cb2hCWFV0bEVmbGtWQ1RsZGRRc2loY2xtVU9KblB2Rmo1MXV0YlNOU2d3PT0iLCJtYWMiOiIzNDAzMDMxNjI3Yjk5YmQwNDQ0Y2MzMGE4N2U0ZDg4MWNkZmRiNGEzZjk4NjUyN2Q2NTMwN2NmODVmNzZkNWNlIn0%3D; cart_auth_309674253=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%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:51 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6Im5wY1J3eU1xMFN2Ujd1cnhaY3U1XC9nPT0iLCJ2YWx1ZSI6ImJOSkQ1V3JvcGNyVnJ5K3lWQ2dvaXZYTTlROGxmanlUcnpxNVwvWGc0RHFVWDE3YXFGcGJpTGxcL1NScFZrVVpnQ3p0T2t4YmtUVTBxSFZyR29hVXVmSUE9PSIsIm1hYyI6IjEyN2NiMGE4MWJlMWYyMjkzYTViMWFkZjg4YzQzY2IxNjkzMGJhZjlhZTJjNmZjZTllMzA0YzA5M2MzZWY4NTAifQ%3D%3D; expires=Mon, 30-Jan-2023 20:12:51 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImtSSDQza2pIRFwvV3orWFZyd29oa3VnPT0iLCJ2YWx1ZSI6Im9CamNwQWtiNzhNbW5cLzJRd2o3K0JKalpCTjVxT2doZG1iRjR6UHhndVV4SjM5MEExZXNGbjlzUDZwaE5jOVwvN0NEaDBuaXVKTUx6ZzJoTGNjTXRxN3c9PSIsIm1hYyI6ImFmYmNjMGM4NWRlNGE3NmQ0ZmFmNTQ4N2YyMDZhNzYxYWJjNjZjMjI4OGExZjViZDE3Njc4ZTliODM0OTFjNTQifQ%3D%3D; expires=Mon, 30-Jan-2023 20:12:51 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
js-agent.newrelic.com/620.95d4308d-1222.js
151.101.2.137200 OK 2.4 kB URL HTTP/2 js-agent.newrelic.com/620.95d4308d-1222.js
IP 151.101.2.137:0
Hash 8db98bfedd0245df1f507e9b28090c59
7dd99ea8cc41c0aba71e5d01a8bbd0eac7a171bf
6521a48afa683fc04602797ab5cb5ebfa11c5dc63fc736226ed7b170522030ab
GET /620.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: QggJtv+14rx8wEd4C6ZTDmmxUSe6+8jiYhTGnWcIRu6DC5pRiaL5fPRx8/lgChduQ7GqRSlO6xY=
x-amz-request-id: WFN5FXFSJTZYM7K6
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "ca9b029ff66dd9146273984d16e20abc"
x-amz-version-id: HYguQMwVKEHCmodKuQRUzW1qxlElK9Xr
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 17:12:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1655-BMA
x-cache: HIT
x-cache-hits: 4895
x-timer: S1675098772.080678,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1342
X-Firefox-Spdy: h2
js-agent.newrelic.com/885.95d4308d-1222.js
151.101.2.137200 OK 5.9 kB URL HTTP/2 js-agent.newrelic.com/885.95d4308d-1222.js
IP 151.101.2.137:0
File type ASCII text, with very long lines (16348), with no line terminators
Hash 2414f7dbfd0e2cb3d826fc02a8b608dc
550db9b7abbcd2e5a0d4ab9c414933e1a0bd36fc
8239519b8bff793ad186f4ab9017f8a6ed34edc1df3361958075077ee7677b3d
GET /885.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: iuZsFv406u1sMvs0ma20vGvuMApZWTFFZj+faC5P7Ry157RP7v+m+H8/pYueXH7fkGpYpHbtGFk=
x-amz-request-id: 99ZMGE3ZKMAWH9CW
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "fb9bb822463bccec4200657d3ae33dc0"
x-amz-version-id: PKmhKUoshrjILDxYc6QEKM_sGJ.F4FNB
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 17:12:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1655-BMA
x-cache: HIT
x-cache-hits: 1951
x-timer: S1675098772.097595,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 5930
X-Firefox-Spdy: h2
js-agent.newrelic.com/41.95d4308d-1222.js
151.101.2.137200 OK 439 B URL HTTP/2 js-agent.newrelic.com/41.95d4308d-1222.js
IP 151.101.2.137:0
File type ASCII text, with very long lines (828), with no line terminators
Hash 46946da829a2257cd8bdeb75bc6f8ff9
bfb81d0ebb2c5a2c0fe666f6a9c4c09cc5a545b3
50e164f0b5274f88ecc28c833729663593b3380aed5a4ac3a06d29106332a544
GET /41.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2TG7kVMnt5x5EwbcjDgF/pAaH/jmgGXStlMFEbvOUPNYaRTe14pFRmwb0VQGFJQN7uXfEncHoqkNLs4TYWl92Q==
