Report - seguro.ofertasdeverao.online/cart?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c

Report Overview

Submitted URL
seguro.ofertasdeverao.online/cart?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c
IP
170.82.173.30
ASN
#266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Submitted
2022-09-28 00:41:42
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	415 B	1.2 kB	142.250.74.164
images.yampi.me	955081	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	31 kB	172.67.72.14
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	478 B	34 kB	142.250.74.163
fonts.dooki.com.br	829308	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	849 B	78 kB	104.18.1.53
bam.nr-data.net	630	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	1.0 kB	162.247.241.14
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
seguro.ofertasdeverao.online	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.8 kB	17 kB	170.82.173.30
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	55 kB	34.120.237.76
icons.yampi.me	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.5 kB	250 kB	172.67.72.14
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.4 kB	260 kB	157.240.200.35
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	469 B	159 kB	142.250.74.163
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	991 B	650 B	142.250.74.174
awesome-assets.yampi.me	708511	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	892 B	90 kB	172.67.72.14
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	418 B	746 B	142.250.74.10
cdn.yampi.me	309436	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	928 B	172.67.72.14
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	7.1 kB	23.36.77.32
js.upnid.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	354 B	9.2 kB	130.211.14.112
s3.sa-east-1.amazonaws.com	60686	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	442 B	92 kB	52.95.163.112
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	100.20.30.105
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.3 kB	9.1 kB	142.250.74.35
cdn.shopify.com	2327	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	472 B	12 kB	104.16.254.71
js-agent.newrelic.com	378	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	376 B	19 kB	151.101.86.137
github.bubbstore.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	9.7 kB	104.21.29.224
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.7 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-28	medium	seguro.ofertasdeverao.online/e/t	Phishing
2022-09-28	medium	seguro.ofertasdeverao.online/cart/recomm	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (38)

	URL	Size	First Seen	Last Seen
	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	306 B	2023-03-08	2023-03-13
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-13 16:26:46 Times Seen1 Hash a49dc90492dbe1b15654929932d3f2c8 4a7a7f41c3f7a3512bf5458e22336ba23236a084 3323dc4b90d739dc83ae0cebda33be864fa4ea643c0c50712bd411c9506699d5 Loading...

	www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js	398 kB	2023-03-07	2023-03-10
Pretty URL www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:46:10 Last Seen2023-03-10 14:27:44 Times Seen1 Hash dff1edaf9fa8e0138b7342527bb2fdaf 9c1d9e6f3a8785ffdd088f57e3e8803dd2c459b0 23d94b3877e873dff9124312f3627f15071fe84a751d32c6e76b4c693ce8a9b9 Loading...

	bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=5914&ck=1&ref=https://seguro.ofertasdeverao.online/checkout/payment&ap=256&be=2822&fe=5839&dc=4243&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664325688903,%22n%22:0,%22f%22:1616,%22dn%22:1616,%22dne%22:1616,%22c%22:1616,%22s%22:1616,%22ce%22:1616,%22rq%22:1618,%22rp%22:2803,%22rpe%22:2803,%22dl%22:2809,%22di%22:4159,%22ds%22:4242,%22de%22:4322,%22dc%22:5838,%22l%22:5838,%22le%22:5840%7D,%22navigation%22:%7B%7D%7D&fcp=4316&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken	49 B	2023-03-07	2024-03-22
Pretty URL bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=5914&ck=1&ref=https://seguro.ofertasdeverao.online/checkout/payment&ap=256&be=2822&fe=5839&dc=4243&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664325688903,%22n%22:0,%22f%22:1616,%22dn%22:1616,%22dne%22:1616,%22c%22:1616,%22s%22:1616,%22ce%22:1616,%22rq%22:1618,%22rp%22:2803,%22rpe%22:2803,%22dl%22:2809,%22di%22:4159,%22ds%22:4242,%22de%22:4322,%22dc%22:5838,%22l%22:5838,%22le%22:5840%7D,%22navigation%22:%7B%7D%7D&fcp=4316&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken IP 162.247.241.14 ASN #23467 NEWRELIC-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:42 Times Seen2776 Hash ada33e5b8877e743ff658bf4bfa1867c 5a78662243dac43c0ee48bcb7e05a536b84c2e38 dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82 Loading...

	cdn.yampi.me/jquery/jquery.js	97 kB	2023-03-07	2024-03-21
Pretty URL cdn.yampi.me/jquery/jquery.js IP 172.67.72.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2024-03-21 18:25:17 Times Seen585 Hash 9f7c65c84c8e8c3e317945e8fd89899b 709c935c0a488ff7aa010157221eb07b4a041578 c26cfce9caf7b965861956c1f173821f45f1e1f61aa4bd19ddd4b26723411c9d Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	394 B	2023-03-07	2024-02-12
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:01 Last Seen2024-02-12 00:45:50 Times Seen202 Hash e4af8a5a7f4a7c9193ab9ba11ef84dea 184558dc71a3b0daa2eeb9fbc74d0f7f506701de fb105044f98cd7b5e954f2f7ac622c2c8c48bb8f7382782d6403ae93274f5853 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-01-06
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:05:31 Last Seen2024-01-06 17:39:53 Times Seen66 Hash 99ba52a15d2da967b023016d1af58cbd 5c2246049c43834d17113877b4731bd4f9803d55 9e25469f734732205f33dd80ff8ca12080406c18d2fa99a1f368103e51f7999f Loading...

	connect.facebook.net/signals/config/475609647795069?v=2.9.84&r=stable	299 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/signals/config/475609647795069?v=2.9.84&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-08 02:49:04 Times Seen1 Hash 243d7fcfcb82017a55ddd069a7837253 a29147e7b67b2fc133d67d9b3cb810e9c535939d dd0c954609ac7fc2c65cbc90c60758a80991aac6500736c6869ee586ef24bcb5 Loading...

	seguro.ofertasdeverao.online/checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	72 B	2023-03-07	2023-05-11
Pretty URL seguro.ofertasdeverao.online/checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 170.82.174.30 ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:01 Last Seen2023-05-11 08:25:43 Times Seen25 Hash 81faecab8e751506c2a076714216151a 1e7f8722ba80640b1331d947115038317e78e100 e247cc353fdd41263b94b93d712faf7e8d13db5723aa49ea32fd964ebe7c87d8 Loading...

	seguro.ofertasdeverao.online/checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	544 B	2023-03-08	2023-03-08
Pretty URL seguro.ofertasdeverao.online/checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 170.82.174.30 ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-08 02:49:04 Times Seen1 Hash c3291d96d8ddf49677317b946040dbb5 a0014390f15f7e395e1be8c55265236f70096c2c 570184a7ae97c000075219b0a1e043e30fdacf501b3f20de5ffb245dd1e57ff7 Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	353 B	2023-03-07	2024-03-04
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:01 Last Seen2024-03-04 11:09:00 Times Seen219 Hash 7edbfaf23acfcccf9ab6fc52e23c3b4b 2a6657dad6743e460cdeed322c81f9a412fa3a62 21f274758663f991c7bdb105622a595b62d450213854d8b25992d7ce7b69219d Loading...

	js.upnid.com/v0.js	23 kB	2023-03-07	2023-03-17
Pretty URL js.upnid.com/v0.js IP 130.211.14.112 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:15 Last Seen2023-03-17 12:36:54 Times Seen1 Hash 574299022e3748aa0c8e4ffe1fde00fa 9674854bebd300b0ed3bfe9ba2b07818f2edd999 a88b284ad4a1462f66eba2c255e653d828eed03aae82f24e346de2fdb9b59839 Loading...

	seguro.ofertasdeverao.online/checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	403 B	2023-03-07	2024-02-12
Pretty URL seguro.ofertasdeverao.online/checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 170.82.174.30 ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:01 Last Seen2024-02-12 00:45:50 Times Seen235 Hash b80d46c71bfeed889ac6bd34b2f90601 caea5216d620d8832cd23f1a07919b6364ba6130 7b420377ae08d548833e49c23e3da2d1132ad5306657cedd32c9102ea12a1bd2 Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	653 B	2023-03-07	2023-03-17
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:01 Last Seen2023-03-17 11:38:35 Times Seen1 Hash b0958cfb46e92e3a5023d5ee8f88a052 f1e89d36b1c30bc50a9f6ea608b133249e5ad55d c60271612850bea337e657d2c848a3af134c0aa026ceb1a41ca70e10427125ee Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	727 B	2023-03-07	2023-03-17
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:14 Last Seen2023-03-17 12:36:54 Times Seen1 Hash 013c7ff93d644d39a749fde3e6c8a9e2 60fdf2b0e830af462bb2c362ead7a90e674af505 713eef74a17f7d7dcc24e8a5cb36557707f236290c7c5be17a7d2740d09a1751 Loading...

	www.google-analytics.com/plugins/ua/ecommerce.js	1.4 kB	2023-03-07	2024-03-29
Pretty URL www.google-analytics.com/plugins/ua/ecommerce.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:11 Last Seen2024-03-29 17:20:31 Times Seen107 Hash fd02edf106d5501f7e87d17452887750 500f64b65cf47e7a10b720648054c208f61f4719 8e1b84265e633c043720dd0921476c16bc9f75e393e855c9116ca7c3a847b5c7 Loading...

	connect.facebook.net/signals/config/618450783161563?v=2.9.84&r=stable	299 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/signals/config/618450783161563?v=2.9.84&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-08 02:49:04 Times Seen1 Hash 07854b39c6221c4f89646c5ddf9fc71c 4712773aa72d94bdd56ec7396ee5e080384c49ef 1cd2e1a7e541280424a65aa445e5d6bd5e4f9c87943c4f0228e569206ccf609e Loading...

	js-agent.newrelic.com/nr-spa-1216.min.js	50 kB	2023-03-07	2024-03-22
Pretty URL js-agent.newrelic.com/nr-spa-1216.min.js IP 151.101.86.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:43 Times Seen568 Hash 63e2df852d15ab21d7ff8fc4363222e8 7ee401ba652db0a4ec960350e17216cda01e22fb 545156adeae44dadc82b98d504f805ebe77fb79c928ef34eed1057bb9d4cb8fe Loading...

	seguro.ofertasdeverao.online/checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	31 kB	2023-03-07	2023-03-17
Pretty URL seguro.ofertasdeverao.online/checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 170.82.174.30 ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:14 Last Seen2023-03-17 12:36:54 Times Seen1 Hash 03c0f9f9cef65364520520bbc7bbd1e0 b7b80ad046af7c179be66aed6204f938b1df0b42 2169144a12915a8ace67c09e69c9d320922d75cb8e62cda9d4f1c3d2aab3a693 Loading...

	www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC	884 B	2023-03-08	2023-03-08
Pretty URL www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:17:51 Last Seen2023-03-08 03:19:53 Times Seen1 Hash 659efb7cfc068886c09e277e6ec2e17f 24a5bf2fa12be5450f9954b1566fcf259304ea65 a9001e6395e964e3f59bf9f2ed1f68ec2a5392e44add41475268cfccc15baaa6 Loading...

	connect.facebook.net/signals/config/1686103548439989?v=2.9.84&r=stable	299 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/signals/config/1686103548439989?v=2.9.84&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-08 02:49:04 Times Seen1 Hash 357fef5b847e7d59a4df5777d5e66b38 f59a1c893d4b8e14456a1d838b1f664ffca7418f a1b7eb237c8d9ecbb1465c51a7c60afc883cd34fd0b6a0d8ffd433a132ec8618 Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	30 B	2023-03-07	2024-02-12
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:01 Last Seen2024-02-12 00:45:51 Times Seen189 Hash 56066eaaac74fcb835b17343624d9610 27982064679c91ef689845a4bbc048fe083da3c7 854b2d353f063aaa9ce7f5070abb32307e4376a44bd34b2476cb2e37e3dfad9a Loading...

	cdn.yampi.io/ana/ana.min.js?t=1664409600000	7.6 kB	2023-03-07	2023-05-26
Pretty URL cdn.yampi.io/ana/ana.min.js?t=1664409600000 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:01 Last Seen2023-05-26 07:40:54 Times Seen75 Hash e7cabc20ce5d56c20d8c4577a36e2525 bf35539d423f5351660f0c1d9458a705a07abaab 3c0a414165a2109c0ae8e15b5452663e74c15fb6d6da40ceabb11e8c7bb4c468 Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	91 B	2023-03-07	2024-02-12
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:01 Last Seen2024-02-12 00:45:50 Times Seen198 Hash 1dca09b0d182f74df13fc34d1fe69f37 41290fab40aa6622ef7d502babc4c0d278a55379 9048448e0593ee7b31476ebdd9202e97fae8f57073e4e20c33484004a25407f4 Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	146 B	2023-03-08	2023-03-08
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-08 02:49:04 Times Seen1 Hash 19d70aca1ea3ccbf5384d9e9f8502c07 ae0421cd086fe30a7e64530ae77f341848c8f801 b0515708d8f7483b7c0d818010b9eb77de1b79298250485de89e74803b22531d Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC&co=aHR0cHM6Ly9zZWd1cm8ub2ZlcnRhc2RldmVyYW8ub25saW5lOjQ0Mw..&hl=en&v=ovmhLiigaw4D9ujHYlHcKKhP&size=invisible&cb=43dxxcrlwtz4	69 B	2023-03-07	2024-04-23
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC&co=aHR0cHM6Ly9zZWd1cm8ub2ZlcnRhc2RldmVyYW8ub25saW5lOjQ0Mw..&hl=en&v=ovmhLiigaw4D9ujHYlHcKKhP&size=invisible&cb=43dxxcrlwtz4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-23 14:29:04 Times Seen99254 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC&co=aHR0cHM6Ly9zZWd1cm8ub2ZlcnRhc2RldmVyYW8ub25saW5lOjQ0Mw..&hl=en&v=ovmhLiigaw4D9ujHYlHcKKhP&size=invisible&cb=43dxxcrlwtz4	35 kB	2023-03-08	2023-03-08
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC&co=aHR0cHM6Ly9zZWd1cm8ub2ZlcnRhc2RldmVyYW8ub25saW5lOjQ0Mw..&hl=en&v=ovmhLiigaw4D9ujHYlHcKKhP&size=invisible&cb=43dxxcrlwtz4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-08 02:49:04 Times Seen1 Hash 01296c6c9faada72c3373b331c0d3cb2 efc6e6c2abf8d35a59315c92fe4eb9a8f8b745f4 9f2aec77b3e9e8889e6a9163c8c818a545b347546ce17d117c49e207e89d30bb Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	1.0 kB	2023-03-08	2023-03-08
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-08 02:49:04 Times Seen1 Hash ada0bb4a5f019090fc72252bc1e6a6a6 7137725947d6e5a7e45473372746e165262adeca 3b1f3ab8007ddf8bb2af0bcdc5202d693abd1886fae9c9e86bba9e4fad6b1ccd Loading...

	connect.facebook.net/en_US/fbevents.js	103 kB	2023-03-08	2023-11-10
Pretty URL connect.facebook.net/en_US/fbevents.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:45:46 Last Seen2023-11-10 23:06:10 Times Seen10 Hash d78a7caef2779bec7d3e91de3eb77eeb 5af31c112f3bcd8f2866d4bf89e8455438b1e382 00a92494627ed8f758972b7dc47b3af186497c0637ea867a33fdb604c1548674 Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	4 B	2023-03-07	2024-02-08
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:01 Last Seen2024-02-08 04:18:27 Times Seen148 Hash b902cff0c53cbbe80b60a0f48b19d49d 849b09f02394c7f9523f6d2eae68d3ed57623dc6 0fcd4dfee81328ab64a2887ffbe902a2479efca04352f0ee5ee20e7c30c32faa Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	119 B	2023-03-08	2023-03-08
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-08 02:49:04 Times Seen1 Hash 6212bec8c7dcee40d417407256687dd2 49b02c7b121546089f8e622ea3d25c3150252467 03cfcaaf29bc93c508a6d5ac98d476ed575facbe85508f45fc3ee96c43461de9 Loading...

	connect.facebook.net/signals/config/1497427834094100?v=2.9.84&r=stable	299 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/signals/config/1497427834094100?v=2.9.84&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-08 02:49:04 Times Seen1 Hash 4a1c2560a959317b1082a7891437dce0 9b7c87bb33ad8badeb5d1fa1b090e08c6a0aeb19 51ffcf4f3ff3d1e5ab9f87f2c416f96bf46dc6b49ab09d3e7d00a8178ea5493e Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	10 kB	2023-03-08	2023-03-08
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-08 02:49:04 Times Seen1 Hash cfdc1c0178ac313b8c77c11cff74f923 d02a244ca9a2383685b241a24d10f01b554d1959 da6d40c66fa35cc9c3ff1ceea314c66789ce9609a19b8ef2b104985143089b6f Loading...

	seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c	908 B	2023-03-07	2023-03-17
Pretty URL seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:22:43 Last Seen2023-03-17 12:36:54 Times Seen1 Hash 37cbd991727d49c8d418f8108fa22f38 676c51169be7ddf0930c291755cfd834edd151de b77e757dccfea461f675cb600bdace88aefbff2e2344599667a9ee4fc4034211 Loading...

		Size	First Seen	Last Seen
	#1 Eval - c751292a3feb50e1424237d74032b3ea	16 kB	2023-03-07	2023-03-09
Pretty Observations First Seen2023-03-07 23:17:40 Last Seen2023-03-09 07:21:42 Times Seen1 Hash c751292a3feb50e1424237d74032b3ea 5d5e473fbea6a238961758c667724786c0f992c7 87ee55b6a14be406e7e5057321bfa597cef65647f5277f0e2f558c08388ebc67 Loading...

	#2 Eval - 6f6b6553bcbec5b73dfc1ed553ad29c1	15 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 02:49:04 Last Seen2023-03-08 02:49:04 Times Seen1 Hash 6f6b6553bcbec5b73dfc1ed553ad29c1 f5b873d067ffe29f3ff6d0dc04151b4295712a12 305a5aa1c4c01144dcad02e262a6965344f6ea18a0d26e88a21107539ba4cfd5 Loading...

	#3 Eval - 06053a1d89dc7f84d59d17e0ac62b822	22 B	2023-03-07	2023-03-09
Pretty Observations First Seen2023-03-07 23:17:40 Last Seen2023-03-09 07:21:42 Times Seen1 Hash 06053a1d89dc7f84d59d17e0ac62b822 38904bf3954aa2b95aba7f0a712ac03cc485ccc5 cddf3e74bfb30b711ab78ab593d81b8eeaceb67583ef5cb097cb54dcb14f24ce Loading...

	#4 Eval - b14f0fb315df61942ef98b39ea93ca33	64 B	2023-03-07	2023-03-09
Pretty Observations First Seen2023-03-07 23:17:40 Last Seen2023-03-09 07:21:42 Times Seen1 Hash b14f0fb315df61942ef98b39ea93ca33 960ee95d88cd6dd518c0ad8659002cde35f241a1 f9b61a95c5995b1614d5988fe5a9aeebaa6ed941137234bd00d42e77f5661756 Loading...

	#5 Eval - e39060f02fde7b3d9bde5f0f7d9eda5b	22 B	2023-03-07	2023-03-09
Pretty Observations First Seen2023-03-07 23:17:40 Last Seen2023-03-09 07:21:42 Times Seen1 Hash e39060f02fde7b3d9bde5f0f7d9eda5b e8253fea9be8641e36d7e65d7393ed3eac05e6cb 590040aae3e25b40a2c334846d348c384c60ede4211a4373be806ca2ee55d9f9 Loading...