x-amz-request-id: MFEHG5GPGK6ZYQVP
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "29dd8aef66100e4c69e07fd60fc88b12"
x-amz-version-id: 6FOFyXAonMoqJqLGEMhx7HWIp32cv4MT
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 17:12:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1655-BMA
x-cache: HIT
x-cache-hits: 4920
x-timer: S1675098772.099391,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 439
X-Firefox-Spdy: h2
js-agent.newrelic.com/457.95d4308d-1222.js
151.101.2.137200 OK 2.0 kB URL HTTP/2 js-agent.newrelic.com/457.95d4308d-1222.js
IP 151.101.2.137:0
File type ASCII text, with very long lines (4809), with no line terminators
Hash 09c0cca8d2a9fd69f1892a1c2d1319b9
b46f4fe3b0adc98785d22a092818b74145a91cc0
593022809e272793157f8280bae176bfa74a02f9f9a6d3269384e2dd434be046
GET /457.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 6YLQBRWWkaavoi6QR5dS+9cRhXVrpaQK5v3G9/iqQ5oKPUxxFI0Uv2tN9ar51sQUG2xwVmTWBnY=
x-amz-request-id: WFN1Z9NXJZGF8XE5
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "c16abc7fa2e34cbb7baf3e290120ad5a"
x-amz-version-id: qROfxBD9CF8WXmbywdhvCmImuu9HvRNA
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 17:12:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1655-BMA
x-cache: HIT
x-cache-hits: 4900
x-timer: S1675098772.099312,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1953
X-Firefox-Spdy: h2
js-agent.newrelic.com/244.95d4308d-1222.js
151.101.2.137200 OK 2.6 kB URL HTTP/2 js-agent.newrelic.com/244.95d4308d-1222.js
IP 151.101.2.137:0
File type ASCII text, with very long lines (6871), with no line terminators
Hash f3fa38d9e10cf246f158644ebd64b342
c2730a8b130475b903b30148ea5cf79eb7de1873
6aea0ff08f0ed145b42d52f81d167df30a300f3da22b687fa2de3be48df1badb
GET /244.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: HqAuLbtc4kLXjp/HM/sZyPqsDbRk1eMZXQl1gAv0l9/yRrGf//JiuVcahDTT5bis4NqiPxfG4OQ=
x-amz-request-id: D866GB1QGPTYVJ4R
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "a24fd7e602a6b44ab4c03cab69c843c6"
x-amz-version-id: wm7C04ehQ1WMJgMW5R_.Vg0x6NJINoji
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 17:12:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1655-BMA
x-cache: HIT
x-cache-hits: 2928
x-timer: S1675098772.099939,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2607
X-Firefox-Spdy: h2
js-agent.newrelic.com/736.95d4308d-1222.js
151.101.2.137200 OK 2.1 kB URL HTTP/2 js-agent.newrelic.com/736.95d4308d-1222.js
IP 151.101.2.137:0
File type ASCII text, with very long lines (4688), with no line terminators
Hash a0dd1bd64e5912ed2b69ab00c181333c
9f4001e3f6c7fd3105972022cde6a67638ba8083
2ea47cc022696e899accbc531bbb7e3abc01f1598cedaa9f23e071d47ee510a0
GET /736.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: wZ5lT7Qk1E9hmsxWDncLcs+Ic+aBtWHWGPUcVxaeVym/k+6uixaPTXfOiP+keWUZ+GKP0xL2SDo=
x-amz-request-id: MFESCF9VXQC5P35J
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "def1dc24974c16a4e78c08e349b92860"
x-amz-version-id: i.8rfLhEckzO44oBXwNAK9an0lbXu.5p
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 17:12:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1655-BMA
x-cache: HIT
x-cache-hits: 2926
x-timer: S1675098772.100039,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2132
X-Firefox-Spdy: h2
js-agent.newrelic.com/142.95d4308d-1222.js
151.101.2.137200 OK 880 B URL HTTP/2 js-agent.newrelic.com/142.95d4308d-1222.js
IP 151.101.2.137:0
File type ASCII text, with very long lines (2014), with no line terminators
Hash c962fb555005bf74b5010cd5c748c721
5c7c22b348a994aad18e8162bb1f78b9fd49c491
077c18d946bf505b4efe75b1b3c3d9c6b3ad6af3e5b5d08a41fedf7aceb84233
GET /142.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: /ZtX43ynOvSaYlrJ/LhlDymHqsr4/Ext49IQ1RQZxLK2MPDMHv59yC5Li6+9oNRuTnKxUqkvJhI=
x-amz-request-id: MFEMFHWSJ1CY7RPR
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "082c9f0a95ce6870ed4d9266fa0e41e5"
x-amz-version-id: ed_.QNbbUDaLQJRSZtC0TghsoJcp2gVk
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 17:12:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1655-BMA
x-cache: HIT
x-cache-hits: 2923
x-timer: S1675098772.100581,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 880
X-Firefox-Spdy: h2
js-agent.newrelic.com/466.95d4308d-1222.js
151.101.2.137200 OK 2.8 kB URL HTTP/2 js-agent.newrelic.com/466.95d4308d-1222.js
IP 151.101.2.137:0
File type ASCII text, with very long lines (6842), with no line terminators
Hash 0545743760ba9995e8efbe879105162f
889887ac56edaf2cfe41752ec0893a9ac5d23db0
91a431e85d69e797b8a8817bb15aee94a9fbe38355a6890f75e8947a55386ee0
GET /466.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Y3xfvlvSw36CE9GOKklvJeG0iBkCsl/ss+e4vNwZhrKvjIdjtQLayCw3yQPVxbIyEllIzLdCgUw=
x-amz-request-id: MFEHC9QF926X2AZG
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "2b339e4b3b0435de10496ee00de8446a"
x-amz-version-id: joCLqMlafBXUuB094SKQ5Jhlrbz7F.ON
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 17:12:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1655-BMA
x-cache: HIT
x-cache-hits: 2926
x-timer: S1675098772.100672,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2760
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf109322ef7fde96caf40f6195ee071b
d7f5dd63a402c4fe3c483274a893f44b6b76befb
56fa47af9f2b40d219c9944ecf12984cefbc26bbd8f77d95f8fd4580bf8e606f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6431
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 17:12:52 GMT
Last-Modified: Mon, 30 Jan 2023 15:25:41 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1222.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=4416&ck=0&s=d658f39e8ee1fb51&ref=https://seguro.hypersofertas.com/checkout/payment&ap=271&be=2177&fe=2117&dc=911&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675098780626,%22n%22:0,%22f%22:483,%22dn%22:490,%22dne%22:491,%22c%22:492,%22s%22:620,%22ce%22:944,%22rq%22:944,%22rp%22:2141,%22rpe%22:2141,%22dl%22:2149,%22di%22:3083,%22ds%22:3087,%22de%22:3149,%22dc%22:4293,%22l%22:4294,%22le%22:4298%7D,%22navigation%22:%7B%7D%7D&fcp=3050&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1222.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=4416&ck=0&s=d658f39e8ee1fb51&ref=https://seguro.hypersofertas.com/checkout/payment&ap=271&be=2177&fe=2117&dc=911&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675098780626,%22n%22:0,%22f%22:483,%22dn%22:490,%22dne%22:491,%22c%22:492,%22s%22:620,%22ce%22:944,%22rq%22:944,%22rp%22:2141,%22rpe%22:2141,%22dl%22:2149,%22di%22:3083,%22ds%22:3087,%22de%22:3149,%22dc%22:4293,%22l%22:4294,%22le%22:4298%7D,%22navigation%22:%7B%7D%7D&fcp=3050&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1222.