HTTP Transactions (85)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 00:15:35 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fGv_CdeTzhLk7v8oZyd0IYAuF2Sfq_40VLCGj-kiNzvhX4_MxlauCw==
Age: 1556

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3378
Expires: Wed, 28 Sep 2022 01:37:49 GMT
Date: Wed, 28 Sep 2022 00:41:31 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8GQAh-4BdeFtChP5hz8s0h3dkxVQPBGcXTOvqodHfDBsAMc61IjF4Q==
age: 55038
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 00:41:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

seguro.ofertasdeverao.online/cart?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c

170.82.173.30

301 Moved Permanently

134 B

URL HTTP/1.1
seguro.ofertasdeverao.online/cart?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c
IP
170.82.173.30:0
ASN
#266444 3L CLOUD INTERNET SERVICES LTDA - EPP

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
134 B (134 bytes)
Hash
4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a

HTTP Headers

GET /cart?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c HTTP/1.1
Host: seguro.ofertasdeverao.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Wed, 28 Sep 2022 00:41:31 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.ofertasdeverao.online:443/cart?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c
X-GoCache-CacheStatus: BYPASS
Server: gocache

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 00:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 00:12:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mvLIFmQXpH3kYVc1SYNcDwgutiPwC1Epsj-f_3o7mQ5E_DTEhKQGRA==
Age: 1845

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4f787e6cac19ca269d8eb147b0010f48
3631f7d10e8adf063d975ec233d594a8525b56a7
e74a396b4726b61d9c91053f925b17e8b7927a082df826cf4b71f3e460a44bdf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E74A396B4726B61D9C91053F925B17E8B7927A082DF826CF4B71F3E460A44BDF"
Last-Modified: Wed, 28 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Wed, 28 Sep 2022 06:41:03 GMT
Date: Wed, 28 Sep 2022 00:41:32 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4288
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:32 GMT
Last-Modified: Tue, 27 Sep 2022 23:30:04 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

100.20.30.105

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
100.20.30.105:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: U5E4vqN63paSkSDjMs2HRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +/C8JcoN15BwN8fSIEbz7Ylagxk=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10390
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Wed, 28 Sep 2022 00:41:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10390
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Wed, 28 Sep 2022 00:41:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10390
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Wed, 28 Sep 2022 00:41:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10390
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Wed, 28 Sep 2022 00:41:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10390
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Wed, 28 Sep 2022 00:41:33 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12016 bytes)
Hash
4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 10623
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a264fec-4624-4025-b0d1-044fc33e338f.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9780 bytes)
Hash
43d7c0db2af42ad4d0095324b2691f6c
1a1139cff14aff6755b9e43ff4ef8c9ece1102c1
42073c84e0c215109b54ab55a53cce9e6cce44f4619f5988fa4e2776ff70b362

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a264fec-4624-4025-b0d1-044fc33e338f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9780
x-amzn-requestid: 9938422e-12cd-4aab-9e58-c26b8fee53b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UOH3DoAMFZRw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-37105d923f19437025abec71;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Halsx09hxT_sMRc2jy-fJA0tE85F6Bgz9P9Trx02Z9aMfIZVLkLW4g==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:11:14 GMT
age: 9019
etag: "1a1139cff14aff6755b9e43ff4ef8c9ece1102c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11314 bytes)
Hash
ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 9f410158-cd1a-45a9-9e86-4005b25577e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4Hw7oAMFpAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-70683c681f22a3b6103fcb4a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l9IinQYCcQV_iymSArIEnOWgbmLlmVqz94402zcsmga5Bp3Sty7QRg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:49 GMT
age: 10844
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae0951d3-44e9-49d3-9232-f4151ef59735.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6157 bytes)
Hash
b255b252ceed088d6f505e7e9acfcb55
a6b1c3e0d506ac1c66405e061e9910fafb176a7d
b796a98834c7ecf220d13bfba61e81a9b90d472d2aa725ff66888cbddad731e7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae0951d3-44e9-49d3-9232-f4151ef59735.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6157
x-amzn-requestid: a51846e4-4e25-455f-885b-acf2567f2e1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZDlObH7XIAMFw6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63314f28-4e6a68a74edb1ad850e17dac;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 07:05:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2g98EnyiFhkZTsqis2_ASfjM-YTJmcUJ-Mwcl1dWlruzrWDuojPA0w==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 07:29:45 GMT
age: 61908
etag: "a6b1c3e0d506ac1c66405e061e9910fafb176a7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

170.82.174.30

302 Found

10 kB

URL HTTP/2
seguro.ofertasdeverao.online/cart?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c
IP
170.82.174.30:0
ASN
#266444 3L CLOUD INTERNET SERVICES LTDA - EPP

File type
data
Size
10 kB (10131 bytes)
Hash
47bd7e48cee322a201d646d795b56b4e
41f598c28624080878941b3b382e4901c1b4adea
356e1c28d358f6505c15dc5aa261deec33ec34b2d871b46a1762b6da64873c89

HTTP Headers

GET /cart?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c HTTP/1.1
Host: seguro.ofertasdeverao.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
date: Wed, 28 Sep 2022 00:41:32 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.ofertasdeverao.online/checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjdIZlhaaFdxMWtFMVM4UnFpclJiTnc9PSIsInZhbHVlIjoiYjRBZ0o0dVwvWHlSR2M3bDBRV2l2UG5EN05idUIwTm9QcTJ2MTFNREZSSW1hU0JhUUlZUXZBT2I0YnBVYjJjNVwvTGxURVZBSWhsYzFVdE92Ulowd3p1UT09IiwibWFjIjoiNmM1MGIyOGIwZDRhMjk2ODI3ZWNiNDIxZDdmOGU0MWU0ZWUyYzgwZjg3Nzc4MTE5ZGY5ZjBlMjIzNWI1NjMzNSJ9; expires=Wed, 28-Sep-2022 03:41:32 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6Inh1cFBSUWNnaGpmNlR6SkdqVHNxcGc9PSIsInZhbHVlIjoiXC9GMkdicEdCN1U0OGgxK0RBejhnTXVEUDF5bTVnYVcyNWEydVZNeFlDbHpQY2tYSlhIb01CWmwxUTdCR1o2MXBacXJPWFY2ZVdKUXBBNlpmeW1EXC8xQT09IiwibWFjIjoiYzUxOWYyZWZkMzVmZWRkOTMzYTdiOWRhYzAxZjFkYWYyOTEzYjhhNWQ0ZDUxMDczZTE2YjdkOGZjYzJkMWYyMiJ9; expires=Wed, 28-Sep-2022 03:41:32 GMT; Max-Age=10800; path=/; httponly
ofertas-de-verao_cart=eyJpdiI6IjBOM2VLdVMwcmt0VDZPS3BTNndtRmc9PSIsInZhbHVlIjoiOFBvdDN0TGNySWtMNCt3THN6eEN5XC9LZGFYdkJEd1RUb1wvKzFHUXZqYUlzQlRVelZqaE5SWlJJbmhQMmc4bktRV2plZTdybDRMNjhPZDVybXlBK0ZmUT09IiwibWFjIjoiN2JiY2RkZGUzZGVkZWMwMWE4NzQwMzI2Y2NlZGY1MjQ0NGMxNjcxZjdmNGYyNDljMTEwOGNjYTg0NzFjMTAwYyJ9; expires=Mon, 03-Oct-2022 00:41:32 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa8d9d6-9650-4c92-a2db-529657be591b.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10031 bytes)
Hash
07f06c54e3b1431203308e4134e7efcb
e26e7e4f7c67d680f0c2d0fa84dcb77ffbef6a49
2814f21c6a21623c189163672867272eb24f754d3d22a8285349e5dd9f6b49f7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa8d9d6-9650-4c92-a2db-529657be591b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10031
x-amzn-requestid: 0ac9a228-b6ce-4695-b269-f6a5ba959576
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4HTsoAMF8dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-1d1cacef2608d5820b2bc1b1;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: HKSCXbOStqMfD92WWwpkNF1l9euR9RkHTo2boSKqhPAunGl2u_YGlg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:48 GMT
age: 10485
etag: "e26e7e4f7c67d680f0c2d0fa84dcb77ffbef6a49"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5e01e4cfb215a3f052b4c716bc77c1a6
6e63b3e883051319571310c44b87591f0312d83f
aebb544e0762c6c3eb289d85c20299baa3f742dc46cfa5bcc33ac6df411285ae

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC

142.250.74.164

200 OK

585 B

URL HTTP/2
www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (884), with no line terminators
Size
585 B (585 bytes)
Hash
7d84c4456027d3c2e042f55c624444cb
ae1299213270a14574bac01f8f91d29a4c9ffd7c
5ac486ab075825fc510d276894e2a289866e243bbb1efe2f5246c710f307aae4

HTTP Headers

GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Wed, 28 Sep 2022 00:41:34 GMT
date: Wed, 28 Sep 2022 00:41:34 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
58b1426c9f85f6f1d0a180ae5983fceb
7d49e932f5bbf2bbe6211b3212560eacfc004656
dc92b3fdcd34f33b5a7c901593be6a677c01d38a9a76d63b5b012863ba2344db

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC92B3FDCD34F33B5A7C901593BE6A677C01D38A9A76D63B5B012863BA2344DB"
Last-Modified: Mon, 26 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11880
Expires: Wed, 28 Sep 2022 03:59:34 GMT
Date: Wed, 28 Sep 2022 00:41:34 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
63eb6cba3c2ee63f1d4537d2a697d969
b053179e9bc44a4c74363afc053c48707e4685ef
0f31967b6fe2ef26e8d12729b50461ded3d02086e099a0904948e04f8ac88bb4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:34 GMT
Server: ECS (amb/6B81)
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1d4/pWyJAO6WNqQ

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/pWyJAO6WNqQ
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a9ed42b966ea095eb1fb884b6f1dfbd2
75cd7a123834f3faf299086ea96f5423302d2aad
54f60f7f893c3dbe4fde570193e2ff1d6a9047e46aeee27250e47483dcd57090

HTTP Headers

POST /s/gts1d4/pWyJAO6WNqQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

js.upnid.com/v0.js

130.211.14.112

200 OK

8.9 kB

URL HTTP/2
js.upnid.com/v0.js
IP
130.211.14.112:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (23050)
Size
8.9 kB (8884 bytes)
Hash
960c2f02f796ed460b2c3911ee0f498d
862e007ff302286b83d9e5b4b880acdf5894ac1a
d5112369b9ae06973e98285df7d92749ddae470430912d01fd70f7c45207592f

HTTP Headers

GET /v0.js HTTP/1.1
Host: js.upnid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Origin
content-encoding: gzip
via: 1.1 google
content-length: 8884
date: Wed, 28 Sep 2022 00:37:41 GMT
age: 233
last-modified: Tue, 19 Jan 2021 20:16:07 GMT
content-type: text/javascript; charset=utf-8
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

icons.yampi.me/svg/card-elo.svg

172.67.72.14

200 OK

1.8 kB

URL HTTP/2
icons.yampi.me/svg/card-elo.svg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1575)
Size
1.8 kB (1796 bytes)
Hash
40c830e05f86289bb5f18cc05c2b8e1e
7c5b411acd64707deab8e3d95cee49918d18779a
4bc17ec388ffcc2e51311a1b4c5bc44896ed535077c2acf4c06ede7edfd12cc1