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=4416&ck=0&s=d658f39e8ee1fb51&ref=https://seguro.hypersofertas.com/checkout/payment&ap=271&be=2177&fe=2117&dc=911&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675098780626,%22n%22:0,%22f%22:483,%22dn%22:490,%22dne%22:491,%22c%22:492,%22s%22:620,%22ce%22:944,%22rq%22:944,%22rp%22:2141,%22rpe%22:2141,%22dl%22:2149,%22di%22:3083,%22ds%22:3087,%22de%22:3149,%22dc%22:4293,%22l%22:4294,%22le%22:4298%7D,%22navigation%22:%7B%7D%7D&fcp=3050&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 17:12:52 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 791bd5be3d84b52d-OSL
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1222.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=4974&ck=0&s=d658f39e8ee1fb51&ref=https://seguro.hypersofertas.com/checkout/payment
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1222.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=4974&ck=0&s=d658f39e8ee1fb51&ref=https://seguro.hypersofertas.com/checkout/payment
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1222.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=4974&ck=0&s=d658f39e8ee1fb51&ref=https://seguro.hypersofertas.com/checkout/payment HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 607
Origin: https://seguro.hypersofertas.com
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 17:12:53 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 791bd5c148eeb52d-OSL
Access-Control-Allow-Origin: https://seguro.hypersofertas.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
trc-events.taboola.com/1481309/log/3/unip?en=pre_d_eng_tb&tos=1558&scd=0&ssd=1&est=1675098784771&ver=36&isls=true&src=i&invt=1500&msa=8&rv=1&tim=1675098786330&mrir=u&vi=1675098784768&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fseguro.hypersofertas.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D50e84120-a0ab-11ed-8f6b-57f1410960b7&ler=other
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1481309/log/3/unip?en=pre_d_eng_tb&tos=1558&scd=0&ssd=1&est=1675098784771&ver=36&isls=true&src=i&invt=1500&msa=8&rv=1&tim=1675098786330&mrir=u&vi=1675098784768&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fseguro.hypersofertas.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D50e84120-a0ab-11ed-8f6b-57f1410960b7&ler=other
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1481309/log/3/unip?en=pre_d_eng_tb&tos=1558&scd=0&ssd=1&est=1675098784771&ver=36&isls=true&src=i&invt=1500&msa=8&rv=1&tim=1675098786330&mrir=u&vi=1675098784768&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fseguro.hypersofertas.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D50e84120-a0ab-11ed-8f6b-57f1410960b7&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.hypersofertas.com
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 17:12:53 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://seguro.hypersofertas.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1481309/log/3/unip?en=pre_d_eng_tb&tos=4561&scd=0&ssd=1&est=1675098784771&ver=36&isls=true&src=i&invt=3000&msa=8&rv=1&tim=1675098789334&mrir=u&vi=1675098784768&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fseguro.hypersofertas.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D50e84120-a0ab-11ed-8f6b-57f1410960b7&ler=other