HTTP Headers

GET /svg/card-elo.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-c43"
expires: Tue, 27 Sep 2022 18:16:47 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 21F6:7B16:7627A1:A81A20:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1665-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.063167,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: f023c773bee9415a21039ef215a05ef2473a235d
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JwXg1pdIzX4%2BQI9rV9K183xjXQI62tjsef1HffyfamXc3KraxoUiiuJA0X9W4DB0vJ0Ez3tpxaCn%2BUVE%2B96%2FuvhTAGMT07In8YxhqBXttchI08DCRQs1XRxKOQ6PN0Zy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24ab481c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.shopify.com/s/files/1/0664/3787/3898/products/11_18e9a9bd-c228-40fe-a598-5f3398307c6d_250x250.png

104.16.254.71

200 OK

11 kB

URL HTTP/2
cdn.shopify.com/s/files/1/0664/3787/3898/products/11_18e9a9bd-c228-40fe-a598-5f3398307c6d_250x250.png
IP
104.16.254.71:0
ASN
#13335 CLOUDFLARENET

File type
ISO Media, AVIF Image\012- data
Size
11 kB (10782 bytes)
Hash
873bba1f301e0f1c55dc7a6f02b5c8ed
282b6d26695e550973924a74aaf281677589e1f4
14a7d92442fb236d02fda082400f66f8decb1efc2f729db4d43aff397e2c9046

HTTP Headers

GET /s/files/1/0664/3787/3898/products/11_18e9a9bd-c228-40fe-a598-5f3398307c6d_250x250.png HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/avif
content-length: 10782
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0664/3787/3898/products/11_18e9a9bd-c228-40fe-a598-5f3398307c6d_250x250.png>; rel="canonical"
server-timing: imagery;dur=742.551, imageryFetch;dur=72.621, imageryProcess;dur=668.997;desc="image"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: d85d5fef-229c-4294-86f4-872da712e583
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 27 Sep 2022 18:24:03 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PedeZ7rLhCJ43CL48PyBZG3kGfch2tmPGiGnd9w1DZlbghKBvlThctCEISJDk2cpV7%2Bvj%2BkwbS62sPA353hdEI4qw3iN4j0lnIZc0jKzTnkPdHnb8mciTktNHuUlsNr%2B5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f252eaefac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

icons.yampi.me/svg/card-amex.svg

172.67.72.14

200 OK

1.2 kB

URL HTTP/2
icons.yampi.me/svg/card-amex.svg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (856)
Size
1.2 kB (1224 bytes)
Hash
7de992c54db82f00e36d20c438c24641
a066b7f16df00ddb557f6dc3bb6febd7c7ba3715
0d4da26dcdd39031942e2040fd8c039918887ab6f63769bd5bcd2d4c4222b854

HTTP Headers

GET /svg/card-amex.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-5f3"
expires: Wed, 28 Sep 2022 00:34:45 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 91A6:4F1E:78598A:A211A7:6320B35F
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.024635,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: 2f17251d5b4f449d5b870863801562998cd0f600
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=43C50GeE3BRGXk%2FjMKCVlh%2BZbCU72LzyU3jagYycKl2aB0Qtdw%2FdRtVT%2BLp1IjGsBDiQP8lvBZAJRJvfhRw%2BytlAKhVQv4I43gV9bkHI5C9zN0f5kToux1SgZ%2BISCwJE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24ab411c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

images.yampi.me/assets/stores/ofertas-de-verao/uploads/testimonies/63333825b76e1.jpg

172.67.72.14

200 OK

8.9 kB

URL HTTP/2
images.yampi.me/assets/stores/ofertas-de-verao/uploads/testimonies/63333825b76e1.jpg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 150x150, components 3\012- data
Size
8.9 kB (8861 bytes)
Hash
98e12beda00d8224366152f1aedc8080
06cdcdbddbc8b5c97d469168c4c9cfbbb0512ef1
95947a74d7ae68d8a80e7d143a8c1b9662dd506dd4479ddef63775928ce11080

HTTP Headers

GET /assets/stores/ofertas-de-verao/uploads/testimonies/63333825b76e1.jpg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/jpeg
content-length: 8861
x-amz-id-2: 5PQUe8YPz8dOdpUmd9nPm3UEmcbtoysoe8haEFHtEZ5S+S0UOyOP+W8zW7ayt1w+wUdg8fe26/A=
x-amz-request-id: KMKV7JKMKXV43JCH
last-modified: Tue, 27 Sep 2022 17:51:42 GMT
x-amz-version-id: tOpig3fG5u75flBtnm1eHKU494BJd1xb
etag: "98e12beda00d8224366152f1aedc8080"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iXjs4sj0a%2FNYdR3dZKLNHRXFRdlYOTJG5%2FDUzIzaSHoyoh2kK4daq%2FYwUikso6TdEVnYxPuYPAxfqpbNH8lJ5JyTmi7LT4Ak1lHJXHFV1ytLFkbWKKWI3gSF3Rs6qMeHOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75186f24ab3e1c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

images.yampi.me/assets/stores/ofertas-de-verao/uploads/testimonies/633337f578804.jpg

172.67.72.14

200 OK

9.9 kB

URL HTTP/2
images.yampi.me/assets/stores/ofertas-de-verao/uploads/testimonies/633337f578804.jpg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 150x150, components 3\012- data
Size
9.9 kB (9905 bytes)
Hash
be9a92e29512c6b4820f27b77366d4e2
343c45ddb72d0db8c10b9a1524ce16b78cf7d470
4da53534971e8fbb761d25aa675e0879cc5ca7f8ca3b06371307d0d24b76eb93

HTTP Headers

GET /assets/stores/ofertas-de-verao/uploads/testimonies/633337f578804.jpg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/jpeg
content-length: 9905
x-amz-id-2: MrTvznARhr8pQReXd2ngkdk2qhro4+I0Tw96rRWrn7hnGnWAbMDsvP4fQvJG9chfVflYU32zU5A=
x-amz-request-id: KMKGEMTRWJK7QPMZ
last-modified: Tue, 27 Sep 2022 17:51:42 GMT
x-amz-version-id: zJZuY2zUP4nir6Hn9iYXIF00pvr6WKX6
etag: "be9a92e29512c6b4820f27b77366d4e2"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GxnK7bj6KFZ7oRlU8F1QX3Kxcq4jRmdQLNpHxFQvkJgq%2FFNGQuXa7G4hCaXNhdC7tkKhE58%2FxMeqWnVNUKIebgaGF0oc9k4Xhg6MsBf4bAGIkIEjxTB7MEinwaFxLqq%2B2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75186f24ab3f1c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

images.yampi.me/assets/stores/ofertas-de-verao/uploads/testimonies/633337e444cbd.jpg

172.67.72.14

200 OK

9.9 kB

URL HTTP/2
images.yampi.me/assets/stores/ofertas-de-verao/uploads/testimonies/633337e444cbd.jpg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 150x150, components 3\012- data
Size
9.9 kB (9913 bytes)
Hash
98a93c64f09844453c3978d25098cf86
9bff6ab848dd3bd73a7db3fdd7de4d99882f35c0
1a985efd37d81a258add296588197e5c36948e4e1a754e5cce4e0535e1291dad

HTTP Headers

GET /assets/stores/ofertas-de-verao/uploads/testimonies/633337e444cbd.jpg HTTP/1.1
Host: images.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/jpeg
content-length: 9913
x-amz-id-2: I/QWkn5MIfnOzKe3+oZORTzXYtAgTr3IYmtBk/XSjeRNrY3C5NHiLRLdiLag77MFxMVPW9KhsLE=
x-amz-request-id: KMKXXQ0YHVVXZTE6
last-modified: Tue, 27 Sep 2022 17:51:42 GMT
x-amz-version-id: bHnPBSvwRyalTnMzOmzXGb.0GaU.7X8I
etag: "98a93c64f09844453c3978d25098cf86"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TfU4F%2BF3z50fTcg2ZwPKAhyVOhV6Fxi4mtwoPbY5Cu4Pn25EF9oap57VK9olVRI2%2B2CqTS%2FSrieDgOjtnBdCQkMiK%2BHUYX%2F4c9NhAd6F7DB8YWMLY7gFzkHJkk9d240slg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75186f24ab3d1c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

icons.yampi.me/svg/card-aura.svg

172.67.72.14

200 OK

2.3 kB

URL HTTP/2
icons.yampi.me/svg/card-aura.svg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3016)
Size
2.3 kB (2312 bytes)
Hash
8970a0c95ff7af7059f9ed1707bf9bdb
534165f73d9eb389dac2a69dbdcb077d2b4afcd4
40f2bdeb6d56d5f6761bbb0c3809d00bcf2862ceaeb48aab5473c1e5a7c1f700

HTTP Headers

GET /svg/card-aura.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-111a"
expires: Mon, 26 Sep 2022 10:09:27 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 5584:34DD:777128:A962BB:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.024064,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: c27fb302a9d18223e7250a0b2b4fc0f9a948568d
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cG0CKS%2BFOR7VsNr%2FW9qRKT5udUV3IYY6r%2F3VvrmmaoJ33hgSK4QfEn1PbB9SFJY1GD6KEl6MUbgHDzbamfeTuCB1%2FRC03XV3q7CsKSf1jVdoLPCJLD1XSVli6DfWFmxr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24bb4e1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2

142.250.74.163

200 OK

34 kB

URL HTTP/2
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Size
34 kB (33580 bytes)
Hash
848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9

HTTP Headers

GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.ofertasdeverao.online
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:08:19 GMT
expires: Tue, 26 Sep 2023 21:08:19 GMT
cache-control: public, max-age=31536000
age: 99196
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0

104.18.1.53

200 OK

77 kB

URL HTTP/2
fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
IP
104.18.1.53:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.ofertasdeverao.online
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:35 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: CEV+ZCx0RZam57zJ/zCIJE28/8Zb8q2eZh+jb/AdIh3ntrJ4cu5yo5NImd/zq5bV0LPI9RnXUt4=
x-amz-request-id: 1ZVJHRTMEX333YMF
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: MISS
expires: Thu, 06 Oct 2022 00:41:35 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
server: cloudflare
cf-ray: 75186f2c6f73b509-OSL
X-Firefox-Spdy: h2

s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/632219b370e33/632219b370e38.png

52.95.163.112

200 OK

91 kB

URL HTTP/1.1
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/632219b370e33/632219b370e38.png
IP
52.95.163.112:0
ASN
#16509 AMAZON-02

File type
PNG image data, 736 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
91 kB (91337 bytes)
Hash
992452d4f6b48dee685307942fa02796
e71a76de95aef62d32ee6057a1cc08f4421472f7
a8eefacfe3dcd19a123bdd7be78dd32bf2514c1d8266bb5e858d4d4bc6b93e15

HTTP Headers

GET /king-assets.yampi.me/dooki/632219b370e33/632219b370e38.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 4kqVJrW4XQO3jl0X61JRphcqRhC7iNYjgVjRi249zI23x+aZxvPFXUtNmPN9ZAKuaBb85CWGmBE=
x-amz-request-id: 1ZVY4FTK3MDRB0XV
Date: Wed, 28 Sep 2022 00:41:36 GMT
Last-Modified: Wed, 14 Sep 2022 18:13:08 GMT
ETag: "992452d4f6b48dee685307942fa02796"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 91337

www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js

142.250.74.163

200 OK

158 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (826)
Size
158 kB (158248 bytes)
Hash
db1b5789e9915e9c82f5df92e5982980
2e193e502995501c85f45fd89d9f83707a7f9573
db9c82b18117d7cff0f674de758f5bbb39bc6dee969cee679c741090968b9206

HTTP Headers

GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.ofertasdeverao.online
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 22:25:55 GMT
expires: Mon, 25 Sep 2023 22:25:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
content-type: text/javascript
age: 180941
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5708
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:36 GMT
Last-Modified: Tue, 27 Sep 2022 23:06:28 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

icons.yampi.me/svg/card-diners.svg

172.67.72.14

200 OK

24 kB

URL HTTP/2
icons.yampi.me/svg/card-diners.svg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1368)
Size
24 kB (23632 bytes)
Hash
3b77cf505cbceb12d021930af96866d0
44fdbd068fe7929fbd6aa384ef5854705e78ef81
6ddab1b911d1ffbd5e4134290ac749fa0479003652d09e4c685c33c79d458c93

HTTP Headers

GET /svg/card-diners.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-99b"
expires: Tue, 27 Sep 2022 08:09:03 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 0805:3666:720576:A3F3F5:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.024806,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: 3173e43038aaed1f5c4d9cd688593e370db124d3
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XiE6TKfGWTfuXHOacdfq%2FsxBS50sGTduwlPF8PHRxbb5bIfTyyTXsWYaeakQXcW87LQWnSRoAcGCJY2zgAWE66uqpWzsJ97zfPdB%2Bkc9nrKuS%2BTfiM2iyejk9tcpG1B%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24ab441c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

icons.yampi.me/svg/card-pix.svg

172.67.72.14

200 OK

28 kB

URL HTTP/2
icons.yampi.me/svg/card-pix.svg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1048)
Size
28 kB (28001 bytes)
Hash
6b031b1f7ddba654120b77d2e4c1c9df
c6436c6c4e8c9a276655c4d4c1b7b068ed834798
fac5aecdb4b1720f3cd939ba96ddff770335b32cce5f718bf68cfd6a6a3fa574

HTTP Headers

GET /svg/card-pix.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-a56"
expires: Wed, 28 Sep 2022 00:18:51 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: D8D4:5ABE:77069E:9FE713:6320B554
via: 1.1 varnish
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097932.845241,VS0,VE109
vary: Accept-Encoding
x-fastly-request-id: ce75b40802cb9a31d490012c9ba03c2b82439614
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=flWxyAnNc45x0dfMs%2BDXd%2FDJCZPj%2BFPRXwq9guzxnQos97WZ%2BRxvmoyYmWsy4CRhEgiffSu7UBPQsqfIhbaPymbWBto6GYvJcXoR12quxj1n62fmQJmVakKYuC49rDLi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24ab451c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5708
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:36 GMT
Last-Modified: Tue, 27 Sep 2022 23:06:28 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/j/collect?v=1&_v=j97&a=1699571218&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Ofertas%20de%20Ver%C3%A3o&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=672671801&gjid=144688163&cid=471637102.1664325694&tid=UA-45745009-5&_gid=2093582838.1664325694&_r=1&_slc=1&z=444809563

142.250.74.174

200 OK

4 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j97&a=1699571218&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Ofertas%20de%20Ver%C3%A3o&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=672671801&gjid=144688163&cid=471637102.1664325694&tid=UA-45745009-5&_gid=2093582838.1664325694&_r=1&_slc=1&z=444809563
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8

HTTP Headers

POST /j/collect?v=1&_v=j97&a=1699571218&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Ofertas%20de%20Ver%C3%A3o&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAAATAAAAAC~&jid=672671801&gjid=144688163&cid=471637102.1664325694&tid=UA-45745009-5&_gid=2093582838.1664325694&_r=1&_slc=1&z=444809563 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.ofertasdeverao.online
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://seguro.ofertasdeverao.online
date: Wed, 28 Sep 2022 00:41:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=9b6bc316d16463b544cdc0e695ce9d7c

172.67.72.14

200 OK

88 kB

URL HTTP/2
awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=9b6bc316d16463b544cdc0e695ce9d7c
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
88 kB (88272 bytes)
Hash
59e3018178da4ca951a1489b6de8bfa3
6465e9b2854eec4e213f4c46d971566ceb8d2b0f
38878cd596cc10603bee7984bab8e73e01276ca7b6a2735312f7c623d6f4bc45

HTTP Headers

GET /checkout/build/mix/assets/js/app.js?id=9b6bc316d16463b544cdc0e695ce9d7c HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: application/javascript
x-amz-id-2: kiKMcAr44hCS/h/HVY248HvVsZ8c++jxSbplSUA+eauwmt5HsWg8UBb9Ul0Y6kT3rAvxJVfXLU0=
x-amz-request-id: CY4BWHFC5C676757
last-modified: Mon, 26 Sep 2022 19:44:15 GMT
x-amz-version-id: dI9F0vCOZifuvcVSKZO43mZnYXF0Vwno
etag: W/"20baf997b7e31a089f0a9544550cf45a"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1895
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=shATEdDHSu8Hrp46n40soNb0RjckuloP7CdDqxG2OmJ5V16QZU%2FRQxwBDN4y6XhS3Hdd%2FZeYdSPDqVoN%2Fj2IplG1N5j3hJbA4XIrtV2CaHI66f2qjt0LaGGEyy9Kxtsu7uryXy38BzyX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75186f24ab3c1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 00:41:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

seguro.ofertasdeverao.online/e/t

170.82.174.30

200 OK

758 B

URL HTTP/2
seguro.ofertasdeverao.online/e/t
IP
170.82.174.30:0
ASN
#266444 3L CLOUD INTERNET SERVICES LTDA - EPP

File type
ASCII text, with very long lines (745)
Size
758 B (758 bytes)
Hash
6c00257598db422eda38f1a0bd53637d
58a1d6fa76fe3d41f959c70229c7e58391310a6d
57ddbe563741eae4d5f7a6d63c4a91eff17975122159d14bc3db5287a8996fd8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

POST /e/t HTTP/1.1
Host: seguro.ofertasdeverao.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjllODVhM2FlNTA5YWQ0MDYiLCJ0ciI6IjkyNjJiODdjZTQyMDg4MjBmYmYyYWRkYjgzYWU2ZGE3IiwidGkiOjE2NjQzMjU2OTMxNjh9fQ==
traceparent: 00-9262b87ce4208820fbf2addb83ae6da7-9e85a3ae509ad406-01
tracestate: 2935249@nr=0-1-2935249-1134170823-9e85a3ae509ad406----1664325693168
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 366
Origin: https://seguro.ofertasdeverao.online
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c
Cookie: XSRF-TOKEN=eyJpdiI6IkZMQmJlb1dUZmZONDlnemVtTFY1WXc9PSIsInZhbHVlIjoiMmQ1bERvYVlcL2NEclVJRlVESmplek5nVjZIanJlanpVN1pJMHd4aUlIMDI0a0MySkxqY0NBZ21DdTJiZVZUNGpLSlRjSEx4S3d3QUk2R2VBZmp1UUR3PT0iLCJtYWMiOiI2NDQ2MWI0NWVhMTQ1YjY1OTU2ODc4ODUxZjYzMzNmODZkYmVlZDVkNjU0YTNhZjUzMTZkZmE1MmRiMmQyYWFjIn0%3D; bubbstore_checkout=eyJpdiI6IktoSzdzOWd4cjBhdXdQWDBIbzdGdXc9PSIsInZhbHVlIjoiQ1luelFJaDQ2V3NJMlo2d0NEK2JabFlwV0xpRG1pR0g0SHVpMEw2Y1ZuY3VWQ2JcLzdEaGsxOUl3MU96MFlZN0pLYklUSm15N1diSE1rNSsyR0RYY3pnPT0iLCJtYWMiOiJjMDczNTYyOTllNDE0ZGViOGY3OWFmNjU3ZjFhM2I4ZDg2YzU3NjNkNTU3ZDc0ZTQxMTkwOGQxNThjODc1MTRiIn0%3D; ofertas-de-verao_cart=eyJpdiI6IjBOM2VLdVMwcmt0VDZPS3BTNndtRmc9PSIsInZhbHVlIjoiOFBvdDN0TGNySWtMNCt3THN6eEN5XC9LZGFYdkJEd1RUb1wvKzFHUXZqYUlzQlRVelZqaE5SWlJJbmhQMmc4bktRV2plZTdybDRMNjhPZDVybXlBK0ZmUT09IiwibWFjIjoiN2JiY2RkZGUzZGVkZWMwMWE4NzQwMzI2Y2NlZGY1MjQ0NGMxNjcxZjdmNGYyNDljMTEwOGNjYTg0NzFjMTAwYyJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:36 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IlYrK3lmVllGK0hZQmwreTVwUkJZdEE9PSIsInZhbHVlIjoiV0NwVUJlQkpYNEhiN0RKWW9cL3dmMERmOFJJMVZvQjVRaWN3eG1xY201MWlweWRGRjl2TW9JcjlPaFwvTnpVQnlQNmI0R0ZHRTYrZkIzS3hHMWRVcFBPZz09IiwibWFjIjoiMzY4YmY5Mzk5Nzg3YWU3NDgzMTk5Mjc3ZDViMGNlOWIwNzc3ODRlZjIwNTkyZDhiNjM4NWUyYTUzMjI4N2EyMCJ9; expires=Wed, 28-Sep-2022 03:41:36 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlMxYmNLeE5SOUwzaGhlSU5NY3pEaEE9PSIsInZhbHVlIjoiRDJhUHhVUDZ6UXpQRDVQalwvdmV5SlQyYWkyNHIxaW1GMTFhRzU4WXU4Y2ZYRVRsNVJaYWxQa3ZwMW9tSE1mdzhxcmZOUHVrWnBQbUtDTG5GSmphXC96Zz09IiwibWFjIjoiOTllMjk0ZTJjMDkzZTVhM2QyNDUyYTM0MzgyYTAyNmEzM2M0OTY2MmNjZjUyOTRiZDM5MzNlNDEyMDM1ZGUyYSJ9; expires=Wed, 28-Sep-2022 03:41:36 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApVDgwEHh5UFUNUAFdUVFIBVFFRDlEBAVhTFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2

icons.yampi.me/svg/card-discover.svg

172.67.72.14

200 OK

181 kB

URL HTTP/2
icons.yampi.me/svg/card-discover.svg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2127)
Size
181 kB (181402 bytes)
Hash
cc8e48e778c48370123ec33018125d11
11cbf8e942289fa254c19075c2238da303a820b9
aa9f594ca086a390a004c0cef46ee1f400883769153ddf02b8e9723a06b0f065