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1481309/log/3/unip?en=pre_d_eng_tb&tos=4561&scd=0&ssd=1&est=1675098784771&ver=36&isls=true&src=i&invt=3000&msa=8&rv=1&tim=1675098789334&mrir=u&vi=1675098784768&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fseguro.hypersofertas.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D50e84120-a0ab-11ed-8f6b-57f1410960b7&ler=other
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1481309/log/3/unip?en=pre_d_eng_tb&tos=4561&scd=0&ssd=1&est=1675098784771&ver=36&isls=true&src=i&invt=3000&msa=8&rv=1&tim=1675098789334&mrir=u&vi=1675098784768&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fseguro.hypersofertas.com%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D50e84120-a0ab-11ed-8f6b-57f1410960b7&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.hypersofertas.com
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 17:12:56 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://seguro.hypersofertas.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
github.bubbstore.com/svg/card-amex.svg
172.67.149.218200 OK 0 B URL HTTP/2 github.bubbstore.com/svg/card-amex.svg
IP 172.67.149.218:0
GET /svg/card-amex.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-5f3"
expires: Mon, 21 Nov 2016 12:36:09 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 707C:6AC2:8857DD:B5B2D3:63D40235
via: 1.1 varnish
x-served-by: cache-bma1674-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674838582.821332,VS0,VE94
vary: Accept-Encoding
x-fastly-request-id: 36477a13bdc0d39d36b8af19fb8e0ae5bb4650c1
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UpoiV7F4uBb9XN8WJ54K0TL4Cjt9i2Gei3mi5HmquYqFlMO3lf6yjAc7I0%2Fre%2BJyHDDNujI7oubo0%2BXdKDqWV%2F2vYfrlmGxklEV796ldKDQOMVUPT2laafkjMVDNyMzsJnNg3GqaYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791bd5b25a24b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
github.bubbstore.com/svg/card-hipercard.svg
172.67.149.218200 OK 0 B URL HTTP/2 github.bubbstore.com/svg/card-hipercard.svg
IP 172.67.149.218:0
GET /svg/card-hipercard.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-54bc"
expires: Mon, 30 Jan 2023 14:40:41 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 112A:1762:A5B048:AB7C96:63C930C9
via: 1.1 varnish
x-served-by: cache-bma1625-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674129609.092807,VS0,VE122
vary: Accept-Encoding
x-fastly-request-id: 2cef2eed1144a2ce2f17e6a455b6e5a6c74868b0
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4VCis1A12qYwjrlPd1oSRU5AhoC76rYJ%2FZif18DTmTnzNqRUKaISyI3cj4ciDUn7vRNZY%2FOTM3nHpU1r8ADmK74PlJEhYjMQ9j7bi9BxnIYzNQgMyJE7rpIF59UcQ8q7Vntw%2BjJ2eg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791bd5b25a20b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=0d8d6a92e9fa66c414d78f3353e643b0
172.67.72.14200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=0d8d6a92e9fa66c414d78f3353e643b0
IP 172.67.72.14:0
GET /checkout/build/mix/assets/js/app.js?id=0d8d6a92e9fa66c414d78f3353e643b0 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: application/javascript
x-amz-id-2: K/EHESlWLCGW8A6AtF0eaAijovlrup0iAHA/fPCp0ecLP2tZz7wKHGpBroxP6KWxhBEq5pzLzVE=
x-amz-request-id: J8VQTHGTKRCQ91B5
last-modified: Tue, 24 Jan 2023 14:06:10 GMT
x-amz-version-id: cO0VOLTwBag23Dv2NpGr6QTaJJ_IZSsG
etag: W/"7be8a84c592823cabbcc6eba398f4b22"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=md3G0QZDx%2FbqVDEdfDAnZXF%2BHtg4OsSFJH3wm9d44WpYlMg%2F55zUMzG1IpclwcbYJvQloVraciDtEeQdM%2B5cg4pCPP%2FSqj2v4g5yPQ5n4jNRkFhyYHcVBgxlkls6QZuS6vGlzjLXfg5j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791bd5b178330b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5
172.67.72.14200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5
IP 172.67.72.14:0
GET /checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: text/css
x-amz-id-2: j/S4cRK7h2RJJ8oPBInTkUyHWMs2uLy5Y2k2gv7J5HVqK6+oYOtQiL9kw5ONDjsNoD1SA2PVHdI=
x-amz-request-id: CW5G8BWSRMPMAXS4
last-modified: Tue, 17 Jan 2023 17:16:35 GMT
x-amz-version-id: 6DNQN8Tr5zNrG9AbFAdSPatqVsIP8Y4C
etag: W/"0f68d2669d40348ccb7bc9a9d17328f5"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pfQP7LlXGaUhwWGFknOeppCRdCY56ZZ%2BJLxpjBiu9ud3VZc4N7MgGg4YFbXxMopprrvmoVHod28GLPcz6Dhn%2BIee3BUpMI9c3lN1ydM6QXdJOHzc%2Fvf3NntFJuwizP1MHwYhBPNylokF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791bd5b08f640b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
seguro.hypersofertas.com/e/t
170.82.173.30200 OK 0 B URL HTTP/2 seguro.hypersofertas.com/e/t
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.hypersofertas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjUxMmNkMmQ5ZDBhM2UwM2MiLCJ0ciI6IjMzMjc3ZDA1OGU3NDYzNWY3ZjgyNjYyZDAwM2Y4NWUwIiwidGkiOjE2NzUwOTg3ODM3MzJ9fQ==
traceparent: 00-33277d058e74635f7f82662d003f85e0-512cd2d9d0a3e03c-01
tracestate: 2935249@nr=0-1-2935249-1134170823-512cd2d9d0a3e03c----1675098783732
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 366
Origin: https://seguro.hypersofertas.com
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=50e84120-a0ab-11ed-8f6b-57f1410960b7
Cookie: XSRF-TOKEN=eyJpdiI6ImFRZ0wxS1RNdDZyN1R0SkRaOGdhV1E9PSIsInZhbHVlIjoibVJCeGpBTXU5XC9jWmY0NFBXbzE3dVN2WnFZR1Z6UFFFRmV0VENGemZcL1BhbEs0R3VuNlcwa3hrZ1dGd2FSNzVuY1Jrd3BvaDlQZ2RJdXh5bmVnMFBOZz09IiwibWFjIjoiYzk3YTliYjFmZTlmZGZjZmI5MDBiMWVlMTM3YjhjNzMzMzdiYzEwYWQ5MjA5Y2VhNGRiYWJlNWY3Yjc1ZmExZiJ9; bubbstore_checkout=eyJpdiI6ImdyOHorM2ZRQmVrRWlOWTIxOHlCbFE9PSIsInZhbHVlIjoiOXA4aXFMczVRdml6bkpCQmtTQ3E5OGhqQWJCc2FVUGROVVV5bHpaQTV0QnpQQnk3R0JLc2VBaGI2NStjQzd5c0hMNGRFU3FuUENmUWxZNHFodEYySkE9PSIsIm1hYyI6IjkwZDM3NDA3YzIyMDViNTNlYTAxMTc3ZWMxYTNjNzczMjZkNjI5OGZjYzA5MjBjZWIxZWY1ODY0NzIxNjZhODQifQ%3D%3D; hypers-ofertas_cart=eyJpdiI6IlVncDROQnQ2MjhkM2Rhd042UExzMnc9PSIsInZhbHVlIjoid3grSnJxaUVHMmZjb2U4bVljUWRXZmg3ckJmdXRXXC9ReW1FRE1ydkcrWk5Cb2hCWFV0bEVmbGtWQ1RsZGRRc2loY2xtVU9KblB2Rmo1MXV0YlNOU2d3PT0iLCJtYWMiOiIzNDAzMDMxNjI3Yjk5YmQwNDQ0Y2MzMGE4N2U0ZDg4MWNkZmRiNGEzZjk4NjUyN2Q2NTMwN2NmODVmNzZkNWNlIn0%3D; cart_auth_309674253=eyJpdiI6InprN29HSFIrSk5zXC9Qdm1aRGx5U3FRPT0iLCJ2YWx1ZSI6ImphWTNxUXI2VkhLZVI5R3lvUzBHNExGaFg2enN0UXA5RDhsaytHVjFicWlvQkhXZGRJVDVDNXM3OXdtais0UHQ3emdyK2FcL0pyTXJ2TUpRek9VTUp4V1RvdzZHaWFSc1NXUFJFanVpYjNWVWxhOUJkM0NcL1wvbDhtZmNBNVlZVE1cL1NcL0JIZmQ4T0RGaDZzOWFuVXo4UDc3dlVOZVwvWnY5M3NuaW5LVStLYkVnV3N6OCtSUUEwejZrYk5uU3RQcEhibGhySE1MWmdXVTVBMEFtdlBTaVhSdVdxeFV2SXFLUU5PSmN5RlVtN1VIQVhReUp1RVRDMkZ1XC9VUVBzc3NpSmxmUkxkaVoxdFpZb3Y1U05wcm14MnFFWGpNdlpSZlFqK0JcL0pVV0V3aFI1XC9Kc29QbEFMOXlMTnhsdkZKKzFnRkpsZ3BOUWZEM3BsTHdPS29jdm8zY0FtQzVqWHY2Ymk0b1dLbFh2Q2RYeWk3TkpQVFJcLzBJanA3YVVGOUhzTGRleDk0bHZUSGRldExZcldNSXp4YUI5OVNVd3IxQ0QwQmlBb05lZklkNk5cL1wvVHVsQ2VIYjdFMlhKd05DQmk5aGphZHRobFQ3N3lLNlowU2pQYTNxVGhESXk0U1lVVzlscnhMYTRCanhkXC9aUUo3T3oxQUtkVndoanAwckFNWFlOam41a3Fxa1dBQU8rZ2pjTHBwTVk5TWpNQWJKdnVBZmFaZ1Qxck5GdEZjMFJnMWF5bEhSYnplNjNUY28xVGw1bDdVUEFDMGJzZkVBQ1J5c0lxREtSbzdjbkhnPT0iLCJtYWMiOiI4ZmUxODVlMjQxNWIxOWZjMDA2ZGFjMzM2NjVjMTI2YjIyYmUyMzc4OTBhNzdhNTM3ZmE4NzY2M2Q1YzJkYjNlIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:51 