HTTP Headers

GET /svg/card-discover.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-f89"
expires: Mon, 26 Sep 2022 21:25:08 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 31EE:5763:DCEFB4:E47F30:6320BAA0
via: 1.1 varnish
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.067513,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: fd79095f655c2a734a7e320fca9bb582f1e29d1d
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ufx4Zrr93bV5ZoXlAloyJWEmsZKqj7yeI8kMbcE0nmt1YxRmMdCbCA2qqUnrk0gCenbvYInV9MCdN9qMM5lxMIAFyTmk1HI8zJ1%2B07TaCWYpr39eHkDE8qBAKGph%2BPIM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24bb4f1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=475609647795069&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694665&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET

157.240.200.35

200 OK

258 kB

URL HTTP/2
www.facebook.com/tr/?id=475609647795069&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694665&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET
IP
157.240.200.35:0
ASN
#32934 FACEBOOK

File type
gzip compressed data, from Unix\012- data
Size
258 kB (257496 bytes)
Hash
0f2e98b6a6412a89b761486c74db37ee
a774291a11690005f85b2f1f2bf6a93e5111022b
69cd1dd543dcdd78790fed5b83926bee6813667c8a42ae469b953e9395b89aae

HTTP Headers

GET /tr/?id=475609647795069&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694665&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 00:41:37 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=1686103548439989&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694676&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_xjuc9ule6&tm=1&rqm=GET

157.240.200.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1686103548439989&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694676&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_xjuc9ule6&tm=1&rqm=GET
IP
157.240.200.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1686103548439989&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694676&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_xjuc9ule6&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 00:41:37 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=1497427834094100&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694679&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_bfqu8nu71&tm=1&rqm=GET

157.240.200.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1497427834094100&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694679&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_bfqu8nu71&tm=1&rqm=GET
IP
157.240.200.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1497427834094100&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694679&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_bfqu8nu71&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 00:41:37 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=618450783161563&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694682&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_bvpf8jbg2&tm=1&rqm=GET

157.240.200.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=618450783161563&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694682&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_bvpf8jbg2&tm=1&rqm=GET
IP
157.240.200.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=618450783161563&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694682&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_bvpf8jbg2&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 00:41:37 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=1686103548439989&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694667&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET

157.240.200.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1686103548439989&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694667&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET
IP
157.240.200.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1686103548439989&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694667&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 00:41:37 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=1497427834094100&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694669&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET

157.240.200.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1497427834094100&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694669&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET
IP
157.240.200.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1497427834094100&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694669&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 00:41:37 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=618450783161563&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694672&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET

157.240.200.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=618450783161563&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694672&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET
IP
157.240.200.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=618450783161563&ev=PageView&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694672&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=PageView_eyxw2d1hk&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 00:41:37 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=475609647795069&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694674&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_qmho2upmy&tm=1&rqm=GET

157.240.200.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=475609647795069&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694674&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_qmho2upmy&tm=1&rqm=GET
IP
157.240.200.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=475609647795069&ev=AddPaymentInfo&dl=https%3A%2F%2Fseguro.ofertasdeverao.online%2Fcheckout%2Fpayment%3Futm_source%3DSMS%26utm_campaign%3DCarrinho%2BAbandonado%2B1%26forceCheckout%3D1%26skipToCheckout%3D1%26customerToken%3D998b10c0-3eb0-11ed-b47e-3fdebbc9a44c&rl=&if=false&ts=1664325694674&cd[content_ids]=%5B%227922469732586%22%5D&cd[content_type]=product_group&cd[value]=129.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664325694664.2027247697&it=1664325693879&coo=false&eid=AddPaymentInfo_qmho2upmy&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 00:41:37 GMT
X-Firefox-Spdy: h2

js-agent.newrelic.com/nr-spa-1216.min.js

151.101.86.137

200 OK

18 kB

URL HTTP/2
js-agent.newrelic.com/nr-spa-1216.min.js
IP
151.101.86.137:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32010)
Size
18 kB (18216 bytes)
Hash
6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a

HTTP Headers

GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 28 Sep 2022 00:41:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 862
x-timer: S1664325697.104937,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2

github.bubbstore.com/svg/card-aura.svg

104.21.29.224

200 OK

2.3 kB

URL HTTP/2
github.bubbstore.com/svg/card-aura.svg
IP
104.21.29.224:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3016)
Size
2.3 kB (2312 bytes)
Hash
1a8734b2ed8c9a35c1c97437eff205fb
1dafdf87d57ed106faba53179821cb7abaca66e0
e386775cbc682605025983bcf5c79e8dfe588ea5b41a5a4c552c2717f107ae75

HTTP Headers

GET /svg/card-aura.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-111a"
expires: Tue, 27 Sep 2022 23:07:45 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 080D:589B:DA93C2:E0F454:63335F0B
via: 1.1 varnish
x-served-by: cache-bma1670-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664311052.705802,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: 639b16a75cf3927223360bf9b62f5c91a3aebeb2
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AHtSWjBnMlWUreA9q%2Bk5ttFMhj6Z%2FY%2BkJhOQ2XRdi56atSYDR%2Fdf2JThK5FNgchzXknPmK87bFJ5j4WWVOUqneE084UWYuvoZV8ZD6XRIuuRkxXS9dbJSnS%2BZLfgxXanqrNNar1EWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24fa0afab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=5914&ck=1&ref=https://seguro.ofertasdeverao.online/checkout/payment&ap=256&be=2822&fe=5839&dc=4243&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664325688903,%22n%22:0,%22f%22:1616,%22dn%22:1616,%22dne%22:1616,%22c%22:1616,%22s%22:1616,%22ce%22:1616,%22rq%22:1618,%22rp%22:2803,%22rpe%22:2803,%22dl%22:2809,%22di%22:4159,%22ds%22:4242,%22de%22:4322,%22dc%22:5838,%22l%22:5838,%22le%22:5840%7D,%22navigation%22:%7B%7D%7D&fcp=4316&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken

162.247.241.14

200 OK

77 B

URL HTTP/1.1
bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=5914&ck=1&ref=https://seguro.ofertasdeverao.online/checkout/payment&ap=256&be=2822&fe=5839&dc=4243&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664325688903,%22n%22:0,%22f%22:1616,%22dn%22:1616,%22dne%22:1616,%22c%22:1616,%22s%22:1616,%22ce%22:1616,%22rq%22:1618,%22rp%22:2803,%22rpe%22:2803,%22dl%22:2809,%22di%22:4159,%22ds%22:4242,%22de%22:4322,%22dc%22:5838,%22l%22:5838,%22le%22:5840%7D,%22navigation%22:%7B%7D%7D&fcp=4316&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken
IP
162.247.241.14:0
ASN
#23467 NEWRELIC-AS-1

File type
ASCII text, with no line terminators
Size
77 B (77 bytes)
Hash
f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef

HTTP Headers

GET /1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=5914&ck=1&ref=https://seguro.ofertasdeverao.online/checkout/payment&ap=256&be=2822&fe=5839&dc=4243&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664325688903,%22n%22:0,%22f%22:1616,%22dn%22:1616,%22dne%22:1616,%22c%22:1616,%22s%22:1616,%22ce%22:1616,%22rq%22:1618,%22rp%22:2803,%22rpe%22:2803,%22dl%22:2809,%22di%22:4159,%22ds%22:4242,%22de%22:4322,%22dc%22:5838,%22l%22:5838,%22le%22:5840%7D,%22navigation%22:%7B%7D%7D&fcp=4316&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 00:41:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 75186f3739e4b515-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=cae1f20f176ed9e4; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip

bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=6118&ck=1&ref=https://seguro.ofertasdeverao.online/checkout/payment

162.247.241.14

200 OK

24 B

URL HTTP/1.1
bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=6118&ck=1&ref=https://seguro.ofertasdeverao.online/checkout/payment
IP
162.247.241.14:0
ASN
#23467 NEWRELIC-AS-1

File type
GIF image data, version 89a, 1 x 1\012- data
Size
24 B (24 bytes)
Hash
bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300