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IlZ4VFpidCszSzdnQW1seXNmMFgzUnc9PSIsInZhbHVlIjoicXI1K2EzN1hsMUp2eW53S1ZrN0hHbnRNNXB2OURkNTNXZTBTNEZtdHBBd3hDR1FUWXRzamVCUXNNcTJUR0RKSVk4emtjdXpuWFN3RzdxQXBKUkRRdkE9PSIsIm1hYyI6IjlhYTExNjEzOGJhZTQyNWFiYjlmOWJhYjcyY2UzNjc2YjU4NzZjOWQxMmE0NTI2ZDBmY2NmNmI5ZGVmZTMxNjcifQ%3D%3D; expires=Mon, 30-Jan-2023 20:12:51 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlhNZDJxc2tIeTRiRGhiekwrY1RVaEE9PSIsInZhbHVlIjoiWHBkSVBib1wveE1kQllNUTN6S09DSHB3VERSYTJWazNPN3lGd3hjNVMxUWhqamVzd0R5bGt2WW5GMHV6VUtRTElSXC85SDBBb2g0THBEbzY4SjNKYlFnZz09IiwibWFjIjoiM2ZmNjA5ODRmN2Q3ZGNiNzI2Mzc2NWQwNGI1ZTZhNGUyMTQ2NWNkYjZlNTZmMjc1YjFiZjJjZWU1NjJiMWYyYyJ9; expires=Mon, 30-Jan-2023 20:12:51 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApaDw8FHh5UFUNTA1AHUAUEUlBSW1FTAVFbFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
github.bubbstore.com/svg/card-diners.svg
172.67.149.218200 OK 0 B URL HTTP/2 github.bubbstore.com/svg/card-diners.svg
IP 172.67.149.218:0
GET /svg/card-diners.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-99b"
expires: Mon, 30 Jan 2023 14:40:41 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: CBB0:0B92:6D975B:926A28:63D40235
via: 1.1 varnish
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674838582.821287,VS0,VE101
vary: Accept-Encoding
x-fastly-request-id: 26d2c3fe7e0f5458f554b1e182532784b2d52453
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a0FVl4Szdkn2ubNQlr3HUaFmcu981Iac0LbZR0IYyE5EzRLFMfiHl15KArXKGS%2FOoFEVRTZ%2BoOizND5UEKa%2FzZ2UtENu3e8UYUPlZLSA%2BYQ02aIT%2FrRNSm1Wzo75xtK%2FEhvFNNFDJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791bd5b25a21b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
github.bubbstore.com/svg/card-discover.svg
172.67.149.218200 OK 0 B URL HTTP/2 github.bubbstore.com/svg/card-discover.svg
IP 172.67.149.218:0
GET /svg/card-discover.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: image/svg+xml
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-f89"
expires: Mon, 30 Jan 2023 17:22:50 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 55EA:61CB:900552:BD64AE:63D40235
via: 1.1 varnish
x-served-by: cache-bma1671-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674838582.821486,VS0,VE103
vary: Accept-Encoding
x-fastly-request-id: 8d3af4b5fb3eefe8a561deb9f1923e37bcfa52e2
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zvlQRNoTKt4VeySO3rUXdoEsPOdWvtz1TRL63DPIMr0A6%2Bd5%2FMBfXYPGxvL9%2FVrTLfRQbF%2B0wHr1ez4Xb2osboxOlLknzyeB5ytFuJSmX40GG%2Bmt%2F0GyY7r0Tx4oEn5ShQva%2FdmDxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791bd5b26a2ab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3285671.js?sv=6
54.230.111.8200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3285671.js?sv=6
IP 54.230.111.8:0
GET /c/hotjar-3285671.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 17:12:22 GMT
cache-control: max-age=60
etag: W/7ddcafae13641f71f0f78768f529713e
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c5xLfbfDTmwVFEYrqQyuM8rrY_iOLzEOGMyyXMAMdm4vArY7nt2nAA==
age: 29
X-Firefox-Spdy: h2
seguro.hypersofertas.com/checkout/payment?cart_token=shopify-47f274a19a3fcc951d1b815826fac6bd&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=897f3768a06beaa65cfcf6161d34fc8fc1efbccc&customerToken=50e84120-a0ab-11ed-8f6b-57f1410960b7
170.82.173.30200 OK 0 B URL HTTP/2 seguro.hypersofertas.com/checkout/payment?cart_token=shopify-47f274a19a3fcc951d1b815826fac6bd&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=897f3768a06beaa65cfcf6161d34fc8fc1efbccc&customerToken=50e84120-a0ab-11ed-8f6b-57f1410960b7
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /checkout/payment?cart_token=shopify-47f274a19a3fcc951d1b815826fac6bd&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=897f3768a06beaa65cfcf6161d34fc8fc1efbccc&customerToken=50e84120-a0ab-11ed-8f6b-57f1410960b7 HTTP/1.1
Host: seguro.hypersofertas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:49 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6ImFRZ0wxS1RNdDZyN1R0SkRaOGdhV1E9PSIsInZhbHVlIjoibVJCeGpBTXU5XC9jWmY0NFBXbzE3dVN2WnFZR1Z6UFFFRmV0VENGemZcL1BhbEs0R3VuNlcwa3hrZ1dGd2FSNzVuY1Jrd3BvaDlQZ2RJdXh5bmVnMFBOZz09IiwibWFjIjoiYzk3YTliYjFmZTlmZGZjZmI5MDBiMWVlMTM3YjhjNzMzMzdiYzEwYWQ5MjA5Y2VhNGRiYWJlNWY3Yjc1ZmExZiJ9; expires=Mon, 30-Jan-2023 20:12:49 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImdyOHorM2ZRQmVrRWlOWTIxOHlCbFE9PSIsInZhbHVlIjoiOXA4aXFMczVRdml6bkpCQmtTQ3E5OGhqQWJCc2FVUGROVVV5bHpaQTV0QnpQQnk3R0JLc2VBaGI2NStjQzd5c0hMNGRFU3FuUENmUWxZNHFodEYySkE9PSIsIm1hYyI6IjkwZDM3NDA3YzIyMDViNTNlYTAxMTc3ZWMxYTNjNzczMjZkNjI5OGZjYzA5MjBjZWIxZWY1ODY0NzIxNjZhODQifQ%3D%3D; expires=Mon, 30-Jan-2023 20:12:49 GMT; Max-Age=10800; path=/; httponly
hypers-ofertas_cart=eyJpdiI6IlVncDROQnQ2MjhkM2Rhd042UExzMnc9PSIsInZhbHVlIjoid3grSnJxaUVHMmZjb2U4bVljUWRXZmg3ckJmdXRXXC9ReW1FRE1ydkcrWk5Cb2hCWFV0bEVmbGtWQ1RsZGRRc2loY2xtVU9KblB2Rmo1MXV0YlNOU2d3PT0iLCJtYWMiOiIzNDAzMDMxNjI3Yjk5YmQwNDQ0Y2MzMGE4N2U0ZDg4MWNkZmRiNGEzZjk4NjUyN2Q2NTMwN2NmODVmNzZkNWNlIn0%3D; expires=Sat, 04-Feb-2023 17:12:49 GMT; Max-Age=432000; path=/; httponly
cart_auth_309674253=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%3D; expires=Mon, 30-Jan-2023 17:22:49 GMT; Max-Age=600; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
github.bubbstore.com/svg/card-mastercard.svg
172.67.149.218200 OK 0 B URL HTTP/2 github.bubbstore.com/svg/card-mastercard.svg
IP 172.67.149.218:0
GET /svg/card-mastercard.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.hypersofertas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 17:12:50 GMT
content-type: image/svg+xml
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-5b3"
expires: Mon, 30 Jan 2023 14:40:41 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 7708:0B0C:657AC1:858E3E:63D40235
via: 1.1 varnish
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674838582.821647,VS0,VE106
vary: Accept-Encoding
x-fastly-request-id: 7412d7df84baa34d81d1263ed6eb85a11e285396
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WpUrhP5BOuAcwM1XJ8E%2FsToxt3XReFLqEUPqRe39RbOHft9M48v64KVX0%2FHadJR2ywTNjoTmqYHoAVrjaCl%2BfaFY%2BkV7lrqinzPByc94Sck3HUqwdvEh%2FK%2FRrMs9hnC6XuuYWb2bvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791bd5b25a23b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2