HTTP Headers

POST /events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHkMDG1gAXUQ%3D&rst=6118&ck=1&ref=https://seguro.ofertasdeverao.online/checkout/payment HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 612
Origin: https://seguro.ofertasdeverao.online
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 00:41:37 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 75186f385aa1b515-OSL
Access-Control-Allow-Origin: https://seguro.ofertasdeverao.online
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare

github.bubbstore.com/svg/card-discover.svg

104.21.29.224

200 OK

0 B

URL HTTP/2
github.bubbstore.com/svg/card-discover.svg
IP
104.21.29.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /svg/card-discover.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-f89"
expires: Tue, 27 Sep 2022 23:07:45 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 1014:0A90:4B789E:D04ADA:629E764A
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1654556035.983946,VS0,VE101
vary: Accept-Encoding
x-fastly-request-id: d0464c181bd44a3b4ddea5e69abcb252f448f82a
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cdWNzD6%2BiinLUXGjvxqeO92NPGYD15dF9tCMNGDRbdp%2FGl0ZKdaBSYerQaxuwo%2Bc2hthIp8f4BhTx8BrnxDc5SfAJFHyjcWuVQ6rVZYKgs0VntXjT04awnG0gwX2pSrQPdDiJqinHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24fa09fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 00:41:34 GMT
date: Wed, 28 Sep 2022 00:41:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

github.bubbstore.com/svg/card-hipercard.svg

104.21.29.224

200 OK

0 B

URL HTTP/2
github.bubbstore.com/svg/card-hipercard.svg
IP
104.21.29.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /svg/card-hipercard.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-54bc"
expires: Tue, 27 Sep 2022 23:07:45 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 1F7C:4FA9:A2485E:A7FA72:631CED48
via: 1.1 varnish
x-served-by: cache-bma1680-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662840137.860379,VS0,VE115
vary: Accept-Encoding
x-fastly-request-id: 5a9873bf3e3be401e007339ec8459d7c1527e216
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KRGbEvKJ6FjbKIFOcTsHB%2B%2FbXcyxgE1pel9idda3IDH7z0e12iVHfN3WEHt3%2BOARWJHXXN5D%2FuWn%2FbmHy8bFW84YIQ0crMdmHJZdj06QwTXCXSgB7uu4nicIPmPCUPnBLKdCCcletA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24fa02fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

icons.yampi.me/svg/card-mastercard.svg

172.67.72.14

200 OK

0 B

URL HTTP/2
icons.yampi.me/svg/card-mastercard.svg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /svg/card-mastercard.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-5b3"
expires: Tue, 27 Sep 2022 08:09:03 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: C870:2D21:780010:A9F3D9:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.049285,VS0,VE123
vary: Accept-Encoding
x-fastly-request-id: 2b8147f241789884e26825ded5048f2450716653
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IoV8J21vcBlE241nwnPFBfI8%2FbbdzUm59kBkvHQe%2B0qkAqpAu2pHIwExWFgvj%2BC4Z1IIYzZqxMnKkwD7gOjFzRA1ISuJ2NW%2Bv9koZSlj3MIvLm9qYa6XO4G43VZVzItn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24cb5b1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

github.bubbstore.com/svg/card-amex.svg

104.21.29.224

200 OK

0 B

URL HTTP/2
github.bubbstore.com/svg/card-amex.svg
IP
104.21.29.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /svg/card-amex.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-5f3"
expires: Tue, 27 Sep 2022 18:19:59 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 5EA6:132CD:1652233:17113BE:632E163E
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663964735.864231,VS0,VE126
vary: Accept-Encoding
x-fastly-request-id: 6d985dfbefad384748332539c39d62a9c358f376
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jd%2FBAcdcq3hkTEMqV4wJ3cRmRgBL48jDSBcQC76ek6TiQB2V%2BUUPGy9PSXti5DfDCS2FllTEjf1JLT9AL%2BUtlL0AfjZPN%2BN7cAlOgPpypqyVi8lS%2B9FdLvmD5DM3JXndJyoN%2Ftt4fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24fa04fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

github.bubbstore.com/svg/card-mastercard.svg

104.21.29.224

200 OK

0 B

URL HTTP/2
github.bubbstore.com/svg/card-mastercard.svg
IP
104.21.29.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /svg/card-mastercard.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-5b3"
expires: Tue, 27 Sep 2022 23:07:45 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 0806:B85F:1B57AC3:1C37171:632E163E
via: 1.1 varnish
x-served-by: cache-bma1650-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663964735.866228,VS0,VE189
vary: Accept-Encoding
x-fastly-request-id: a75574c12ed1c2655df1b723e6ed59a44d72e3a5
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R13%2BdyLix0nuoifzHWP3%2ByK8dP%2BS5eNytfntc3duHGK0T97Hn27H9iWPjnlgEgm7RLDTfSPoHGacoL29k8YhFjSdIY1%2FbtA7BCQwhwGZcsLmYPFxRVP0zuIbsZCaYKvdCazTJfp6Eg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24fa08fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

github.bubbstore.com/svg/card-visa.svg

104.21.29.224

200 OK

0 B

URL HTTP/2
github.bubbstore.com/svg/card-visa.svg
IP
104.21.29.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /svg/card-visa.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-1288"
expires: Tue, 27 Sep 2022 23:07:20 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 080F:BA4A:C12DCF:C7B63A:631CED48
via: 1.1 varnish
x-served-by: cache-bma1677-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662840137.862588,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: bc9167c4d57cb1243a401a61289361b6ca04bef8
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M5OJ0wKYCuVPzJpBIjaVy04uHM6Q%2FSSl1XXex2DKG0lkpZX5FfIKvqKgYPoxa8i2dTmkzeIdtYeZo4Pt8505iDkduZ2FZXJdasIqTl7kc6TH40r%2BQbrWe68d8OjdTfzPhGGh50DYbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24fa06fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=c1cb1b608993e42920393f83d30bc32b

172.67.72.14

200 OK

0 B

URL HTTP/2
awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=c1cb1b608993e42920393f83d30bc32b
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /checkout/build/mix/assets/css/app.css?id=c1cb1b608993e42920393f83d30bc32b HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:35 GMT
content-type: text/css
x-amz-id-2: T/Ko5unCE3htRvL+YuuLTuRiYKQUSEu64pQqIoSxpuiXsQxEoLqEOgp7tP2eFJf8Mb3owXvzxFg=
x-amz-request-id: KMKWMNJZFXQ8GEZC
last-modified: Mon, 26 Sep 2022 19:44:15 GMT
x-amz-version-id: sk8GhqbtozvgmZdvBhWo.6c8nigPYGNS
etag: W/"c1cb1b608993e42920393f83d30bc32b"
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FkNolfKvavi8k3hUYrjRTKmAtEI%2BXCrEXYCTBPWl%2FQjUL6IJULK7fRbqtCaRW7Hgn2G1Q%2BFhq6Pc%2FS7xcOpfs6y6Xw51hOQwfT3mQaob8SETtge3Bc1jfns1M7rOQWqpC7mgdA89cqTV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75186f244b161c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.yampi.me/jquery/jquery.js

172.67.72.14

200 OK

0 B

URL HTTP/2
cdn.yampi.me/jquery/jquery.js
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: application/javascript
x-amz-id-2: 7gxTttBd/kCkn0bd/hyRfHdpqJ9gzq8f1yoBkZ3x5D4QwamXpqfrXGunCOTo8cwqgRppri0a9Bk=
x-amz-request-id: 98FT7W7KHGHEXVPW
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1895
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j9U8jVTwKj%2BwAhn3D%2FYaSbT3%2Bm%2BammVPla2osnxBojCaADI1%2BCT%2FTrOpMq%2FiY38tWfxIizKf2%2BfcdLb5pW1vnhqzI%2BLGxennskyhKWVp0haBc9abVZs0GRf0Qcky9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75186f24fb651c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

icons.yampi.me/svg/card-visa.svg

172.67.72.14

200 OK

0 B

URL HTTP/2
icons.yampi.me/svg/card-visa.svg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /svg/card-visa.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-1288"
expires: Tue, 27 Sep 2022 18:46:03 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 2158:78B3:779989:A98D45:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1683-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.055223,VS0,VE182
vary: Accept-Encoding
x-fastly-request-id: a6a72833805510b10cdc9527a348d2304550d705
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P0YoFI%2BndUc1t9KvMRgfA4AVbYpcLN8cJMhz0OG098r%2B2fjKHtBcDx3DqIeaKGx9FWftpkAECBIlNVGkzRv%2BLCCyVADYLKvpCUJduQ%2BsIjIVMEazOQsrmHxvDC36xgx4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24ab431c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

icons.yampi.me/svg/card-billet.svg

172.67.72.14

200 OK

0 B

URL HTTP/2
icons.yampi.me/svg/card-billet.svg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /svg/card-billet.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-537"
expires: Mon, 26 Sep 2022 23:06:29 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 704C:739C:7638A9:A828EA:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663097931.041790,VS0,VE117
vary: Accept-Encoding
x-fastly-request-id: b29a2ef028a2a3de333273d123f51c2969f04977
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zwMIUa8WA9ZhQhbAxbPpxzHlPYnvszeTOjTamubDfcjHMWMhFtxreyV1n4IxUZ2DDk0scoPxcW9oXIp3vOgdTEupyCsMi1scrQD2W%2B1PMbIsVnSpDXItZJyJWd9gjNI%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24ab471c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

github.bubbstore.com/svg/card-diners.svg

104.21.29.224

200 OK

0 B

URL HTTP/2
github.bubbstore.com/svg/card-diners.svg
IP
104.21.29.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /svg/card-diners.svg HTTP/1.1
Host: github.bubbstore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
last-modified: Thu, 17 Jun 2021 16:55:43 GMT
access-control-allow-origin: *
etag: W/"60cb7e8f-99b"
expires: Tue, 27 Sep 2022 23:07:45 GMT
cache-control: max-age=691200
x-proxy-cache: MISS
x-github-request-id: 8F4A:505A:DB19D7:E1C089:63337FE9
via: 1.1 varnish
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664325694.247709,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: 308f2f4639b22af5a7d138ce87b66df8b1a2126a
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A4qmCXuJQJXJuB%2Bg%2FF9RB90Rz8Hktelsujl6TdJTNXbaB8LfeneRSw38f77m3l5%2BiNeGn%2FisyqX%2FqaxluFsW9MAjkicS%2BRsZF3LfbEfPMSsRh9TPRRbljDOEmEv7yF8IILtubfS%2BUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24fa07fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.dooki.com.br/fa/4.7.0/fa.css

104.18.1.53

200 OK

0 B

URL HTTP/2
fonts.dooki.com.br/fa/4.7.0/fa.css
IP
104.18.1.53:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 1895
expires: Thu, 06 Oct 2022 00:41:34 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 75186f253a30b506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

icons.yampi.me/svg/card-hipercard.svg

172.67.72.14

200 OK

0 B

URL HTTP/2
icons.yampi.me/svg/card-hipercard.svg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /svg/card-hipercard.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-54bc"
expires: Tue, 27 Sep 2022 20:09:48 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 0802:9B4E:6CAA5C:8E98C9:63335634
via: 1.1 varnish
x-served-by: cache-bma1653-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664325694.192974,VS0,VE122
vary: Accept-Encoding
x-fastly-request-id: 93b120f484305827165b3e52d91919b754705808
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KIeFsbsJ0jt48fN2wm5O%2Fjt3o0CPeMKK9ncnO%2FF9wSaEozRHJLcLPoOtJ5M4j2PDiEhadCKIktHxfpF64CdzjOJZY2DQP0YLJDZOQMvS%2BDMKtssTD%2BP0T3hGLLlOp7sV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24ab401c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

icons.yampi.me/svg/card-hiper.svg

172.67.72.14

200 OK

0 B

URL HTTP/2
icons.yampi.me/svg/card-hiper.svg
IP
172.67.72.14:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /svg/card-hiper.svg HTTP/1.1
Host: icons.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:34 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 13 Sep 2022 16:24:23 GMT
access-control-allow-origin: *
etag: W/"6320aeb7-2392"
expires: Tue, 27 Sep 2022 01:04:14 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 3900:70E3:7684AF:A8BDE3:6320B37D
via: 1.1 varnish
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663088051.774291,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 664db6e5293d478d130a0457b0af91c864fdebc9
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HFuJsr6pyu%2BqndG6O9pMxsFOieCyXzmiH%2FbiazmYDEUcVtrSYOmuV7nfH1qz2tUOuhTziw3lHxemzY1Us8S68A1BI6HlerD7e8FzTcdCh%2FMobX%2F%2BYwwCj36Wkn2m15nu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75186f24ab461c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

seguro.ofertasdeverao.online/cart/recomm

170.82.174.30

200 OK

0 B

URL HTTP/2
seguro.ofertasdeverao.online/cart/recomm
IP
170.82.174.30:0
ASN
#266444 3L CLOUD INTERNET SERVICES LTDA - EPP

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cart/recomm HTTP/1.1
Host: seguro.ofertasdeverao.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjNmN2I1MjZjNjRiMGEyMDQiLCJ0ciI6IjIxNWQ1ZmE0NjBiNDcxMmNlNzIyNTk5NDVkMmViNjU5IiwidGkiOjE2NjQzMjU2OTMxNTl9fQ==
traceparent: 00-215d5fa460b4712ce72259945d2eb659-3f7b526c64b0a204-01
tracestate: 2935249@nr=0-1-2935249-1134170823-3f7b526c64b0a204----1664325693159
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.ofertasdeverao.online/checkout/payment?utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c
Cookie: XSRF-TOKEN=eyJpdiI6IkZMQmJlb1dUZmZONDlnemVtTFY1WXc9PSIsInZhbHVlIjoiMmQ1bERvYVlcL2NEclVJRlVESmplek5nVjZIanJlanpVN1pJMHd4aUlIMDI0a0MySkxqY0NBZ21DdTJiZVZUNGpLSlRjSEx4S3d3QUk2R2VBZmp1UUR3PT0iLCJtYWMiOiI2NDQ2MWI0NWVhMTQ1YjY1OTU2ODc4ODUxZjYzMzNmODZkYmVlZDVkNjU0YTNhZjUzMTZkZmE1MmRiMmQyYWFjIn0%3D; bubbstore_checkout=eyJpdiI6IktoSzdzOWd4cjBhdXdQWDBIbzdGdXc9PSIsInZhbHVlIjoiQ1luelFJaDQ2V3NJMlo2d0NEK2JabFlwV0xpRG1pR0g0SHVpMEw2Y1ZuY3VWQ2JcLzdEaGsxOUl3MU96MFlZN0pLYklUSm15N1diSE1rNSsyR0RYY3pnPT0iLCJtYWMiOiJjMDczNTYyOTllNDE0ZGViOGY3OWFmNjU3ZjFhM2I4ZDg2YzU3NjNkNTU3ZDc0ZTQxMTkwOGQxNThjODc1MTRiIn0%3D; ofertas-de-verao_cart=eyJpdiI6IjBOM2VLdVMwcmt0VDZPS3BTNndtRmc9PSIsInZhbHVlIjoiOFBvdDN0TGNySWtMNCt3THN6eEN5XC9LZGFYdkJEd1RUb1wvKzFHUXZqYUlzQlRVelZqaE5SWlJJbmhQMmc4bktRV2plZTdybDRMNjhPZDVybXlBK0ZmUT09IiwibWFjIjoiN2JiY2RkZGUzZGVkZWMwMWE4NzQwMzI2Y2NlZGY1MjQ0NGMxNjcxZjdmNGYyNDljMTEwOGNjYTg0NzFjMTAwYyJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:35 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IjViTmRhUXpSNjhiZWlrR0d2Y3VHeEE9PSIsInZhbHVlIjoiXC9NZDI2NjBuM3R1RWdBNngyV0lyM1RUODF2S0JvSVB1c0tOZ043T1N6S3VOQ3R5MVZaUlVsemthK0JHV0NUdzFXaGVZZm04UkZhSEEyTUZKZG1xNHJnPT0iLCJtYWMiOiIwYWE1YzUyZWYzNDI0ZGE5MDkwNmNhMWM5YjM3YzQ3NGY3ZGVmMDUwYzU1YTg2ZjkzY2U4OTdjMmY5YTIxNmY4In0%3D; expires=Wed, 28-Sep-2022 03:41:35 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlhrVlBmN3NmWG9nOTIzWUJnUjRlQ2c9PSIsInZhbHVlIjoiVzFzVUNcL3ZwVjVvUW1FRlBYTlllSlZpMjFMUTJOdXZCSEs4WGxnNHN1dFwvbnRCSE5iNE9YODZYZTBQT0lcL0hkMWVwNmIydDJMRGM5UGhiM3BEeU5RM3c9PSIsIm1hYyI6ImZhOTQ2YzA1NDE4MWQ2ZDJkNGZlMDBkMThkZDVkNmFiNDkzY2Y0MWVkMzdlNjk4MWY2MTVlZjU5YWNmYTYwMTcifQ%3D%3D; expires=Wed, 28-Sep-2022 03:41:35 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFtSQhBPEFJSWAsJExoDTFZTUgBSFFIWCAcCA1UVTABNEQMFVQICXlsOA1RTV1EPBgBESFdXXxEDPg==
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2

seguro.ofertasdeverao.online/checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c

170.82.174.30

200 OK

0 B

URL HTTP/2
seguro.ofertasdeverao.online/checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c
IP
170.82.174.30:0
ASN
#266444 3L CLOUD INTERNET SERVICES LTDA - EPP

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /checkout/payment?cart_token=shopify-9aa94aff4c7cdcaaea2e830b6cf0c7cc&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=14ff4ff5f9af26f9f5ee151204a5531f29ab3dff&customerToken=998b10c0-3eb0-11ed-b47e-3fdebbc9a44c HTTP/1.1
Host: seguro.ofertasdeverao.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdIZlhaaFdxMWtFMVM4UnFpclJiTnc9PSIsInZhbHVlIjoiYjRBZ0o0dVwvWHlSR2M3bDBRV2l2UG5EN05idUIwTm9QcTJ2MTFNREZSSW1hU0JhUUlZUXZBT2I0YnBVYjJjNVwvTGxURVZBSWhsYzFVdE92Ulowd3p1UT09IiwibWFjIjoiNmM1MGIyOGIwZDRhMjk2ODI3ZWNiNDIxZDdmOGU0MWU0ZWUyYzgwZjg3Nzc4MTE5ZGY5ZjBlMjIzNWI1NjMzNSJ9; bubbstore_checkout=eyJpdiI6Inh1cFBSUWNnaGpmNlR6SkdqVHNxcGc9PSIsInZhbHVlIjoiXC9GMkdicEdCN1U0OGgxK0RBejhnTXVEUDF5bTVnYVcyNWEydVZNeFlDbHpQY2tYSlhIb01CWmwxUTdCR1o2MXBacXJPWFY2ZVdKUXBBNlpmeW1EXC8xQT09IiwibWFjIjoiYzUxOWYyZWZkMzVmZWRkOTMzYTdiOWRhYzAxZjFkYWYyOTEzYjhhNWQ0ZDUxMDczZTE2YjdkOGZjYzJkMWYyMiJ9; ofertas-de-verao_cart=eyJpdiI6IjBOM2VLdVMwcmt0VDZPS3BTNndtRmc9PSIsInZhbHVlIjoiOFBvdDN0TGNySWtMNCt3THN6eEN5XC9LZGFYdkJEd1RUb1wvKzFHUXZqYUlzQlRVelZqaE5SWlJJbmhQMmc4bktRV2plZTdybDRMNjhPZDVybXlBK0ZmUT09IiwibWFjIjoiN2JiY2RkZGUzZGVkZWMwMWE4NzQwMzI2Y2NlZGY1MjQ0NGMxNjcxZjdmNGYyNDljMTEwOGNjYTg0NzFjMTAwYyJ9
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
date: Wed, 28 Sep 2022 00:41:33 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IkZMQmJlb1dUZmZONDlnemVtTFY1WXc9PSIsInZhbHVlIjoiMmQ1bERvYVlcL2NEclVJRlVESmplek5nVjZIanJlanpVN1pJMHd4aUlIMDI0a0MySkxqY0NBZ21DdTJiZVZUNGpLSlRjSEx4S3d3QUk2R2VBZmp1UUR3PT0iLCJtYWMiOiI2NDQ2MWI0NWVhMTQ1YjY1OTU2ODc4ODUxZjYzMzNmODZkYmVlZDVkNjU0YTNhZjUzMTZkZmE1MmRiMmQyYWFjIn0%3D; expires=Wed, 28-Sep-2022 03:41:33 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IktoSzdzOWd4cjBhdXdQWDBIbzdGdXc9PSIsInZhbHVlIjoiQ1luelFJaDQ2V3NJMlo2d0NEK2JabFlwV0xpRG1pR0g0SHVpMEw2Y1ZuY3VWQ2JcLzdEaGsxOUl3MU96MFlZN0pLYklUSm15N1diSE1rNSsyR0RYY3pnPT0iLCJtYWMiOiJjMDczNTYyOTllNDE0ZGViOGY3OWFmNjU3ZjFhM2I4ZDg2YzU3NjNkNTU3ZDc0ZTQxMTkwOGQxNThjODc1MTRiIn0%3D; expires=Wed, 28-Sep-2022 03:41:33 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (38)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations